Javascript disabled? Like other modern websites, the IETF Datatracker relies on Javascript. Please enable Javascript for full functionality.

Group Key Management using IKEv2
draft-ietf-ipsecme-g-ikev2-23

Yes

Deb Cooley

Paul Wouters

No Objection

Erik Kline

Gunter Van de Velde

Jim Guichard

Orie Steele

Roman Danyliw

(Francesca Palombini)

(John Scudder)

(Murray Kucherawy)

(Warren Kumari)

(Zaheduzzaman Sarker)

Note: This ballot was opened for revision 18 and is now closed.

Deb Cooley

Yes

Paul Wouters

(was Discuss) Yes

Comment (2025-02-07 for -20) Sent

Thanks for the discussion and the new text provided. I have updated my ballot to 'Yes'

Erik Kline

No Objection

Comment (2025-02-01 for -20) Sent

# Internet AD comments for draft-ietf-ipsecme-g-ikev2-20
CC @ekline

* comment syntax:
  - https://github.com/mnot/ietf-comments/blob/main/format.md

* "Handling Ballot Positions":
  - https://ietf.org/about/groups/iesg/statements/handling-ballot-positions/

## Comments

### S4.4.2

* "UDP encapsulation of ESP packets [RFC3948] cannot be specified in
   G-IKEv2 and thus it is not used for the multicast Data-Security SAs."

  I didn't immediately follow why this should necessarily be true. If
  there's an explanation, or a link to section I didn't properly grok,
  some brief addition might be nice.

## Nits

### S1

* "where multicast communications indicated with double line" ->
  "where multicast communications are indicated with a double line"

Gunter Van de Velde

No Objection

Jim Guichard

No Objection

Orie Steele

No Objection

Roman Danyliw

(was Discuss) No Objection

Comment (2025-02-11 for -21) Sent

Thank you to Robert Sparks for the GENART review.

Thanks for addressing my DISCUSS and COMMENT feedback.

Francesca Palombini Former IESG member

No Objection

No Objection (for -20) Not sent

John Scudder Former IESG member

No Objection

No Objection (for -20) Not sent

Murray Kucherawy Former IESG member

No Objection

No Objection (2025-02-06 for -20) Sent

I support Roman's DISCUSS regarding Section 9.2.  In addition to that, I suggest putting each new registry in its own subsection, and each specific action or group of actions in Section 9.3 in their own subsections.

Regarding the SHOULD in Section 2.3.1, what's the alternative?  Why is there a choice here?

Warren Kumari Former IESG member

No Objection

No Objection (for -20) Not sent

Zaheduzzaman Sarker Former IESG member

No Objection

No Objection (2025-02-05 for -20) Not sent

Thanks for working on IKEv2. Thanks for Gorry for his TSVART review.

I am supporting Roman's discuss on lack of instructions for DE for doing the job.

Group Key Management using IKEv2 draft-ietf-ipsecme-g-ikev2-23

Group Key Management using IKEv2
draft-ietf-ipsecme-g-ikev2-23