[IPsec] Short re-run of WG LC: draft-kivinen-ipsecme-signature-auth-06.txt
Paul Hoffman <paul.hoffman@vpnc.org> Wed, 07 May 2014 15:31 UTC
Return-Path: <paul.hoffman@vpnc.org>
X-Original-To: ipsec@ietfa.amsl.com
Delivered-To: ipsec@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9AD9B1A035A for <ipsec@ietfa.amsl.com>; Wed, 7 May 2014 08:31:41 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.347
X-Spam-Level:
X-Spam-Status: No, score=-1.347 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HELO_MISMATCH_COM=0.553] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id fT8bO4JScfqD for <ipsec@ietfa.amsl.com>; Wed, 7 May 2014 08:31:40 -0700 (PDT)
Received: from hoffman.proper.com (IPv6.Hoffman.Proper.COM [IPv6:2605:8e00:100:41::81]) by ietfa.amsl.com (Postfix) with ESMTP id 757861A0311 for <ipsec@ietf.org>; Wed, 7 May 2014 08:31:40 -0700 (PDT)
Received: from [10.20.30.90] (50-1-51-90.dsl.dynamic.fusionbroadband.com [50.1.51.90]) (authenticated bits=0) by hoffman.proper.com (8.14.8/8.14.7) with ESMTP id s47FVYc1063134 (version=TLSv1/SSLv3 cipher=AES128-SHA bits=128 verify=NO) for <ipsec@ietf.org>; Wed, 7 May 2014 08:31:36 -0700 (MST) (envelope-from paul.hoffman@vpnc.org)
X-Authentication-Warning: hoffman.proper.com: Host 50-1-51-90.dsl.dynamic.fusionbroadband.com [50.1.51.90] claimed to be [10.20.30.90]
Content-Type: text/plain; charset="us-ascii"
Mime-Version: 1.0 (Mac OS X Mail 7.2 \(1874\))
From: Paul Hoffman <paul.hoffman@vpnc.org>
In-Reply-To: <20140507125054.15815.369.idtracker@ietfa.amsl.com>
Date: Wed, 07 May 2014 08:31:32 -0700
Content-Transfer-Encoding: quoted-printable
Message-Id: <6DFCD87A-CDC5-4871-A3DA-D79601782CDB@vpnc.org>
References: <20140507125054.15815.369.idtracker@ietfa.amsl.com>
To: IPsec ME WG List <ipsec@ietf.org>
X-Mailer: Apple Mail (2.1874)
Archived-At: http://mailarchive.ietf.org/arch/msg/ipsec/mClPrUIMXLH0A8d5bETFssBgsfo
Subject: [IPsec] Short re-run of WG LC: draft-kivinen-ipsecme-signature-auth-06.txt
X-BeenThere: ipsec@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Discussion of IPsec protocols <ipsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipsec>, <mailto:ipsec-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ipsec/>
List-Post: <mailto:ipsec@ietf.org>
List-Help: <mailto:ipsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipsec>, <mailto:ipsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 07 May 2014 15:31:41 -0000
Many thanks to Joel Snyder for helping clarify lots of the wording in this document. It feels much cleaner to me. I'm not 100% convinced that technical changes slipped in during those extensive changes. So, I'd really like the WG to review the latest draft. If you have any new concerns at all, please send them to the mailing list before Wednesday May 14. --Paul Hoffman On May 7, 2014, at 5:50 AM, internet-drafts@ietf.org wrote: > > A New Internet-Draft is available from the on-line Internet-Drafts directories. > This draft is a work item of the IP Security Maintenance and Extensions Working Group of the IETF. > > Title : Signature Authentication in IKEv2 > Authors : Tero Kivinen > Joel Snyder > Filename : draft-kivinen-ipsecme-signature-auth-06.txt > Pages : 17 > Date : 2014-05-07 > > Abstract: > The Internet Key Exchange Version 2 (IKEv2) protocol has limited > support for the Elliptic Curve Digital Signature Algorithm (ECDSA). > The current version only includes support for three Elliptic Curve > groups, and there is a fixed hash algorithm tied to each group. This > document generalizes IKEv2 signature support to allow any signature > method supported by the PKIX and also adds signature hash algorithm > negotiation. This is a generic mechanism, and is not limited to > ECDSA, but can also be used with other signature algorithms. > > > The IETF datatracker status page for this draft is: > https://datatracker.ietf.org/doc/draft-kivinen-ipsecme-signature-auth/ > > There's also a htmlized version available at: > http://tools.ietf.org/html/draft-kivinen-ipsecme-signature-auth-06 > > A diff from the previous version is available at: > http://www.ietf.org/rfcdiff?url2=draft-kivinen-ipsecme-signature-auth-06
- [IPsec] I-D Action: draft-kivinen-ipsecme-signatu… internet-drafts
- [IPsec] Short re-run of WG LC: draft-kivinen-ipse… Paul Hoffman