IETF Logo Mail Archive

[IPsec] I-D Action: draft-ietf-ipsecme-multi-sa-performance-00.txt

internet-drafts@ietf.org Thu, 08 December 2022 05:19 UTC

Return-Path: <internet-drafts@ietf.org>
X-Original-To: ipsec@ietf.org
Delivered-To: ipsec@ietfa.amsl.com
Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id E48D8C1516E8; Wed, 7 Dec 2022 21:19:47 -0800 (PST)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
From: internet-drafts@ietf.org
To: i-d-announce@ietf.org
Cc: ipsec@ietf.org
X-Test-IDTracker: no
X-IETF-IDTracker: 9.2.1
Auto-Submitted: auto-generated
Precedence: bulk
Reply-To: ipsec@ietf.org
Message-ID: <167047678792.29964.2958435595678853116@ietfa.amsl.com>
Date: Wed, 07 Dec 2022 21:19:47 -0800
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipsec/sRct5kwdMYFLd7N7b-eKjVGtIz8>
Subject: [IPsec] I-D Action: draft-ietf-ipsecme-multi-sa-performance-00.txt
X-BeenThere: ipsec@ietf.org
X-Mailman-Version: 2.1.39
List-Id: Discussion of IPsec protocols <ipsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipsec>, <mailto:ipsec-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipsec/>
List-Post: <mailto:ipsec@ietf.org>
List-Help: <mailto:ipsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipsec>, <mailto:ipsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 08 Dec 2022 05:19:48 -0000

A New Internet-Draft is available from the on-line Internet-Drafts directories.
This draft is a work item of the IP Security Maintenance and Extensions WG of the IETF.

        Title           : IKEv2 support for per-queue Child SAs
        Authors         : Antony Antony
                          Tobias Brunner
                          Steffen Klassert
                          Paul Wouters
  Filename        : draft-ietf-ipsecme-multi-sa-performance-00.txt
  Pages           : 12
  Date            : 2022-12-07

Abstract:
   This document defines three Notify Message Type Payloads for the
   Internet Key Exchange Protocol Version 2 (IKEv2) indicating support
   for the negotiation of multiple identical Child SAs to optimize
   performance.

   The CPU_QUEUES notification indicates support for multiple queues or
   CPUs.  The CPU_QUEUE_INFO notification is used to confirm and
   optionally convey information about the specific queue.  The
   TS_MAX_QUEUE notify conveys that the peer is unwilling to create more
   additional Child SAs for this particular Traffic Selector set.

   Using multiple identical Child SAs has the benefit that each stream
   has its own Sequence Number Counter, ensuring that CPUs don't have to
   synchronize their crypto state or disable their packet replay
   protection.


The IETF datatracker status page for this draft is:
https://datatracker.ietf.org/doc/draft-ietf-ipsecme-multi-sa-performance/

There is also an htmlized version available at:
https://datatracker.ietf.org/doc/html/draft-ietf-ipsecme-multi-sa-performance-00


Internet-Drafts are also available by rsync at rsync.ietf.org::internet-drafts

v2.23.0 | Report a Bug | By Email