[Responding to IPsec only:]
Hi Yoav,
thanks for the new draft. I'm afraid one needs to read RFC5296bis before
commenting, but here's a few questions anyway:
- Sending the domain in the IKE_SA_INIT response obviously contradicts
the usual IKEv2 identity protection. This is not really a questi
Hi.
Qin and I have just posted the subject draft. The title is "An IKEv2 Extension
for Supporting ERP", although it has nothing to do with enterprise resource
planning.
This draft brings the ERP extension for EAP, which is developed by the Hokey
group into the IKEv2 authentication exchange, a
