[IPsec] Fwd: New Version Notification for draft-nir-ipsecme-curve25519-00.txt

Yoav Nir <ynir.ietf@gmail.com> Thu, 11 June 2015 15:36 UTC

Return-Path: <ynir.ietf@gmail.com>
X-Original-To: ipsec@ietfa.amsl.com
Delivered-To: ipsec@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 044561AD333 for <ipsec@ietfa.amsl.com>; Thu, 11 Jun 2015 08:36:11 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.999
X-Spam-Level:
X-Spam-Status: No, score=-1.999 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id eADoXAvmF55g for <ipsec@ietfa.amsl.com>; Thu, 11 Jun 2015 08:36:09 -0700 (PDT)
Received: from mail-wi0-x244.google.com (mail-wi0-x244.google.com [IPv6:2a00:1450:400c:c05::244]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A95661B2A83 for <ipsec@ietf.org>; Thu, 11 Jun 2015 08:36:08 -0700 (PDT)
Received: by wibbw19 with SMTP id bw19so3925258wib.2 for <ipsec@ietf.org>; Thu, 11 Jun 2015 08:36:07 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=from:content-type:message-id:mime-version:subject:date:references :cc:to; bh=txtYbB3/xdeVVyCpqmNLSsuCbeEPqemcqdki+IUurEU=; b=U2UaC6PJk0kf/LQ35pbxpExqTuRxgdKjcwo1dGz4eiqpsZurzHaY/Tg8suxgyMu0nP eo1W8mAeLVprzEH6rE9h6vbY2b5iNzLejbmSOlfm4fSlarUSdoYmAOM//3hxhu7nnRma u8k/YL1xcmTB3yk8uS36svC5oDvfl2kKwiSzb3zQb6ka/9ph+K4ybVjpOFBiZhVqmS6M waXEtkavB8cnLVTR+PAZQU883mgTMpsshB8QGToyPkG0tk8LaN+2ZRGj7aMQBbEhaGXX X8S+JOR0hkPk3HwVujZboIPnGfi9cGmwYVOniWBrBSqvJd5p7p/Sx07uO4xClpk0OSsk yXgw==
X-Received: by 10.194.21.232 with SMTP id y8mr18017458wje.36.1434036967459; Thu, 11 Jun 2015 08:36:07 -0700 (PDT)
Received: from [172.24.251.11] (dyn32-131.checkpoint.com. [194.29.32.131]) by mx.google.com with ESMTPSA id pf4sm1590481wjb.23.2015.06.11.08.36.05 (version=TLSv1 cipher=ECDHE-RSA-RC4-SHA bits=128/128); Thu, 11 Jun 2015 08:36:06 -0700 (PDT)
From: Yoav Nir <ynir.ietf@gmail.com>
Content-Type: multipart/alternative; boundary="Apple-Mail=_0F9AA793-6180-4562-B4BE-38B89EB256E4"
Message-Id: <39AE92BD-B1AE-49CF-A2A7-B415A244623A@gmail.com>
Mime-Version: 1.0 (Mac OS X Mail 8.2 \(2098\))
Date: Thu, 11 Jun 2015 18:36:03 +0300
References: <20150611080126.29376.94702.idtracker@ietfa.amsl.com>
To: IPsecME WG <ipsec@ietf.org>
X-Mailer: Apple Mail (2.2098)
Archived-At: <http://mailarchive.ietf.org/arch/msg/ipsec/T5cvnN7WUJY6czuxqS-ftyf7i8Y>
Cc: Simon Josefsson <simon@josefsson.org>
Subject: [IPsec] Fwd: New Version Notification for draft-nir-ipsecme-curve25519-00.txt
X-BeenThere: ipsec@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Discussion of IPsec protocols <ipsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipsec>, <mailto:ipsec-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ipsec/>
List-Post: <mailto:ipsec@ietf.org>
List-Help: <mailto:ipsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipsec>, <mailto:ipsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 11 Jun 2015 15:36:11 -0000

Hi

I’ve submitted this draft, mostly based on Simon’s TLS draft.

CFRG is considering new curves for key agreement. So far, they’ve selected Curve25519 and they might add another one. This draft requests an identifier for this curve and standardizes payload format for IKE.

Compared to NIST curves such as P-256, Curve25519 is faster and easier to implement securely. It is now being used in SSH and TLS (experimentally). I believe the security requirements of IKE and those other protocols are very similar, so it makes sense to standardize this here as well.

My future plans for this draft:
 - Solicit feedback (that is this message)
 - Request adoption
 - Add examples
 - Request publication (only when CFRG is done, probably in parallel with TLS)

Yoav

> Begin forwarded message:
> 
> From: internet-drafts@ietf.org
> Subject: New Version Notification for draft-nir-ipsecme-curve25519-00.txt
> Date: June 11, 2015 at 11:01:26 AM GMT+3
> To: "Yoav Nir" <ynir.ietf@gmail.com>, "Simon Josefsson" <simon@josefsson.org>, "Yoav Nir" <ynir.ietf@gmail.com>, "Simon Josefsson" <simon@josefsson.org>
> 
> 
> A new version of I-D, draft-nir-ipsecme-curve25519-00.txt
> has been successfully submitted by Yoav Nir and posted to the
> IETF repository.
> 
> Name:		draft-nir-ipsecme-curve25519
> Revision:	00
> Title:		Using Curve25519 for IKEv2 Key Agreement
> Document date:	2015-06-11
> Group:		Individual Submission
> Pages:		11
> URL:            https://www.ietf.org/internet-drafts/draft-nir-ipsecme-curve25519-00.txt
> Status:         https://datatracker.ietf.org/doc/draft-nir-ipsecme-curve25519/
> Htmlized:       https://tools.ietf.org/html/draft-nir-ipsecme-curve25519-00
> 
> 
> Abstract:
>   This document describes the use of Curve25519 for ephemeral key
>   exchange in the Internet Key Exchange (IKEv2) protocol.
> 
> 
> 
> 
> Please note that it may take a couple of minutes from the time of submission
> until the htmlized version and diff are available at tools.ietf.org.
> 
> The IETF Secretariat
>