potential new IETF WG on anonymous IPSec
zooko at zooko.com
Fri Sep 10 08:55:04 PDT 2004
On 2004, Sep 09, , at 16:57, Hal Finney wrote:
> To clarify, this is not really "anonymous" in the usual sense. Rather
> is a proposal to an extension to IPsec to allow for unauthenticated
> connections. Presently IPsec relies on either pre-shared secrets or a
> trusted third party CA to authenticate the connection. The new
> would let connections go forward using a straight Diffie-Hellman type
> exchange without authentication.
> I don't think "anonymous" is the right word for this, and I hope the
> IETF comes up with a better one as they go forward.
I believe that in the context of e-mail [1, 2, 3, 4] and FreeSWAN this
is called "opportunistic encryption".
More information about the cypherpunks-legacy