On Mon, Sep 22, 2025 at 9:44 AM Dang, Quynh H. (Fed) <quynh.dang= [email protected]> wrote:
> > > If the pure mode is used, then some warning about the hash function choice > from the IKE’s negotiation would be good (not to reduce the security of the > signing algorithm). In this case, IKE hashes with the negotiated and > agreed hash function, then the signing algorithm has its own internal hash > function. > Is there ever a reason for these two hash functions to not be the same? > > > If the pre-hash is used, then the pre-hash algorithm can come from the > IKE’s hash function negotiation, and it should meet the security strength > of the signing function. > That seems overly liberal to me. Paul
_______________________________________________ IPsec mailing list -- [email protected] To unsubscribe send an email to [email protected]
