The editor's copy of -33 has updated text for Section 12.2. Changes are shown below in bold.
OLD:
The UNSAFE Encryption (UENC, Kind=193) option is reserved for all UDP encryption mechanisms. UENC is expected to cover the UDP user data and some (e.g., later, in sequence) UDP options, with possible additional protection of portions of the IP and UDP headers and potentially also support for NAT traversal, in a similar manner as TCP-AO [RFC6978].
NEW:
The UNSAFE Encryption (UENC, Kind=193) option is reserved for all UDP encryption mechanisms. UENC is expected to provide all of the services of the AUTH option (Section 11.9) and in addition to encrypt the UDP user data and some (e.g., later, in sequence) UDP options, in a similar manner as TCP-AO-ENC [To18].
The stipulation that UENC provides the services of AUTH is a clarification only, as there is already text in Section 10 that says "AUTH and UENC are never used together, as UENC would serve both purposes." Likewise, updating the reference to [To18] (which is otherwise unused) simply restores what was there before this option because a placeholder.
Please speak up if you find this change objectionable.
The editor's copy of -33 has updated text for Section 12.2. Changes are shown below in bold.
OLD:
NEW:
The stipulation that UENC provides the services of AUTH is a clarification only, as there is already text in Section 10 that says "AUTH and UENC are never used together, as UENC would serve both purposes." Likewise, updating the reference to [To18] (which is otherwise unused) simply restores what was there before this option because a placeholder.
Please speak up if you find this change objectionable.