[IPsec] I-D Action: draft-ietf-ipsecme-multi-sa-performance-00.txt
internet-drafts@ietf.org Thu, 08 December 2022 05:19 UTC
Return-Path: <internet-drafts@ietf.org>
X-Original-To: ipsec@ietf.org
Delivered-To: ipsec@ietfa.amsl.com
Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id E48D8C1516E8; Wed, 7 Dec 2022 21:19:47 -0800 (PST)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
From: internet-drafts@ietf.org
To: i-d-announce@ietf.org
Cc: ipsec@ietf.org
X-Test-IDTracker: no
X-IETF-IDTracker: 9.2.1
Auto-Submitted: auto-generated
Precedence: bulk
Reply-To: ipsec@ietf.org
Message-ID: <167047678792.29964.2958435595678853116@ietfa.amsl.com>
Date: Wed, 07 Dec 2022 21:19:47 -0800
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipsec/sRct5kwdMYFLd7N7b-eKjVGtIz8>
Subject: [IPsec] I-D Action: draft-ietf-ipsecme-multi-sa-performance-00.txt
X-BeenThere: ipsec@ietf.org
X-Mailman-Version: 2.1.39
List-Id: Discussion of IPsec protocols <ipsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipsec>, <mailto:ipsec-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipsec/>
List-Post: <mailto:ipsec@ietf.org>
List-Help: <mailto:ipsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipsec>, <mailto:ipsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 08 Dec 2022 05:19:48 -0000
A New Internet-Draft is available from the on-line Internet-Drafts directories. This draft is a work item of the IP Security Maintenance and Extensions WG of the IETF. Title : IKEv2 support for per-queue Child SAs Authors : Antony Antony Tobias Brunner Steffen Klassert Paul Wouters Filename : draft-ietf-ipsecme-multi-sa-performance-00.txt Pages : 12 Date : 2022-12-07 Abstract: This document defines three Notify Message Type Payloads for the Internet Key Exchange Protocol Version 2 (IKEv2) indicating support for the negotiation of multiple identical Child SAs to optimize performance. The CPU_QUEUES notification indicates support for multiple queues or CPUs. The CPU_QUEUE_INFO notification is used to confirm and optionally convey information about the specific queue. The TS_MAX_QUEUE notify conveys that the peer is unwilling to create more additional Child SAs for this particular Traffic Selector set. Using multiple identical Child SAs has the benefit that each stream has its own Sequence Number Counter, ensuring that CPUs don't have to synchronize their crypto state or disable their packet replay protection. The IETF datatracker status page for this draft is: https://datatracker.ietf.org/doc/draft-ietf-ipsecme-multi-sa-performance/ There is also an htmlized version available at: https://datatracker.ietf.org/doc/html/draft-ietf-ipsecme-multi-sa-performance-00 Internet-Drafts are also available by rsync at rsync.ietf.org::internet-drafts
- [IPsec] I-D Action: draft-ietf-ipsecme-multi-sa-p… internet-drafts