Re: [IPsec] AD review of draft-ietf-ipsecme-ikev2-multiple-ke-06
Roman Danyliw <rdd@cert.org> Mon, 03 October 2022 12:00 UTC
Return-Path: <rdd@cert.org>
X-Original-To: ipsec@ietfa.amsl.com
Delivered-To: ipsec@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8E887C14F733 for <ipsec@ietfa.amsl.com>; Mon, 3 Oct 2022 05:00:08 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.107
X-Spam-Level:
X-Spam-Status: No, score=-2.107 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cert.org
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id FEr7aORs0yV7 for <ipsec@ietfa.amsl.com>; Mon, 3 Oct 2022 05:00:04 -0700 (PDT)
Received: from USG02-CY1-obe.outbound.protection.office365.us (mail-cy1usg02on0099.outbound.protection.office365.us [23.103.209.99]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E8A5CC1522CB for <ipsec@ietf.org>; Mon, 3 Oct 2022 04:59:57 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector5401; d=microsoft.com; cv=none; b=v50ByX8sfOc+kEB6joHnpMLOh0avEZmAKgbpfRPOVt2n6IsIpkIRkmiZU/4+qBIqUCv3kN1UBNTuY3QOJBVNZ73HjqPmW/etIVRWF4VKobOogiii4tA1n7wPjRlje73K6gE2Imz5BdTVeqvIk1RQIOzn3DCMwWkLRMrC8N2H7gYBLjJc2r0+kobDOHEDD+wuGS0tQakfncj/HIzsr00glXkN+4py4qkaPac/Y4busRYhsy74voYpeysaf6hwRwh0sDzYOfWaGXVrYo8nNeKyShOHeBgLbps159gX66p/LqG8GDSrPsrE95oQ1aP1VZKDlceiVc/8qiV2q6J9cLsSnw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector5401; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=+jrkCZfDD+FC4KzlT2x16Im7hJcA96Pw+UpEWyz7QPo=; b=d1e8FYYVQWHsd7kxzAghSMz+HYgrJcOWlw4skcWBnrIMngLEaiOcANKcEKJzQG1bBAH3U4A7erzv7SXysBrhxnZ/Gru6sO9dlfKGTHZ9iNYdPT08h46SsA+c7295rYCjOKbPHYrYb1iG7Iu+jNmmGme2JGwYsvNYMKFE47HhQKv/on8Azs8qRXGtoK2V4E11/A/e7yD69Bv+uQnddKcop1ZnmS869wLMs/vsjco82qMrfQutkXFijnLHbQUHJt0C2/PNHGfSpo5SRJNCZ+GGgH/1Clr+wGU3/AhuxeHRaQEtWxduj92ZYSgql6LuvusJxWL+Fu0BsPSCDQOOE18YGg==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cert.org; dmarc=pass action=none header.from=cert.org; dkim=pass header.d=cert.org; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cert.org; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=+jrkCZfDD+FC4KzlT2x16Im7hJcA96Pw+UpEWyz7QPo=; b=muPiTkIZwYV+NFilhpzNRQ6quU2XcnDGmg1+KPPz1p8NqNAGg6e4N16UlJTHKBke9owvFg8diKeYNuVCPdZOmYMBP1/img++jC/pSLFeThQu9bumgivvl2yVPW/9htsZn3Dc6ki5v9YNV+FTZpJM14GtAzFmt/RbvZjUN8UwWTg=
Received: from BN2P110MB1107.NAMP110.PROD.OUTLOOK.COM (2001:489a:200:168::11) by BN2P110MB0978.NAMP110.PROD.OUTLOOK.COM (2001:489a:200:16a::13) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.5676.20; Mon, 3 Oct 2022 11:59:53 +0000
Received: from BN2P110MB1107.NAMP110.PROD.OUTLOOK.COM ([fe80::dbc:d573:57cb:e0e1]) by BN2P110MB1107.NAMP110.PROD.OUTLOOK.COM ([fe80::dbc:d573:57cb:e0e1%6]) with mapi id 15.20.5676.020; Mon, 3 Oct 2022 11:59:53 +0000
From: Roman Danyliw <rdd@cert.org>
To: Andreas Steffen <andreas.steffen@strongswan.org>, "ipsec@ietf.org" <ipsec@ietf.org>
Thread-Topic: [IPsec] AD review of draft-ietf-ipsecme-ikev2-multiple-ke-06
Thread-Index: AdjVFve8l6i95Y8RTMyDGHjJmSSKlwAchgUAAGWGXZA=
Date: Mon, 03 Oct 2022 11:59:53 +0000
Message-ID: <BN2P110MB11070321EFE91505A8317336DC5B9@BN2P110MB1107.NAMP110.PROD.OUTLOOK.COM>
References: <BN2P110MB1107D456BF345148FADD88CFDC569@BN2P110MB1107.NAMP110.PROD.OUTLOOK.COM> <bd7f2386-c930-9a96-2a55-9ce4e25b1966@strongswan.org>
In-Reply-To: <bd7f2386-c930-9a96-2a55-9ce4e25b1966@strongswan.org>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=cert.org;
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: BN2P110MB1107:EE_|BN2P110MB0978:EE_
x-ms-office365-filtering-correlation-id: 0f5e6cb6-7267-442e-7326-08daa536c892
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:BN2P110MB1107.NAMP110.PROD.OUTLOOK.COM; PTR:; CAT:NONE; SFS:(13230022)(366004)(451199015)(2906002)(110136005)(33656002)(5660300002)(66946007)(64756008)(66556008)(66446008)(66476007)(76116006)(71200400001)(498600001)(86362001)(8936002)(966005)(7696005)(6506007)(53546011)(186003)(26005)(83380400001)(38070700005)(82960400001)(9686003)(52536014)(8676002)(122000001)(38100700002)(55016003); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: aIOh19oAc+2z6Lf6jlMsvT0+krUgEM0SulxextYXnjuQFyvuTY3tpZg4+eIXMw0hVqBHe8X0q7Bo8S/rNXSaL7ABAxL/WqmptxLfnkd+jzyqwPn2U3ayULty1BKWFUwZ5YRqLpmD2wx8gcoELJGdh0RMrWcBkouIZ2/viDoUkjvapdktoLfLSMqPlbUftNJujidtIbYPnN4+vO0oipLeoySTHXVDDi/xEuV/A98Llj+6JMHjPF1COiwnuClpFLxWjjqIhclVbKwtlIHSr3DvgmHW0PCxoLl/kMvnMtIfoCe5I8vhKXhy1Ow/Lxa0nMC9uoQICqxynJCnqsvO10JighLUvN4Xc0Tg7pZv3RwoAs01wdzGIkXzumTapBQNCm0xLiBcFPZuz3xu/v/53x0aZqyCmqCZp0cSM8LPZ/9ZYPM=
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-OriginatorOrg: cert.org
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: BN2P110MB1107.NAMP110.PROD.OUTLOOK.COM
X-MS-Exchange-CrossTenant-Network-Message-Id: 0f5e6cb6-7267-442e-7326-08daa536c892
X-MS-Exchange-CrossTenant-originalarrivaltime: 03 Oct 2022 11:59:53.7579 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 95a9dce2-04f2-4043-995d-1ec3861911c6
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BN2P110MB0978
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipsec/4RXedhCWfj-5x1q15WEuaooj7NE>
Subject: Re: [IPsec] AD review of draft-ietf-ipsecme-ikev2-multiple-ke-06
X-BeenThere: ipsec@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Discussion of IPsec protocols <ipsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipsec>, <mailto:ipsec-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipsec/>
List-Post: <mailto:ipsec@ietf.org>
List-Help: <mailto:ipsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipsec>, <mailto:ipsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 03 Oct 2022 12:00:08 -0000
Hi Adreas! > -----Original Message----- > From: IPsec <ipsec-bounces@ietf.org> On Behalf Of Andreas Steffen > Sent: Saturday, October 1, 2022 7:29 AM > To: Roman Danyliw <rdd@cert.org>; ipsec@ietf.org > Subject: Re: [IPsec] AD review of draft-ietf-ipsecme-ikev2-multiple-ke-06 > > On 01.10.22 00:19, Roman Danyliw wrote: > > > > ** Question 4 > > > > Several implementors have been integral in developing this document, > > thus implementors have indicated interest in implementing this. There > > is already at least two interoperable implementations of this specification. > > > > Could these implementations be explicitly named? > > 1) strongSwan implements the draft-ietf-ipsecme-ikev2-multiple-ke > document: > > https://github.com/strongswan/strongswan/tree/ikev2-qske-multi-ke > > As soon as the RFC is published, strongSwan 6.0 with QSKE-Multi-KE > support will be released > > 2) A second implementation with which strongSwan has been successfully > interoperating is ELVIS by Valery Smyslov <svan@elvis.ru>. Thanks for this information. I merged it into the shepherd report. Roman
- [IPsec] AD review of draft-ietf-ipsecme-ikev2-mul… Roman Danyliw
- Re: [IPsec] AD review of draft-ietf-ipsecme-ikev2… Andreas Steffen
- Re: [IPsec] AD review of draft-ietf-ipsecme-ikev2… Roman Danyliw
- Re: [IPsec] AD review of draft-ietf-ipsecme-ikev2… CJ Tjhai
- Re: [IPsec] AD review of draft-ietf-ipsecme-ikev2… Roman Danyliw
- Re: [IPsec] AD review of draft-ietf-ipsecme-ikev2… Roman Danyliw
- Re: [IPsec] AD review of draft-ietf-ipsecme-ikev2… Tero Kivinen
- Re: [IPsec] AD review of draft-ietf-ipsecme-ikev2… Valery Smyslov
- Re: [IPsec] AD review of draft-ietf-ipsecme-ikev2… CJ Tjhai
- Re: [IPsec] AD review of draft-ietf-ipsecme-ikev2… Roman Danyliw