next up previous
Next: 2.18.2 018: response Up: 2.18 018: full inbound Previous: 2.18 018: full inbound

2.18.1 018: Definition of requirement

Upon decryption/decapsulation of a packet, the inner set of selectors should be checked against SA definition. This is a requirement from RFC2401. It provides a paranoid check against possible mis-behaviour/mis-configuration of a corresponding peer.



Michael Richardson
2001-08-12