... identifying IANA number is needed. This number (the value 11 for ESP_NULL) is ... McDonald, "Heuristics for Detecting ESP-NULL packets", RFC 5879, May 2010.

1. Abstract This memo describes the Host Identity Payload, HIP, which is designed to carry a trustable host identity based on public key cryptography like DSA [ ...

... identified as the document authors. All rights reserved ... (ESP-NULL) [RFC2410] can provide the same ... packets inside UDP packets for traversing NATs [RFC3948].

... ESP null provides much the same security services as IPSEC AH, but without explicitly covering the IP header in its authentication hash, it is recommended ...

The ESP NULL transform is defined in [ESPNULL]. See the Authentication Algorithm attribute description in Section 4.5 for additional requirements relating ...

Non IPSec Authentication mechanism for OSPFv3 (Internet-Draft, 2010)

An added detail is to determine whether OSPFv3 IPsec implementations use AH or ESP-Null for integrity protection. In early implementations all OSPFv3 IPsec ...

... identify what the criteria used to match packets forwarded by the router is. This criteria should be meaningful across router hops and not depend on values ...

... identifies the receiver HIT at every given point of time. ... ESP-NULL with HMAC-SHA1 5 ESP-NULL with HMAC-MD5 ... packets for a NES packet. This is a potential DoS ...

To address these vulnerabilities RADIUS proxies SHOULD check whether NAS identification Attributes match the source address of packets originating from the NAS.