Bryan Wang writes: In ID 21 and ID 20. There are three places talking
about the data to be included in the authenticator computation, and
one of them has to be corrected.
 
    Binding Update
          *  Parameters:
             +  HMAC_SHA1 (Kbm, (care-of address | CN address | BU))
     
    Binding Acknowledgement
          *  Parameters:
             +  HMAC_SHA1 (Kbm, (care-of address | CN address | BA))
     
    6.2.7 Binding Authorization Data
         Mobility Data = care-of address | final dest | Mobility Header Data
         Authenticator = First (96, HMAC_SHA1 (Kbm, Mobility Data))

Which one?

------------------------

Jari Arkko responds to Bryan Wang: I have now aligned the formulas, as
well as clarified that "final dest" is the CN address, not the MN
address (was unclear for BAs).

See http://www.piuha.net/~jarkko/publications/mipv6/drafts/mobilev6.html#rr-cnbind
    http://www.piuha.net/~jarkko/publications/mipv6/drafts/mobilev6.html#auth-option

------------------------


------------------------


------------------------