[Ipsec] Protocol Action: 'IKE and IKEv2 Authentication Using ECDSA' to Proposed Standard
The IESG <iesg-secretary@ietf.org> Mon, 07 August 2006 23:27 UTC
Received: from [127.0.0.1] (helo=stiedprmman1.va.neustar.com) by megatron.ietf.org with esmtp (Exim 4.43) id 1GAEVp-0005qT-Ob; Mon, 07 Aug 2006 19:27:57 -0400
Received: from [10.91.34.44] (helo=ietf-mx.ietf.org) by megatron.ietf.org with esmtp (Exim 4.43) id 1GAEVo-0005qO-QD for ipsec@ietf.org; Mon, 07 Aug 2006 19:27:56 -0400
Received: from balder-227.proper.com ([192.245.12.227]) by ietf-mx.ietf.org with esmtp (Exim 4.43) id 1GAEVn-0006zg-CL for ipsec@ietf.org; Mon, 07 Aug 2006 19:27:56 -0400
Received: from [10.20.30.249] (dsl-63-249-108-169.cruzio.com [63.249.108.169]) (authenticated bits=0) by balder-227.proper.com (8.13.5/8.13.5) with ESMTP id k77NRrNP098250 for <ipsec@ietf.org>; Mon, 7 Aug 2006 16:27:53 -0700 (MST) (envelope-from paul.hoffman@vpnc.org)
Mime-Version: 1.0
Message-Id: <p0623095cc0fd7ccbe390@[10.20.30.249]>
Date: Mon, 07 Aug 2006 16:27:50 -0700
To: IPsec WG <ipsec@ietf.org>
From: The IESG <iesg-secretary@ietf.org>
Content-Type: text/plain; charset="us-ascii"; format="flowed"
X-Spam-Score: 0.0 (/)
X-Scan-Signature: 82c9bddb247d9ba4471160a9a865a5f3
Subject: [Ipsec] Protocol Action: 'IKE and IKEv2 Authentication Using ECDSA' to Proposed Standard
X-BeenThere: ipsec@ietf.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: IP Security <ipsec.ietf.org>
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/ipsec>, <mailto:ipsec-request@ietf.org?subject=unsubscribe>
List-Post: <mailto:ipsec@ietf.org>
List-Help: <mailto:ipsec-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/ipsec>, <mailto:ipsec-request@ietf.org?subject=subscribe>
Errors-To: ipsec-bounces@ietf.org
The IESG has approved the following document:
- 'IKE and IKEv2 Authentication Using ECDSA '
<draft-ietf-ipsec-ike-auth-ecdsa-06.txt> as a Proposed Standard
This document has been reviewed in the IETF but is not the product of an
IETF Working Group.
The IESG contact person is Russ Housley.
A URL of this Internet-Draft is:
http://www.ietf.org/internet-drafts/draft-ietf-ipsec-ike-auth-ecdsa-06.txt
Technical Summary
This document describes how the Elliptic Curve Digital Signature
Algorithm (ECDSA) may be used as the authentication method within the
Internet Key Exchange (IKE) and Internet Key Exchange version 2
(IKEv2) protocols. ECDSA may provide benefits including computational
efficiency, small signature sizes, and minimal bandwidth compared to
other available digital signature methods. This document adds ECDSA
capability to IKE without introducing any changes to existing IKE
operation.
Working Group Summary
This document is an individual submission. It was discussed in the
IPsec Working Group, but that working group was closed before reaching
consensus on this document. Thus, it is not affiliated with any IETF
Working Group.
Protocol Quality
This document was reviewed by Russ Housley for the IESG.
Note to IANA
The registry is http://www.iana.org/assignments/ipsec-registry [IANA-IKE],
and the section within the registry is "IPSEC Authentication Methods".
The three new additions are:
Method Value
------ -----
ECDSA with SHA-256 on the P-256 curve 9
ECDSA with SHA-384 on the P-384 curve 10
ECDSA with SHA-521 on the P-512 curve 11
The registry is http://www.iana.org/assignments/ikev2-parameters
[IANA-IKEv2], and the section within the registry is "IKEv2
Authentication Method". The three new additions are:
Method Value
------ -----
ECDSA with SHA-256 on the P-256 curve 9
ECDSA with SHA-384 on the P-384 curve 10
ECDSA with SHA-521 on the P-512 curve 11
_______________________________________________
Ipsec mailing list
Ipsec@ietf.org
https://www1.ietf.org/mailman/listinfo/ipsec