Yaron Sheffer writes: > The rationale for GCM describes why it's in the table, but seems to > argue for a MUST (rather than the SHOULD that's in the table). I guess > there's a reason why we don't have MUST, let's spell it out.
The reason for that is that it is not needed as IKEv2 SA is never used to transmit huge amounts of data, thus the speed benefits you might get from there is not needed. Also support for the combined modes do require support for RFC5282, and there are implementations which have not done that (as there is no benefits or need for them to implement it). -- [email protected] _______________________________________________ IPsec mailing list [email protected] https://www.ietf.org/mailman/listinfo/ipsec
