IETF Logo Mail Archive

[IPsec] I-D on Using the ECC Brainpool Curves for IKEv2 Key Exchange

Johannes Merkle <johannes.merkle@secunet.com> Mon, 05 November 2012 13:35 UTC

Return-Path: <Johannes.Merkle@secunet.com>
X-Original-To: ipsec@ietfa.amsl.com
Delivered-To: ipsec@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 59ED021F85A1 for <ipsec@ietfa.amsl.com>; Mon, 5 Nov 2012 05:35:19 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.599
X-Spam-Level:
X-Spam-Status: No, score=-3.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, RCVD_IN_DNSWL_LOW=-1]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id H+4-dxjEJx9T for <ipsec@ietfa.amsl.com>; Mon, 5 Nov 2012 05:35:18 -0800 (PST)
Received: from a.mx.secunet.com (a.mx.secunet.com [195.81.216.161]) by ietfa.amsl.com (Postfix) with ESMTP id BE1D621F84C9 for <ipsec@ietf.org>; Mon, 5 Nov 2012 05:35:18 -0800 (PST)
Received: from localhost (alg1 [127.0.0.1]) by a.mx.secunet.com (Postfix) with ESMTP id E44441A007A; Mon, 5 Nov 2012 14:35:17 +0100 (CET)
X-Virus-Scanned: by secunet
Received: from mail-srv1.secumail.de (unknown [10.53.40.200]) by a.mx.secunet.com (Postfix) with ESMTP id DD0641A007E; Mon, 5 Nov 2012 14:35:08 +0100 (CET)
Received: from [10.208.1.73] ([10.208.1.73]) by mail-srv1.secumail.de with Microsoft SMTPSVC(6.0.3790.4675); Mon, 5 Nov 2012 14:35:08 +0100
Message-ID: <5097C08B.9070206@secunet.com>
Date: Mon, 05 Nov 2012 14:35:07 +0100
From: Johannes Merkle <johannes.merkle@secunet.com>
User-Agent: Mozilla/5.0 (Windows NT 5.1; rv:16.0) Gecko/20121026 Thunderbird/16.0.2
MIME-Version: 1.0
To: IPsecme WG <ipsec@ietf.org>
X-Enigmail-Version: 1.4.5
Content-Type: text/plain; charset="ISO-8859-15"
Content-Transfer-Encoding: 7bit
X-OriginalArrivalTime: 05 Nov 2012 13:35:08.0683 (UTC) FILETIME=[5F7905B0:01CDBB5A]
Cc: rfc-ise@rfc-editor.org
Subject: [IPsec] I-D on Using the ECC Brainpool Curves for IKEv2 Key Exchange
X-BeenThere: ipsec@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Discussion of IPsec protocols <ipsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipsec>, <mailto:ipsec-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ipsec>
List-Post: <mailto:ipsec@ietf.org>
List-Help: <mailto:ipsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipsec>, <mailto:ipsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 05 Nov 2012 13:35:19 -0000

We have submitted a new revision of the Internet Draft Using the ECC Brainpool Curves (defined in RFC 5639) for IKEv2
Key Exchange
https://datatracker.ietf.org/doc/draft-merkle-ikev2-ke-brainpool/

Last week, this draft has also been submitted to the Independent Submission Editor.

The draft specifies 4 new code points for the IKEv2 transform ID registry (224, 256, 384 and 512 bit curve) and
specifies the encoding of the KE payload with and without point compression. The test vectors are shared with Dan's
draft on IKEv1 http://tools.ietf.org/html/draft-harkins-brainpool-ike-groups-01. I have removed the "twisted curves" and
included a note how to use them internally (for efficient implementation) using input / output transformations.

Any feedback is welcome.

-- 
Johannes

v2.23.0 | Report a Bug | By Email