On Tue, 4 Jan 2022, Dan Harkins wrote:
I agree with Tero here. This "tightening" is not necessary. There's no
security
benefit by disallowing the RFC 7296 RECOMMENDED method of treating AEAD
ciphers.
The only thing this will do is require pointless changes to existing RFC 7296
compliant implementations.
I also agree. While I wish we had only one way of specifing an AEAD
without integrity algorithm instead of two, the ship sailed long ago
and code is there do deal with both of these. There is no gain from
restricting it.
Paul
_______________________________________________
IPsec mailing list
IPsec@ietf.org
https://www.ietf.org/mailman/listinfo/ipsec
