[IPsec] Protocol Action: 'IP-TFS: Aggregation and Fragmentation Mode for ESP and its Use for IP Traffic Flow Security' to Proposed Standard (draft-ietf-ipsecme-iptfs-19.txt)
The IESG <iesg-secretary@ietf.org> Fri, 23 September 2022 00:55 UTC
Return-Path: <iesg-secretary@ietf.org>
X-Original-To: ipsec@ietf.org
Delivered-To: ipsec@ietfa.amsl.com
Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id BCAD5C152580; Thu, 22 Sep 2022 17:55:17 -0700 (PDT)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
From: The IESG <iesg-secretary@ietf.org>
To: IETF-Announce <ietf-announce@ietf.org>
X-Test-IDTracker: no
X-IETF-IDTracker: 8.17.0
Auto-Submitted: auto-generated
Precedence: bulk
Cc: The IESG <iesg@ietf.org>, draft-ietf-ipsecme-iptfs@ietf.org, ipsec@ietf.org, ipsecme-chairs@ietf.org, kivinen@iki.fi, rdd@cert.org, rfc-editor@rfc-editor.org
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
Message-ID: <166389451776.62163.238855932267927157@ietfa.amsl.com>
Date: Thu, 22 Sep 2022 17:55:17 -0700
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipsec/-BuTyYmac3dhYlMIpR4Zpl9le7w>
Subject: [IPsec] Protocol Action: 'IP-TFS: Aggregation and Fragmentation Mode for ESP and its Use for IP Traffic Flow Security' to Proposed Standard (draft-ietf-ipsecme-iptfs-19.txt)
X-BeenThere: ipsec@ietf.org
X-Mailman-Version: 2.1.39
List-Id: Discussion of IPsec protocols <ipsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipsec>, <mailto:ipsec-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipsec/>
List-Post: <mailto:ipsec@ietf.org>
List-Help: <mailto:ipsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipsec>, <mailto:ipsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 23 Sep 2022 00:55:17 -0000
The IESG has approved the following document: - 'IP-TFS: Aggregation and Fragmentation Mode for ESP and its Use for IP Traffic Flow Security' (draft-ietf-ipsecme-iptfs-19.txt) as Proposed Standard This document is the product of the IP Security Maintenance and Extensions Working Group. The IESG contact persons are Paul Wouters and Roman Danyliw. A URL of this Internet Draft is: https://datatracker.ietf.org/doc/draft-ietf-ipsecme-iptfs/ Technical Summary This document describes a mechanism for aggregation and fragmentation of IP packets when they are being encapsulated in ESP payload. This new payload type can be used for various purposes such as decreasing encapsulation overhead for small IP packets; however, the focus in this document is to enhance IPsec traffic flow security (IP-TFS) by adding Traffic Flow Confidentiality (TFC) to encrypted IP encapsulated traffic. TFC is provided by obscuring the size and frequency of IP traffic using a fixed-sized, constant-send-rate IPsec tunnel. The solution allows for congestion control as well as non-constant send-rate usage. Working Group Summary Various aspects of the document were discussed and debated, with multiple revisions incorporating the results. There was no controversy though, and there is good WG consensus. Document Quality At least one implementation will be open sourced, with interest by others in implementing. There were multiple thorough reviews by experts in the WG. Personnel Document Shepherd: Tero Kivinen Responsible Area Director: Roman Danyliw