Wrong understanding of technology , KEK is always 3DES and SHA for
encryption and hashing of control messages(which includes changes to
the traffic encryption policy(TEK) on the KS) respectively.
On 3/23/10, eseosa <eseosa.ehiwe_at_gmail.com> wrote:
> Hi All,
>
> I just want to be sure if KEK rekey messages requires at least SHA for
> hashing , because on my KS the transform set for signing rekeying
> messages is set to 3des and md5 , but on the Group Members the KEK
> uses SHA as hashing method while TEK uses md5 .
>
>
> --
> Warm Regards,
>
> Eseosa
> CCIE #23782
> "The Christian is a person who makes it easy for others to believe in
> God." - Robert M. McCheyne
>
-- Warm Regards, Eseosa CCIE #23782 "The Christian is a person who makes it easy for others to believe in God." - Robert M. McCheyne Blogs and organic groups at http://www.ccie.netReceived on Tue Mar 23 2010 - 19:15:40 ART
This archive was generated by hypermail 2.2.0 : Thu Apr 01 2010 - 07:26:35 ART