Merge commit 'e83f23a' closes #2

antonyantony · antonyantony · commit 24de3ce1339f · 2025-01-27T14:45:38.000+01:00
diff --git a/eesp-ikev2.org b/eesp-ikev2.org
@@ -172,7 +172,7 @@ the original EESP SA.
       |     |     +-- Attribute ( Key Length = 128 )
       |     +-- Transform INTEG ( Name = AUTH_HMAC_SHA1_96 )
       |     +-- Transform INTEG ( Name = AUTH_AES_XCBC_96 )
-      |     +-- Transform SN ( Name = Full 64 bit Sequence Number)
+      |     +-- Transform SN ( Name = 64-bit Sequential Numbers )
       |     +-- Transform EESPV ( Name = V1 )
       |     +-- Transform EESPSUBSA ( Name =  )
       |     +-- Transform EESPSSID ( Name =  )
@@ -181,15 +181,15 @@ the original EESP SA.
 
 ** Replay Protection Service
 EESP provides an optional Replay service using
-Full 64 bit Sequence Numbers(TBD9), carried in the packet.
+64-bit sequence numbers carried in the packet.
 To enable Replay service the initiator SHOULD
 propose Sequence Numbers Transforms,
-SN = (Full 64 bit Sequence Number(TBD9)) in Substructure of the
+SN = (64-bit Sequential Numbers) in the
 Proposal Substructure inside the Security Association (SA) payload
-in the IKEv2 Exchange. When the responder select Full 64 bit SN a
-receiver MUST enable Reply Protection.
+in the IKEv2 Exchange. When the responder selects 64-bit Sequential Numbers, a
+both sides MUST enable Reply Protection.
 
-# NOTE STK: I'd say MUST above as we want to negotiate Anti-Replayservice
+# NOTE STK: I'd say MUST above as we want to negotiate Anti-Replay service
 # and not just the presense of the seq nr field.
 
 To disable sequence numbering, and thus replay protection based on
@@ -216,8 +216,8 @@ as specified in [[RFC8750]], the IV MUST be omitted in the EESP
 packet. To enable this functionality, IIV transforms defined in
 [[IKEv2-Enc]] MUST be used during negotiation. Furthermore,
 the [[IKEv2-SN]] extension MUST be negotiated to support the use of
-a Full 64-bit Sequence Numbers in EESP packets. If the the proposal
-does not include Full 64-bit Sequence Numbers return error
+64-bit Sequential Numbers in EESP packets. If the the proposal
+does not include 64-bit Sequential Numbers return error
 NO_PROPOSAL_CHOSEN.
 
 ** EESP Version
@@ -490,8 +490,8 @@ This document defines a new value in the IKEv2 "Transform Type 5 - Sequence
 
 | Value   | Name                          | Reference       |
 |---------+-------------------------------+-----------------+
-| [TBD9]  | Full 64-bit Sequence Numbers  | [this document] |
-| [TBD10] | Full 64-bit Sequence Numbers  | [this document] |
+| [TBD9]  | 64-bit Sequential Numbers     | [this document] |
+| [TBD10] | None                          | [this document] |
 
 ** New Registries
 
