From darrenr@arbld.unimelb.edu.au  Tue Sep 10 18:51:04 1996
Received: from pdx1.world.net (pdx1.world.net [192.243.32.18]) by suburbia.net (8.7.4/Proff-950810) with ESMTP id SAA08454 for <best-of-security@suburbia.net>; Tue, 10 Sep 1996 18:50:36 +1000
Received: from arbld.unimelb.edu.au (vitruvius.arbld.unimelb.edu.au [128.250.136.1]) by pdx1.world.net (8.7.5/8.7.3) with SMTP id BAA15179 for <best-of-security@suburbia.net>; Tue, 10 Sep 1996 01:01:56 -0700 (PDT)
Received: (from darrenr@localhost) by arbld.unimelb.edu.au (8.6.12/8.6.12) id SAA11660 for best-of-security@suburbia.net; Tue, 10 Sep 1996 18:00:33 +1000
From: Darren Reed <darrenr@arbld.unimelb.edu.au>
Message-Id: <199609100800.SAA11660@arbld.unimelb.edu.au>
Subject: new paper (fwd)
To: best-of-security@suburbia.net
Date: Tue, 10 Sep 1996 18:00:33 +1000 (EST)
X-Mailer: ELM [version 2.4 PL24]
Content-Type: text

> From: Steve Bellovin <smb@research.att.com>
> Subject: new paper
> Date: Thu, 05 Sep 1996 19:23:35 -0400
> 
> Folks on this mailing list may be interested in a new draft paper of mine:
> 
> 	Probable Plaintext Cryptanalysis of the IP Security Protocols
> 
> 	The Internet Engineering Task Force (IETF) is in the process
> 	of adopting standards for IP-layer encryption and authentication
> 	(IPSEC).  We describe how ``probable plaintext'' can be
> 	used to aid in cryptanalytic attacks, and analyze the
> 	protocol to show how much probable plaintext is available.
> 	We also show how traffic analysis is a powerful aid to the
> 	cryptanalyst.  We conclude by outlining some likely changes
> 	to the underlying protocols that may strengthen them against
> 	these attacks.
> 
> It's available from ftp://ftp.research.att.com/dist/smb/probtxt.ps