On Tue, Dec 12, 2006 at 03:38:40PM -0800, Vishwas Manral wrote: > Hi Nico, > > I guess there is no denying the points that have been put forward about > the use of NULL both authentication and encryption algorithms for ESP in > debugging. > > RFC4301 already clearly states: > > Note: A compliant implementation MUST NOT allow instantiation of an > ESP SA that employs both NULL encryption and no integrity algorithm. Ah. Then just add reference to RFC4301, section 4.2, in parenthesis. That should sufifce. Thanks, Nico -- _______________________________________________ Ietf@xxxxxxxx https://www1.ietf.org/mailman/listinfo/ietf