On Apr 4, 2013, at 3:30 AM, Tero Kivinen <[email protected]> wrote: > Scott Fluhrer (sfluhrer) writes: >> While I don't think the below text is wrong (except I would point >> out that there is no security requirement to discard the parent IKE >> SA during a test failure while generating a child SA), I would also >> point out that these don't appear to have any advantage over the >> current text. > > There is no security requirement to discard IKE SA, but there > operatinal reasons to do it. I.e. that would be clear indication that > something is wrong, thus most likely will cause one of the peers to > start investingating the problem, especially if it is persistent > problem. On the other hand if the problem is not persistent, and is > fixed by starting IKE SA over, then even better...
It would be useful to add one or two sentences to the draft explaining that the discarding is for operational, not security, reasons. --Paul Hoffman _______________________________________________ IPsec mailing list [email protected] https://www.ietf.org/mailman/listinfo/ipsec
