I am concerned about the issue that Russ Housley raised in his Gen-ART
review: bad practices in creating the freshness tokens creates a security
issue. If this cannot be handled in the way that Russ initially suggested
(setting a minimum number of bits) then a proper discussion of the issue
and recommendations to avoid the problems need to be included in the
security considerations section.