A Security Association (SA) is a simplex "connection" that affords
security services to the traffic carried by it. Security services
are afforded to an SA by the use of AH, or ESP, but not both. If
both AH and ESP protection is applied to a traffic stream, then two
(or more) SAs are created to afford protection to the traffic stream.
Domanda 1: perché due o più SA vengono creati anziché uno quando vengono utilizzati sia AH che ESP?
Domanda 2: Perché sarebbe male usare entrambi AH e ESP per una Security Association?