If an endpoint makes use of a partial security
context stored in nonvolatile memory, it MUST NOT reuse a
previous Sender Sequence Number and MUST NOT accept previously
received messages.
This requirement is not met now if the device reboots before first NVM write (once per x SSN increments).
Additional NVM write has to be added for proper operation described in https://datatracker.ietf.org/doc/html/rfc8613#section-7.5:
This requirement is not met now if the device reboots before first NVM write (once per x SSN increments).