Bill, a question : If during the signature exchange phase, the signature msg indicates that DES and MD5 are used for the security association and a session key is computed. How to determine if this session key is used for DES, MD5 or both ? Thank you. Regards, Pau-Chen