As per RFC 4301 implementing AH is a MAY and ESP a MUST. Given that most of what is achieved by AH can be easily achieved by ESP-NULL, is there a possibility that AH may get deprecated in the future. Should new protocols or mechanisms be defined in IETF that depend solely upon AH to be supported?
Jack _______________________________________________ IPsec mailing list [email protected] https://www.ietf.org/mailman/listinfo/ipsec
