Jonathan Wood: I'd like to get some clarification on timestamp
management - what is going into the next draft?

One thing which has not been clear to me thus far is what to do when
the cache becomes full -  how should we decide which entries to
throw out? We need a strategy that does not allow an attacker to
flush a timestamp cache with bogus entries as a prelude to performing
a replay attack.

-----------

Pekka Nikander: Issue 26 concerned timestamp and cache management:

> Jonathan Wood: I'd like to get some clarification on timestamp
> management - what is going into the next draft?
>
> One thing which has not been clear to me thus far is what to do when
> the cache becomes full -  how should we decide which entries to
> throw out? We need a strategy that does not allow an attacker to
> flush a timestamp cache with bogus entries as a prelude to performing
> a replay attack.


As per the below message by Jon, I think this issue will be
closed as soon as we get issues 11 / 22 completely closed.

> Date: Tue, 14 Oct 2003 20:25:25 -0700
> Subject: Re: Closing issues 11 and 22: Nonce and timestamp management
> Cc: SEND WG <ietf-send@standards.ericsson.net>
> To: Pekka Nikander <pekka.nikander@ericsson.com>
> From: Jonathan Wood <jonwood@speakeasy.net>
> Message-Id: <376069A2-FEBF-11D7-9372-0003930D291E@speakeasy.net>
>
> This looks good to me - one question, and one minor editorial
> comment:

-----------

-----------

-----------