> 8. Section A.1 says, "The disadvantage here, is that in IKEv2 an > authentication exchange MUST have a piggy-backed Child SA set up." > RFC 6023 specifies a childless IKE SA initiation so that sentence is > not true for implementations that support RFC 6023.
I just noticed that the category of RFC 6023 is Experimental so this comment can probably be ignored. Thanks, Keith Welter IBM z/OS Communications Server Developer 1-415-545-2694 (T/L: 473-2694)
_______________________________________________ IPsec mailing list [email protected] https://www.ietf.org/mailman/listinfo/ipsec
