0
Counter mode encryption is potentially more robust against lost packets. It is used in SRTP.
I assume that if I use counter mode, a lost packet causes a lost UDP packet or TCP retransmission instead of total renegotiation of the security context.
I found some RFC drafts describing IPsec counter mode but I have no idea how widely it is really implemented. There is a mention that StrongSwan may have implemented it 2010.
Is IPsec counter mode something I could assume to be found in any standard Cisco endpoint?
Are there essential weaknessess in the counter mode?