On Thu, 11 Sep 2014, Yaron Sheffer wrote:
The document's introduction does give the impression that the main point of this document is one-way auth, but I think most of the people who support this document are more interested in fully anonymous key exchange.
Both are definately within the scope of what we are thinking about, although we would really prefer one-way sees wide adoption and deployment. Another use case that has come up is cloud instance deployments, where images are part of a group, and individual hosts booted from the same image don't really have a unique identity. These cases don't fall clearly within mutual or one-sided auth. Paul _______________________________________________ IPsec mailing list [email protected] https://www.ietf.org/mailman/listinfo/ipsec
