See RFC-1825. There is ALREADY much more than just key length, key, and identifier within an IPsec Security Association. One of my issues with some of the key mgmt proposals on the table at present is that they do not specify how to indicate all of the properties of a given Security Association to both parties to that association. Ran