next up previous
Next: 4.18.2 018: response Up: 4.18 018: full inbound Previous: 4.18 018: full inbound

4.18.1 018: Definition of requirement

Upon decryption/decapsulation of a packet, the inner set of selectors should be checked against SA definition. This is a requirement from RFC2401. It provides a paranoid check against possible mis-behaviour/mis-configuration of a corresponding peer.



Michael Richardson
2001-11-27