[3367] in cryptography@c2.net mail archive
Re: Fwd: Re: r.e. quality of IDEA...
daemon@ATHENA.MIT.EDU (Perry E. Metzger)
Thu Sep 24 16:29:45 1998
To: Steve Bellovin <smb@research.att.com>
cc: Rodney Thayer <rodney@tillerman.nu>, cryptography@c2.net
In-reply-to: Your message of "Thu, 24 Sep 1998 14:00:55 EDT."
<199809241800.OAA27652@postal.research.att.com>
Reply-To: perry@piermont.com
Date: Thu, 24 Sep 1998 15:48:48 -0400
From: "Perry E. Metzger" <perry@piermont.com>
Steve Bellovin writes:
> The issue is maintaining many IPSEC sessions at the same time, perhaps
> to different destinations. Given the expansion factor between the
> key size and the key schedule in many ciphers, it is often infeasible
> to store key schedules. This is especially true for hardware-based
> IPSEC devices, where there is a very big incentive to keep all keying
> material on-board.
Is this really true, in practice? Retail price of 16M of memory is
now, what, $10-$20? I bet that in even another few hundred k you could
fit a *lot* of key schedules.
Perry
