Closed rikard-sics closed 3 months ago
We can present the 2 alternatives we came up with during a future CoRE session and see what feedback we get.
Alternative 1: Either don't decrypt the request at all, but respond with encrypted response. Alternative 2: Do in fact decrypt the request, thus making exception and use the Recipient Key even though the limits are reached.
This could be raised during a future meeting
Added tentative text to be discussed early in section "Key Update with Forward Secrecy".
How should an endpoint supporting KUDOS, but which can only act as CoAP server (meaning it cannot send requests), act in the case it receives an OSCORE protected message but its 'v' limit has been reached? (Thus it cannot safely decrypt the incoming request).