Re: [IPsec] I-D Action: draft-ietf-ipsecme-ikev2-intermediate-02.txt
"Valery Smyslov" <smyslov.ietf@gmail.com> Wed, 24 July 2019 11:27 UTC
Return-Path: <smyslov.ietf@gmail.com>
X-Original-To: ipsec@ietfa.amsl.com
Delivered-To: ipsec@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2B68A120181 for <ipsec@ietfa.amsl.com>; Wed, 24 Jul 2019 04:27:34 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.998
X-Spam-Level:
X-Spam-Status: No, score=-1.998 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id pal6pWggWZeQ for <ipsec@ietfa.amsl.com>; Wed, 24 Jul 2019 04:27:32 -0700 (PDT)
Received: from mail-qt1-x832.google.com (mail-qt1-x832.google.com [IPv6:2607:f8b0:4864:20::832]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 6BFCD120180 for <ipsec@ietf.org>; Wed, 24 Jul 2019 04:27:32 -0700 (PDT)
Received: by mail-qt1-x832.google.com with SMTP id x22so40135222qtp.12 for <ipsec@ietf.org>; Wed, 24 Jul 2019 04:27:32 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=from:to:references:in-reply-to:subject:date:message-id:mime-version :content-transfer-encoding:thread-index:content-language; bh=rvNN2uFOGjxWyF5f3Ep1ZN7OaQS2HW1YEQS8/BUcQdQ=; b=H8MgGfBdfqLQpBcSjBi4fSZlrHfOWlI4leK/SoWw1D8BXsUtSpzh3yZGS/5rTessKT d4E995P6eJiZZxZoQKyYgbF75OYxhs3UvBCIvPyCBHkAozmtR/ZEAFiJouGCFpmijA73 E9fUZbbDVnxKhTm4WkIDhyVikU2k2yFkXN8rQYz+2YLCX4VUD2ggPdlrJHrIwxtTHtFg /o9bJKaaN58JoNMGxSAyJkv8ZZf6eiiev5hazrAiYRS4jwotoBK0VWlRbqlESPjka9LM QyXD3o0dXk4cZpI6Y2PeJiM+l9j/0Y5N3n2vqea1ZSAHGSFiTvB6Zf7vWSERBxlrKa8l 2UFg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:to:references:in-reply-to:subject:date :message-id:mime-version:content-transfer-encoding:thread-index :content-language; bh=rvNN2uFOGjxWyF5f3Ep1ZN7OaQS2HW1YEQS8/BUcQdQ=; b=sJ9Pb5RZtKLcu5sa6/AHEXM4JXatstWIvpQj2j3zmlsvwLHDTowGotIE4txcYPmL9+ mR8MooGs+Lnt9gPhlgPo5xn+4jzpiCW9UzO5R8cz97fvo2CLk0lNwIF4FRZv1yQJLGzo psl8RZlUUNiqpgQn14BlHx7gP14+fAUjukWc8kqVONoiJNW7m656zlPqczRzPYfS+IdO ze3pp8GUwIM3/y7AiETB2+Nh9aDoAwSKP+7STp67IfRWbSFfngm1I/Ft4Y4s27cSqKbf 5XJM1LV+WABj2cSGWzIqpdJz0UxZm0yKH6VgP0zGUiY3jdykg7G8TYOWW3/fhPbfSQtv 1K1w==
X-Gm-Message-State: APjAAAVgED8hkvzmW/NpyBrTBm50c/5kgvsBiDCMLZ/+yFsfIE+pHrey WGuBTqZNv4t0YUAmpDFvDBp69ZPh2Lw=
X-Google-Smtp-Source: APXvYqyi2RPaSiSz0lptppYu6ff8tK9zaoN2Pq73tErxq2iSFNF073uU1Br9b0A9WtoYA8YNaagO9Q==
X-Received: by 2002:aed:254c:: with SMTP id w12mr59220231qtc.127.1563967651386; Wed, 24 Jul 2019 04:27:31 -0700 (PDT)
Received: from svannotebook (modemcable142.183-83-70.mc.videotron.ca. [70.83.183.142]) by smtp.gmail.com with ESMTPSA id d9sm20536227qke.136.2019.07.24.04.27.30 for <ipsec@ietf.org> (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Wed, 24 Jul 2019 04:27:30 -0700 (PDT)
From: Valery Smyslov <smyslov.ietf@gmail.com>
To: ipsec@ietf.org
References: <156396721669.14579.7164691266695481843@ietfa.amsl.com>
In-Reply-To: <156396721669.14579.7164691266695481843@ietfa.amsl.com>
Date: Wed, 24 Jul 2019 14:27:29 +0300
Message-ID: <061101d54212$c796c8d0$56c45a70$@gmail.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
X-Mailer: Microsoft Outlook 16.0
Thread-Index: AQHdP0C/dE8jBZfU6Q3cRhN0Cj/PC6bJpU4Q
Content-Language: ru
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipsec/Hzv-u6fUOYVd3z_xXvRQF7N55hs>
Subject: Re: [IPsec] I-D Action: draft-ietf-ipsecme-ikev2-intermediate-02.txt
X-BeenThere: ipsec@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Discussion of IPsec protocols <ipsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipsec>, <mailto:ipsec-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipsec/>
List-Post: <mailto:ipsec@ietf.org>
List-Help: <mailto:ipsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipsec>, <mailto:ipsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 24 Jul 2019 11:27:34 -0000
Hi, a new version of the IKE_INTERMEDIATE draft is published. The way authentication data is calculated is changed as a result of a private conversation with one of implementers. Now the size of the crypto-related stuff (IV, ICV, padding) is no more included into the calculation (note, that the stuff itself wasn't included before, but its size was, and it was wrong). Please, review. Regards, Valery. > A New Internet-Draft is available from the on-line Internet-Drafts directories. > This draft is a work item of the IP Security Maintenance and Extensions WG of > the IETF. > > Title : Intermediate Exchange in the IKEv2 Protocol > Author : Valery Smyslov > Filename : draft-ietf-ipsecme-ikev2-intermediate-02.txt > Pages : 11 > Date : 2019-07-24 > > Abstract: > This documents defines a new exchange, called Intermediate Exchange, > for the Internet Key Exchange protocol Version 2 (IKEv2). This > exchange can be used for transferring large amount of data in the > process of IKEv2 Security Association (SA) establishment. > Introducing Intermediate Exchange allows re-using existing IKE > Fragmentation mechanism, that helps to avoid IP fragmentation of > large IKE messages, but cannot be used in the initial IKEv2 exchange. > > > The IETF datatracker status page for this draft is: > https://datatracker.ietf.org/doc/draft-ietf-ipsecme-ikev2-intermediate/ > > There are also htmlized versions available at: > https://tools.ietf.org/html/draft-ietf-ipsecme-ikev2-intermediate-02 > https://datatracker.ietf.org/doc/html/draft-ietf-ipsecme-ikev2-intermediate- > 02 > > A diff from the previous version is available at: > https://www.ietf.org/rfcdiff?url2=draft-ietf-ipsecme-ikev2-intermediate-02 > > > Please note that it may take a couple of minutes from the time of submission > until the htmlized version and diff are available at tools.ietf.org. > > Internet-Drafts are also available by anonymous FTP at: > ftp://ftp.ietf.org/internet-drafts/ > > _______________________________________________ > IPsec mailing list > IPsec@ietf.org > https://www.ietf.org/mailman/listinfo/ipsec
- [IPsec] I-D Action: draft-ietf-ipsecme-ikev2-inte… internet-drafts
- Re: [IPsec] I-D Action: draft-ietf-ipsecme-ikev2-… Valery Smyslov