Hi Jeff, I am sorry I dont understand this point.
I would like to stick to NULL because it's less prone to implementation/inter-op bugs where you dont need to keep changing the kind of auth you use depending upon where you are in your finite state machine (FSM). And moreover, doing an AUTH adds no security to the protocol. Cheers, Manav On Thu, Jul 23, 2020 at 7:29 PM Jeffrey Haas <jh...@pfrc.org> wrote: > Manav, > > On Thu, Jul 23, 2020 at 08:01:01AM +0530, Manav Bhatia wrote: > > GIven that there isnt a huge advantage in using Auth during INIT -> INIT > > and Down -> Down we should probably stick to NULL for the sake of > > simplicity. Unless, somebody finds a problem with using NULL. > > Part of the reason I flagged this point is that I expect commentary during > IESG review. This conversation was the forcing function to determine "no, > we think extra authentication here is really useless even with slower > timers". > > -- Jeff >
