If KUDOS is not ran with margin, msg exchanges may need to be aborted

core-wg · Sep 27, 2024 · 0998c2d · 0998c2d
1 parent 968d421
commit 0998c2d
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/draft-ietf-core-oscore-key-update.md b/draft-ietf-core-oscore-key-update.md
@@ -130,7 +130,7 @@ Two peers communicating using OSCORE may choose to renew their shared keying inf
 
 In addition to approaching the key usage limits, there may be other reasons for a peer to initiate a key update procedure. These include: the OSCORE Security Context approaching its expiration time; application policies prescribing a regular key rollover; approaching the exhaustion of the Sender Sequence Number space in the OSCORE Sender Context.
 
-It is RECOMMENDED that the peer initiating the key update procedure starts it with some margin, i.e., well before actually experiencing the trigger event forcing to perform a key update, e.g., the OSCORE Security Context expiration or the exhaustion of the Sender Sequence Number space. If the rekeying is not initiated ahead of these events, it may become practically impossible to perform a key update with certain methods.
+It is RECOMMENDED that the peer initiating the key update procedure starts it with some margin, i.e., well before actually experiencing the trigger event forcing to perform a key update, e.g., the OSCORE Security Context expiration or the exhaustion of the Sender Sequence Number space. If the rekeying is not initiated ahead of these events, it may become practically impossible to perform a key update with certain methods, and/or without aborting ongoing message exchanges.
 
 Other specifications define a number of ways for rekeying OSCORE, as summarized below.