Protocol Action: 'OSPFv2 HMAC-SHA Cryptographic Authentication' to Proposed Standard

The IESG <> Fri, 04 September 2009 15:33 UTC

Return-Path: <>
Received: by (Postfix, from userid 30) id E48053A6A3C; Fri, 4 Sep 2009 08:33:38 -0700 (PDT)
X-idtracker: yes
From: The IESG <>
To: IETF-Announce <>
Subject: Protocol Action: 'OSPFv2 HMAC-SHA Cryptographic Authentication' to Proposed Standard
Message-Id: <>
Date: Fri, 04 Sep 2009 08:33:38 -0700
Cc: ospf mailing list <>, ospf chair <>, Internet Architecture Board <>, RFC Editor <>
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: "IETF announcement list. No discussions." <>
List-Unsubscribe: <>, <>
List-Archive: <>
List-Post: <>
List-Help: <>
List-Subscribe: <>, <>
X-List-Received-Date: Fri, 04 Sep 2009 15:33:39 -0000

The IESG has approved the following document:

- 'OSPFv2 HMAC-SHA Cryptographic Authentication '
   <draft-ietf-ospf-hmac-sha-07.txt> as a Proposed Standard

This document is the product of the Open Shortest Path First IGP Working Group. 

The IESG contact persons are Ross Callon and Adrian Farrel.

A URL of this Internet-Draft is:

Technical Summary

   This document describes how the NIST Secure Hash Standard family of
   algorithms can be used with OSPF version 2's built-in cryptographic
   authentication mechanism.  This updates, but does not supercede,
   the cryptographic authentication mechanism specified in RFC 2328.

Working Group Summary

   No dissent reported (see PROTO writeup by Acee Lindem). Both WG 
   members and members of the security community have reviewed the 
   document.  There was controversy as to how the HMAC-SHA digest 
   would be computed and the subject draft is the agreed upon solution. 

Document Quality

   The document has been updated in response to Gen-Art and Sec-dir
   reviews. There is at least one prototype implementation. 


   Acee Lindem is the Document Shepherd for this document. Ross
   Callon is the Responsible Area Director.