-63B Table 4-1 (which is informative, fortunately) says that replay resistance is not required at AAL2. This is incorrect; replay resistance for at least one authenticator used at AAL2 is required per Section 4.2.2 paragraph 1.

Somehow, this error only appears in the PDF version of the document.