Re: [IPsec] New Version Notification for draft-tjhai-ipsecme-hybrid-qske-ikev2-03.txt
"Valery Smyslov" <smyslov.ietf@gmail.com> Wed, 16 January 2019 07:16 UTC
Return-Path: <smyslov.ietf@gmail.com>
X-Original-To: ipsec@ietfa.amsl.com
Delivered-To: ipsec@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id AABAC12F1AC; Tue, 15 Jan 2019 23:16:10 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.499
X-Spam-Level:
X-Spam-Status: No, score=-0.499 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_SORBS_WEB=1.5, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=no autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 4qinJQ9TcrsY; Tue, 15 Jan 2019 23:16:09 -0800 (PST)
Received: from mail-lf1-x136.google.com (mail-lf1-x136.google.com [IPv6:2a00:1450:4864:20::136]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id DE6A51310ED; Tue, 15 Jan 2019 23:16:08 -0800 (PST)
Received: by mail-lf1-x136.google.com with SMTP id a8so4056062lfk.5; Tue, 15 Jan 2019 23:16:08 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=from:to:cc:references:in-reply-to:subject:date:message-id :mime-version:content-transfer-encoding:thread-index :content-language; bh=piVOh8AKLa1MdQaFgufOD4W20wxwaMtPzQxnifnte4o=; b=kgh6S24ZHc2Z/T9GpDy+wIGP8SiVh2ulRW3mNKZcCgv345hLmSvRQoHoyroFQec0Ok 8g4f3c4Hb4+R89fSP/nxL2STmCPIjrbxYucqF0NVTlS0G+gtwfY/ZPNNsd5j70FRQ890 PX9QdDLYoPFoYe/B3wWMBqU6/omcOkRWQdk43Ykbq76bNkYUiQDxWdJUyq19FrvUWO5L KTvmxXq1pc3T8rz6+VCrktoX1XREyzda+hJ36ie4mginmvwzqv83X2/RJktUeEJ5Kbmp R5iKx2XFVcUkH6dOLvyTqOw/pbBJB2Ej6wMLQmxlatB3yvmE6RqvnO3KWRdqo8kz8Eqg v+jw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:to:cc:references:in-reply-to:subject:date :message-id:mime-version:content-transfer-encoding:thread-index :content-language; bh=piVOh8AKLa1MdQaFgufOD4W20wxwaMtPzQxnifnte4o=; b=eN3uOztC0ib9bQYromDPt/kwcB0uajFNb8u9/1snzaQl6a15pFECgqhZYL3lj09Kyq Y+BJqG93EPiGBSvL3z0IhMq0jxNyZ5cq7bQn1an5xQoJ4XT8qiXNjTXzBiqe3R+bzCnc 9HcTB5yJxXEYBU6uI7CIf9LVmUmtRJKQD2d+5mX5JiubcZajYuGNPaez96KAzfgKRk2A iKYkvuzgNOxHXINdHQB9BZ1mrZ9EdJlXHfF+bYdcedoEhyqZIdKEQBokcDDg3pfKQURU w6kmtEQ3pCK+ANBPWz0fCg+RluhxXsnGXC2dnLT+FxZtKglWrh/yHaxDSg2nTOfzmOzi K5UQ==
X-Gm-Message-State: AJcUukdTT+1JM89nwrBfDtTgiuWEUX7HMX0ftz7mPoyMEupAwlCTYcTJ /iBCqxrwpxGa8aWOYjKr6LAPbzfx
X-Google-Smtp-Source: ALg8bN7KknWIwiM6KBwvbhxnOExe0UOi7XoQ2cubtOWupFJ/ztguVAB/gF/p7qmMm89+A2oZCFo0fg==
X-Received: by 2002:a19:4849:: with SMTP id v70mr5633093lfa.62.1547622966527; Tue, 15 Jan 2019 23:16:06 -0800 (PST)
Received: from buildpc ([82.138.51.4]) by smtp.gmail.com with ESMTPSA id o17sm1012116lff.77.2019.01.15.23.16.05 (version=TLS1 cipher=ECDHE-RSA-AES128-SHA bits=128/128); Tue, 15 Jan 2019 23:16:05 -0800 (PST)
From: Valery Smyslov <smyslov.ietf@gmail.com>
To: IPsecME WG <ipsec@ietf.org>
Cc: draft-tjhai-ipsecme-hybrid-qske-ikev2@ietf.org
References: <154748799416.9552.17299073748247797491.idtracker@ietfa.amsl.com>
In-Reply-To: <154748799416.9552.17299073748247797491.idtracker@ietfa.amsl.com>
Date: Wed, 16 Jan 2019 10:15:41 +0300
Message-ID: <000101d4ad6b$4a790ca0$df6b25e0$@gmail.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
X-Mailer: Microsoft Outlook 14.0
Thread-Index: AQHua0po1SQdv3p8eF/bRngBUmtvn6V9+0SA
Content-Language: ru
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipsec/UCT-0BBDCFBnojybO8cignzaO_I>
Subject: Re: [IPsec] New Version Notification for draft-tjhai-ipsecme-hybrid-qske-ikev2-03.txt
X-BeenThere: ipsec@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Discussion of IPsec protocols <ipsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipsec>, <mailto:ipsec-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipsec/>
List-Post: <mailto:ipsec@ietf.org>
List-Help: <mailto:ipsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipsec>, <mailto:ipsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 16 Jan 2019 07:16:11 -0000
Hi, a new version (-03) of the QSKE draft is published. It contains quite a lot of changes from the -02 version: 1. Negotiation method is changed to standard (via new Transform Types in SA payload) 2. Using multiple key exchanges in the CREATE_CHILD_SA exchange is addressed 3. "IKE_AUX" is changed to "INTERMEDIATE" (to align with the draft-smyslov-ipsecme-ikev2-aux-02) 4. IANA considerations section is added 5. Temporary IDs for PQ KE methods (using VendorID) are removed Please, review the draft. Some issues have already been discussed and the changes reflect the WG consensus, some are new and the text reflects only the authors' current opinion. Regards, Valery (for the authors) > A new version of I-D, draft-tjhai-ipsecme-hybrid-qske-ikev2-03.txt > has been successfully submitted by C. Tjhai and posted to the > IETF repository. > > Name: draft-tjhai-ipsecme-hybrid-qske-ikev2 > Revision: 03 > Title: Framework to Integrate Post-quantum Key Exchanges into Internet Key Exchange Protocol > Version 2 (IKEv2) > Document date: 2019-01-14 > Group: Individual Submission > Pages: 19 > URL: https://www.ietf.org/internet-drafts/draft-tjhai-ipsecme-hybrid-qske-ikev2-03.txt > Status: https://datatracker.ietf.org/doc/draft-tjhai-ipsecme-hybrid-qske-ikev2/ > Htmlized: https://tools.ietf.org/html/draft-tjhai-ipsecme-hybrid-qske-ikev2-03 > Htmlized: https://datatracker.ietf.org/doc/html/draft-tjhai-ipsecme-hybrid-qske-ikev2 > Diff: https://www.ietf.org/rfcdiff?url2=draft-tjhai-ipsecme-hybrid-qske-ikev2-03 > > Abstract: > This document describes how to extend Internet Key Exchange Protocol > Version 2 (IKEv2) so that the shared secret exchanged between peers > has resistance against quantum computer attacks. The basic idea is > to exchange one or more post-quantum key exchange payloads in > conjunction with the existing (Elliptic Curve) Diffie-Hellman > payload. > > > > > Please note that it may take a couple of minutes from the time of submission > until the htmlized version and diff are available at tools.ietf.org. > > The IETF Secretariat
- Re: [IPsec] New Version Notification for draft-tj… Vukasin Karadzic
- Re: [IPsec] New Version Notification for draft-tj… stefan
- Re: [IPsec] New Version Notification for draft-tj… Valery Smyslov
- Re: [IPsec] New Version Notification for draft-tj… Tobias Guggemos
- Re: [IPsec] New Version Notification for draft-tj… Valery Smyslov
- Re: [IPsec] New Version Notification for draft-tj… Valery Smyslov
- Re: [IPsec] New Version Notification for draft-tj… Bruckert, Leonie
- Re: [IPsec] New Version Notification for draft-tj… Valery Smyslov
- Re: [IPsec] New Version Notification for draft-tj… Panos Kampanakis (pkampana)
- Re: [IPsec] New Version Notification for draft-tj… Tobias Heider
- Re: [IPsec] New Version Notification for draft-tj… Panos Kampanakis (pkampana)
- Re: [IPsec] New Version Notification for draft-tj… Tobias Heider
- Re: [IPsec] New Version Notification for draft-tj… Tobias Heider
- Re: [IPsec] New Version Notification for draft-tj… Valery Smyslov