On Mar 8, 2014, at 8:08 AM, Black, David <david.bl...@emc.com> wrote:
>> The next draft changes AES-128-CBC to AES-CBC, and says: >> >> In the following sections, all AES modes are for 128-bit AES. 192-bit AES >> MAY be supported for those modes, but the requirements here are for 128-bit >> AES. > > What about 256-bit AES keys? They should also be a "MAY". Why not “SHOULD” for 192 and 256 bit keys? paul _______________________________________________ IPsec mailing list IPsec@ietf.org https://www.ietf.org/mailman/listinfo/ipsec