[IPsec] I-D Action: draft-ietf-ipsecme-g-ikev2-11.txt

internet-drafts@ietf.org Mon, 26 February 2024 13:29 UTC

Return-Path: <internet-drafts@ietf.org>
X-Original-To: ipsec@ietf.org
Delivered-To: ipsec@ietfa.amsl.com
Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 65386C14F711; Mon, 26 Feb 2024 05:29:37 -0800 (PST)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
From: internet-drafts@ietf.org
To: i-d-announce@ietf.org
Cc: ipsec@ietf.org
X-Test-IDTracker: no
X-IETF-IDTracker: 12.6.1
Auto-Submitted: auto-generated
Precedence: bulk
Reply-To: ipsec@ietf.org
Message-ID: <170895417739.23645.2097768531050950930@ietfa.amsl.com>
Date: Mon, 26 Feb 2024 05:29:37 -0800
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipsec/s9Pp-NuKn_TkmSDorszKm543avM>
Subject: [IPsec] I-D Action: draft-ietf-ipsecme-g-ikev2-11.txt
X-BeenThere: ipsec@ietf.org
X-Mailman-Version: 2.1.39
List-Id: Discussion of IPsec protocols <ipsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipsec>, <mailto:ipsec-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipsec/>
List-Post: <mailto:ipsec@ietf.org>
List-Help: <mailto:ipsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipsec>, <mailto:ipsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 26 Feb 2024 13:29:37 -0000

Internet-Draft draft-ietf-ipsecme-g-ikev2-11.txt is now available. It is a
work item of the IP Security Maintenance and Extensions (IPSECME) WG of the

   Title:   Group Key Management using IKEv2
   Authors: Valery Smyslov
            Brian Weis
   Name:    draft-ietf-ipsecme-g-ikev2-11.txt
   Pages:   74
   Dates:   2024-02-26


   This document presents an extension to the Internet Key Exchange
   version 2 (IKEv2) protocol for the purpose of a group key management.
   The protocol is in conformance with the Multicast Security (MSEC) key
   management architecture, which contains two components: member
   registration and group rekeying.  Both components are required for a
   GCKS (Group Controller/Key Server) to provide authorized Group
   Members (GMs) with IPsec group security associations.  The group
   members then exchange IP multicast or other group traffic as IPsec

   This document obsoletes RFC 6407.  This documents also updates RFC
   7296 by renaming a transform type 5 from "Extended Sequence Numbers
   (ESN)" to the "Replay Protection (RP)" and by renaming IKEv2
   authentication method 0 from "Reserved" to "NONE".

The IETF datatracker status page for this Internet-Draft is:

There is also an HTMLized version available at:

A diff from the previous version is available at:

Internet-Drafts are also available by rsync at: