The Internet Key Exchange (IKE)

Document Type Expired Internet-Draft (ipsec WG)
Author Dan Harkins 
Last updated 1999-05-21
Stream Internet Engineering Task Force (IETF)
Intended RFC status (None)
Expired & archived
pdf htmlized (tools) htmlized bibtex
Stream WG state WG Document
Document shepherd No shepherd assigned
IESG IESG state Expired
Consensus Boilerplate Unknown
Telechat date
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft can be found at


This memo describes a key exchange and security negotiation protocol which is intended to depricate [HC98]. As such it will not change the 'bits on the wire' for an implementation which is compiant with [HC98] but will clarify contentious issues with [HC98] and attempt to explain the protocol in a less haphazard manner. Due to advances in computer processing some mandatory-to-implement attributes have changed between this [HC98] and this document. In addition a new and optional exchange is introduced. Like [HC98] this memo uses [MSST98] for a framework and as a language to express exchanges which are derived from [Kra96] and [Orm98]. In places where the requirements between this document and [MSST98] or [Kra96] or [Orm98] conflict, this document will be supreme.


Dan Harkins (

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)