Skip to main content

IKEv2 Authentication Using ECDSA

Document Type Expired Internet-Draft (individual)
Expired & archived
Author Jerome Solinas
Last updated 2005-05-31
RFC stream (None)
Intended RFC status (None)
Stream Stream state (No stream defined)
Consensus boilerplate Unknown
RFC Editor Note (None)
IESG IESG state Expired
Telechat date (None)
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft is available in these formats:


This document describes how the Elliptic Curve Digital Signature Algorithm (ECDSA) may be used as the authentication method within the Internet Key Exchange protocol, version 2 (IKEv2). ECDSA may provide benefits including computational efficiency, small signature sizes, and minimal bandwidth, compared to other available digital signature methods. This document adds ECDSA capability to IKEv2 without introducing any changes to existing IKEv2 operation.


Jerome Solinas

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)