On Thu, 29 Jan 2015, Valery Smyslov wrote:
In conclusion, is the following text OK?
ID_NULL is primarily intended to be used with the NULL
Authentication, but it MAY also be used in other situations, when the
content of Identification payload does not matter. For example,
ID_NULL can be used when authentication is performed via raw public
keys and the identities are these keys themselves. If ID_NULL is
used with other authentication methods than NULL Authentication, then
the details of its usage must be defined in appropriate document.
Proposing some minor changes:
ID_NULL is primarily intended to be used with NULL Authentication but
could be used in other situations where the content of the
Identification
Payload is not used. For example, ID_NULL could be used when
authentication
is performed via raw public keys and the identities are the keys
themselves. These alternative uses of ID_NULL should be described in
their own respective documents.
Paul
_______________________________________________
IPsec mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/ipsec
