[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
RE: [Q] AUTHENTICATION_FAILED Notification
Yes, all messages except for the first two are cryptographically
protected with the IKE SA. Of course, since authentication has not
occurred, the cryptographic protection may not in practice provide much
assurance to the transaction.
--Charlie
-----Original Message-----
From: owner-ipsec@lists.tislabs.com
[mailto:owner-ipsec@lists.tislabs.com] On Behalf Of Yoshihiro Ohba
Sent: Thursday, February 05, 2004 11:05 AM
To: ipsec@lists.tislabs.com
Subject: [Q] AUTHENTICATION_FAILED Notification
Hi,
I have a question about the usage of AUTHENTICATION_FAILED Notification
of IKEv2.
draft-ietf-ipsec-ikev2-12.txt says:
AUTHENTICATION_FAILED 24
Sent in the response to an IKE_AUTH message when for some
reason the authentication failed. There is no associated
data.
Is the Notify payload of this type cryptographycally protected with
IKE_SA?
Regards,
Yoshihiro Ohba