On Tue, 2010-01-05 at 00:27 +0200, Yaron Sheffer wrote: > - The current draft > (http://tools.ietf.org/html/draft-ietf-ipsecme-traffic-visibility-11) > defines the ESP trailer's ICV calculation to include the WESP header. > This has been done to counter certain attacks, but it means that WESP > is no longer a simple wrapper around ESP - ESP itself is modified. Do > you support this design decision?
no. > - The current draft allows WESP to be applied to encrypted ESP flows, > in addition to the originally specified ESP-null. This was intended so > that encrypted flows can benefit from the future extensibility offered > by WESP. But arguably, it positions WESP as an alternative to ESP. Do > you support this design decision? no. _______________________________________________ IPsec mailing list IPsec@ietf.org https://www.ietf.org/mailman/listinfo/ipsec
