[Ipsec] Protocol Action: 'IKE and IKEv2 Authentication Using ECDSA' to Proposed Standard
The IESG <iesg-secretary@ietf.org> Mon, 07 August 2006 23:27 UTC
Received: from [127.0.0.1] (helo=stiedprmman1.va.neustar.com) by megatron.ietf.org with esmtp (Exim 4.43) id 1GAEVp-0005qT-Ob; Mon, 07 Aug 2006 19:27:57 -0400
Received: from [10.91.34.44] (helo=ietf-mx.ietf.org) by megatron.ietf.org with esmtp (Exim 4.43) id 1GAEVo-0005qO-QD for ipsec@ietf.org; Mon, 07 Aug 2006 19:27:56 -0400
Received: from balder-227.proper.com ([192.245.12.227]) by ietf-mx.ietf.org with esmtp (Exim 4.43) id 1GAEVn-0006zg-CL for ipsec@ietf.org; Mon, 07 Aug 2006 19:27:56 -0400
Received: from [10.20.30.249] (dsl-63-249-108-169.cruzio.com [63.249.108.169]) (authenticated bits=0) by balder-227.proper.com (8.13.5/8.13.5) with ESMTP id k77NRrNP098250 for <ipsec@ietf.org>; Mon, 7 Aug 2006 16:27:53 -0700 (MST) (envelope-from paul.hoffman@vpnc.org)
Mime-Version: 1.0
Message-Id: <p0623095cc0fd7ccbe390@[10.20.30.249]>
Date: Mon, 07 Aug 2006 16:27:50 -0700
To: IPsec WG <ipsec@ietf.org>
From: The IESG <iesg-secretary@ietf.org>
Content-Type: text/plain; charset="us-ascii"; format="flowed"
X-Spam-Score: 0.0 (/)
X-Scan-Signature: 82c9bddb247d9ba4471160a9a865a5f3
Subject: [Ipsec] Protocol Action: 'IKE and IKEv2 Authentication Using ECDSA' to Proposed Standard
X-BeenThere: ipsec@ietf.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: IP Security <ipsec.ietf.org>
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/ipsec>, <mailto:ipsec-request@ietf.org?subject=unsubscribe>
List-Post: <mailto:ipsec@ietf.org>
List-Help: <mailto:ipsec-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/ipsec>, <mailto:ipsec-request@ietf.org?subject=subscribe>
Errors-To: ipsec-bounces@ietf.org
The IESG has approved the following document: - 'IKE and IKEv2 Authentication Using ECDSA ' <draft-ietf-ipsec-ike-auth-ecdsa-06.txt> as a Proposed Standard This document has been reviewed in the IETF but is not the product of an IETF Working Group. The IESG contact person is Russ Housley. A URL of this Internet-Draft is: http://www.ietf.org/internet-drafts/draft-ietf-ipsec-ike-auth-ecdsa-06.txt Technical Summary This document describes how the Elliptic Curve Digital Signature Algorithm (ECDSA) may be used as the authentication method within the Internet Key Exchange (IKE) and Internet Key Exchange version 2 (IKEv2) protocols. ECDSA may provide benefits including computational efficiency, small signature sizes, and minimal bandwidth compared to other available digital signature methods. This document adds ECDSA capability to IKE without introducing any changes to existing IKE operation. Working Group Summary This document is an individual submission. It was discussed in the IPsec Working Group, but that working group was closed before reaching consensus on this document. Thus, it is not affiliated with any IETF Working Group. Protocol Quality This document was reviewed by Russ Housley for the IESG. Note to IANA The registry is http://www.iana.org/assignments/ipsec-registry [IANA-IKE], and the section within the registry is "IPSEC Authentication Methods". The three new additions are: Method Value ------ ----- ECDSA with SHA-256 on the P-256 curve 9 ECDSA with SHA-384 on the P-384 curve 10 ECDSA with SHA-521 on the P-512 curve 11 The registry is http://www.iana.org/assignments/ikev2-parameters [IANA-IKEv2], and the section within the registry is "IKEv2 Authentication Method". The three new additions are: Method Value ------ ----- ECDSA with SHA-256 on the P-256 curve 9 ECDSA with SHA-384 on the P-384 curve 10 ECDSA with SHA-521 on the P-512 curve 11 _______________________________________________ Ipsec mailing list Ipsec@ietf.org https://www1.ietf.org/mailman/listinfo/ipsec