In your previous mail you wrote: new-HAO?? the format has not changed. neither has the processing.
=> this is not true, now the HAO must be verificable/verified. infact, (IMO) there is no need for this new verification step if we have smart ingress filtering as described by Francis Dupont in http://www.ietf.org/internet-drafts/draft-dupont-ipv6-ingress-filtering-00.txt. Francis is probably around somewhere. can you please talk to him? => this solution was rejected by the DT... In fact even the verification concept (from a Charlie Perkins' attempt to avoid mandatory BCE check) is at the margin of the DT decision. Regards [EMAIL PROTECTED] PS: I believe Pekka can summarize his ideas about CoA stuff at the alternate security of Mobile IPv6 bar BOF. -------------------------------------------------------------------- IETF IPng Working Group Mailing List IPng Home Page: http://playground.sun.com/ipng FTP archive: ftp://playground.sun.com/pub/ipng Direct all administrative requests to [EMAIL PROTECTED] --------------------------------------------------------------------
