Yaron Sheffer wrote:
This work item proposes an IKEv2 extension to allow an IKE peer to quickly and
securely detect that its opposite peer has lost state. This is claimed to be
quicker than the current method, which is based on time outs.
Proposed starting point: http://tools.ietf.org/id/draft-nir-ike-qcd-05.txt or
http://tools.ietf.org/html/draft-detienne-ikev2-recovery-03.
Please reply to the list:
I will review multiple versions of this document, and I will contribute
text.
I think this is an important problem, although I am not convinced that
qcd-05 is the right mechanism. I am open to being convinced.
_______________________________________________
IPsec mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/ipsec
