>2.5.A) Does SOI need to provide "plausible deniability" (the opposite >of "non-repudiation") for the initiator? > >2.5.B) Does SOI need to provide "plausible deniability" (the opposite >of "non-repudiation") for the responder? In the typical VPN scenario (either gateway-to-gateway or remote-access WAN), neither of these are important. --Paul Hoffman, Director --VPN Consortium