Re: [IPsec] I-D Action: draft-ietf-ipsecme-g-ikev2-09.txt
Valery Smyslov <smyslov.ietf@gmail.com> Wed, 19 April 2023 08:16 UTC
Return-Path: <smyslov.ietf@gmail.com>
X-Original-To: ipsec@ietfa.amsl.com
Delivered-To: ipsec@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 92021C1524DC for <ipsec@ietfa.amsl.com>; Wed, 19 Apr 2023 01:16:56 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.096
X-Spam-Level:
X-Spam-Status: No, score=-2.096 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 5O13DrpXnZOZ for <ipsec@ietfa.amsl.com>; Wed, 19 Apr 2023 01:16:52 -0700 (PDT)
Received: from mail-lf1-x12c.google.com (mail-lf1-x12c.google.com [IPv6:2a00:1450:4864:20::12c]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E22DCC1524AA for <ipsec@ietf.org>; Wed, 19 Apr 2023 01:16:52 -0700 (PDT)
Received: by mail-lf1-x12c.google.com with SMTP id 2adb3069b0e04-4edb9039a4cso2619153e87.3 for <ipsec@ietf.org>; Wed, 19 Apr 2023 01:16:52 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20221208; t=1681892211; x=1684484211; h=content-language:thread-index:content-transfer-encoding :mime-version:message-id:date:subject:in-reply-to:references:cc:to :from:from:to:cc:subject:date:message-id:reply-to; bh=VsihD6djiikc8EQgJ6ytugg3I91FIpmLJNL+zSvEEZU=; b=NNOPSjZ/EdRlCJ0YXmZpLWtyBIAdrIV5eR+LX1gYMARwXngrYN325zLEI7QittpghH YRZ5+lnGtKKEYFAzl6DHPyfFDRbYLvmZ1x5dIASlr7lf4icf8c0RmVOOCLjakSZYUCUr dxSbjv+cwmA3zw0qmxaB3fFptKU3ivOi/u80xt5+QUaUn2qO4+y1OkP+S8KFadUqs2Ad Mj59t5vkGD9ALoyd14ltmhOL5HlLltsttTDk9Tgo/NFuoSKhLxvXUgDNIpXiTYE09T/N WgHTci0S4jjn/nU7CsBQiVTmR+OZ1n9luqvl82mGtchJKvXeC3akmQYgdF86plzztw3R wdKQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20221208; t=1681892211; x=1684484211; h=content-language:thread-index:content-transfer-encoding :mime-version:message-id:date:subject:in-reply-to:references:cc:to :from:x-gm-message-state:from:to:cc:subject:date:message-id:reply-to; bh=VsihD6djiikc8EQgJ6ytugg3I91FIpmLJNL+zSvEEZU=; b=kj5TmkEjCvJUP9QZq2JM7/aARPC6t1J7yNS0gKER1WPaiRe/CJt+GR0HOqfWoR/OnT EHrX30Yb5nn6Nwd8t6bvgA2aLHryNNepaBhYnWfRnMvgNEYrA4WDdeWf3ZieTYRfrSS+ cqqifDb2poTJ0dhc86x0xRC7weLwj1OxbN59TDxMgACGpHrKJHTbGoarcYiVt8FxP3+F uovjcvgW/UJdztwky77ZswAwUwUg9Uz+zFP59ABYd+WjqvYuxZHQ+tVcKF5WscmkgP5h nyz8rUSni0jiCLybIbFLqn2QPqjrttMQOlOXysFXoQUoHHAeIH6drdyEREQ+e/zsPKs0 T7AQ==
X-Gm-Message-State: AAQBX9fNghUpo2TK+LFF3+fE4ncZhypXArGxO8YlmO4xM88NTsRKjOeI quZ886hI4UPs0uB2bCQOT0A=
X-Google-Smtp-Source: AKy350bOtolPlmrara+CgCV1uSrc12Dcpbolwxj9YEHcBxUpFVv5ZU1UbUl1NwU49Z12qpne4O9YSQ==
X-Received: by 2002:ac2:5390:0:b0:4e8:3d24:de6f with SMTP id g16-20020ac25390000000b004e83d24de6fmr3971310lfh.14.1681892210943; Wed, 19 Apr 2023 01:16:50 -0700 (PDT)
Received: from buildpc ([93.188.44.204]) by smtp.gmail.com with ESMTPSA id o15-20020a056512050f00b004e9aabe94a3sm2618089lfb.151.2023.04.19.01.16.50 (version=TLS1_2 cipher=ECDHE-ECDSA-AES128-GCM-SHA256 bits=128/128); Wed, 19 Apr 2023 01:16:50 -0700 (PDT)
From: Valery Smyslov <smyslov.ietf@gmail.com>
To: ipsec@ietf.org
Cc: bew.stds@gmail.com
References: <168189180068.25034.16936712614145790324@ietfa.amsl.com>
In-Reply-To: <168189180068.25034.16936712614145790324@ietfa.amsl.com>
Date: Wed, 19 Apr 2023 11:16:51 +0300
Message-ID: <072e01d97297$4bfeacb0$e3fc0610$@gmail.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
X-Mailer: Microsoft Outlook 14.0
Thread-Index: AQLbO5BUynYcL0lwRkgWbn/wn7z92a0uthGA
Content-Language: ru
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipsec/h6nFu2r8VTLp-C1AUd9kMebmRMg>
Subject: Re: [IPsec] I-D Action: draft-ietf-ipsecme-g-ikev2-09.txt
X-BeenThere: ipsec@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Discussion of IPsec protocols <ipsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipsec>, <mailto:ipsec-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipsec/>
List-Post: <mailto:ipsec@ietf.org>
List-Help: <mailto:ipsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipsec>, <mailto:ipsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 19 Apr 2023 08:16:56 -0000
Hi, a new version of the draft is published. It addresses issues from Daniel's (first part), Gorry's and Russ' reviews. Daniel was going to complete the second part of his review soon, but there are already quite a lot of (mostly minor) changes, so I think it's worth to publish a new version now. Regards, Valery. > -----Original Message----- > From: IPsec [mailto:ipsec-bounces@ietf.org] On Behalf Of internet-drafts@ietf.org > Sent: Wednesday, April 19, 2023 11:10 AM > To: i-d-announce@ietf.org > Cc: ipsec@ietf.org > Subject: [IPsec] I-D Action: draft-ietf-ipsecme-g-ikev2-09.txt > > > A New Internet-Draft is available from the on-line Internet-Drafts > directories. This Internet-Draft is a work item of the IP Security Maintenance > and Extensions (IPSECME) WG of the IETF. > > Title : Group Key Management using IKEv2 > Authors : Valery Smyslov > Brian Weis > Filename : draft-ietf-ipsecme-g-ikev2-09.txt > Pages : 71 > Date : 2023-04-19 > > Abstract: > This document presents an extension to the Internet Key Exchange > version 2 (IKEv2) protocol for the purpose of a group key management. > The protocol is in conformance with the Multicast Security (MSEC) key > management architecture, which contains two components: member > registration and group rekeying. Both components require a Group > Controller/Key Server to download IPsec group security associations > to authorized members of a group. The group members then exchange IP > multicast or other group traffic as IPsec packets. > > This document obsoletes RFC 6407. This documents also updates RFC > 7296 by renaming a transform type 5 from "Extended Sequence Numbers > (ESN)" to the "Replay Protection (RP)" and by renaming IKEv2 > authentication method 0 from "Reserved" to "NONE". > > The IETF datatracker status page for this Internet-Draft is: > https://datatracker.ietf.org/doc/draft-ietf-ipsecme-g-ikev2/ > > There is also an htmlized version available at: > https://datatracker.ietf.org/doc/html/draft-ietf-ipsecme-g-ikev2-09 > > A diff from the previous version is available at: > https://author-tools.ietf.org/iddiff?url2=draft-ietf-ipsecme-g-ikev2-09 > > Internet-Drafts are also available by rsync at rsync.ietf.org::internet-drafts > > > _______________________________________________ > IPsec mailing list > IPsec@ietf.org > https://www.ietf.org/mailman/listinfo/ipsec
- [IPsec] I-D Action: draft-ietf-ipsecme-g-ikev2-09… internet-drafts
- Re: [IPsec] I-D Action: draft-ietf-ipsecme-g-ikev… Valery Smyslov