On Sun, 15 Dec 2024, Valery Smyslov wrote:
We are now done with the WGLC draft-ietf-ipsecme-ikev2-rename-esn. I think
there were few comments from Paul that at least caused changes to the draft,
so after we get updated draft I can send it to the IESG.
before issuing a new version, I'd like to get more feedback from the community
about the point that Steffen raised - how to name "protection against replays"
in the draft.
Steffen raised a concern, that the current form "anti-replay protection" is not
good
and can confuse readers. RFC 4301-4304 uses various forms:
- anti-replay service
- anti-replay mechanism
- anti-replay feature
- anti-replay protection
- anti-replay (as a noun)
Other RFCs that may be relevant, use different forms:
- RFC 9147 (DTLS) - replay protection
- RFC 9001 (QUIC) - replay protection
So, my question: what term should we use to be aligned with RFC 4301-4303 and
to not confuse readers? Perhaps this is a bikeshedding, but an important one.
It seems that "replay protection" would be the way to go, with perhaps a
sentence saying that 431-4304 called this "anti-replay protection" ?
Paul
_______________________________________________
IPsec mailing list -- ipsec@ietf.org
To unsubscribe send an email to ipsec-le...@ietf.org
