Re: Your DISCUSS on draft-ietf-secsh-newmodes-05

[Russ Housley <housley%vigilsec.com@localhost>]

Take a look at 
http://www.ietf.org/internet-drafts/draft-ietf-ipsec-ikev2-algorithms-05.txt

This document is approved and waiting publication as a standards-track 
RFC.  In this document, Jeff Shiller
references RFC 2119, and then he further defines SHOULD+

 SHOULD+            This term means the same as SHOULD. However it is
                    likely that an algorithm marked as SHOULD+ will be
                    promoted at some future time to be a MUST.

This seems like it might offer a compromise point, excpet that in the 
context of this document, the algorithm might become required for all SSH 
implementations, not just all newmodes implementations.  This would need to 
be clear.

The working group would still need to decide if 3DES-CTR or AES128-CTR or 
both would receive this REQUIRED+ marking.

Russ


At 08:13 AM 9/8/2005, Jon Bright wrote:
> Basically, text to give a kind of "RECOMMEND.  Oh, and we're holding a 
> really big stick.  And watching you." feeling.  Maybe RFC2119 needs a 
> revision, adding "RECOMMEND-WITH-STICK" :-)