Deprecation of the Internet Key Exchange Version 1 (IKEv1) Protocol and Obsoleted Algorithms
draft-ietf-ipsecme-ikev1-algo-to-historic-09

• Status
• IESG evaluation record
• IESG writeups
• Email expansions
• History

Approval announcement
Draft of message to be sent after approval:

Announcement

From: The IESG <iesg-secretary@ietf.org>
To: IETF-Announce <ietf-announce@ietf.org>
Cc: The IESG <iesg@ietf.org>, draft-ietf-ipsecme-ikev1-algo-to-historic@ietf.org, ipsec@ietf.org, ipsecme-chairs@ietf.org, kivinen@iki.fi, rdd@cert.org, rfc-editor@rfc-editor.org
Subject: Protocol Action: 'Deprecation of IKEv1 and obsoleted algorithms' to Proposed Standard (draft-ietf-ipsecme-ikev1-algo-to-historic-09.txt)

The IESG has approved the following document:
- 'Deprecation of IKEv1 and obsoleted algorithms'
  (draft-ietf-ipsecme-ikev1-algo-to-historic-09.txt) as Proposed Standard

This document is the product of the IP Security Maintenance and Extensions
Working Group.

The IESG contact persons are Paul Wouters and Roman Danyliw.

A URL of this Internet Draft is:
https://datatracker.ietf.org/doc/draft-ietf-ipsecme-ikev1-algo-to-historic/

Ballot Text

Technical Summary

   Internet Key Exchange version 1 (IKEv1) has been deprecated and its
   specification in RFC2407, RFC2408 and RFC2409 have been moved to
   Historic status.  A number of old algorithms that are associated with
   IKEv1, and not widely implemented for IKEv2 are deprecated as well.
   This document updates RFC 8221 and RFC 8247 and adds a Status column
   to the IANA IKEv2 Transform Type registries that shows the
   deprecation status.

Working Group Summary

There is broad agreement in the WG to go forward with this draft. 

This document is advancing in parallel with https://datatracker.ietf.org/doc/status-change-ikev1-to-historic/

Document Quality

This is moving old very widely implemented protocol IKEv1, which have already
been replaced and obsoleted by IKEv2 in 2005, to historic status and also
deprecates several weak or unspecified algorithms used by it. Thus there
are lots of implementations out there and this document allows implementors 
to remove their support from the old IKEv1 protocol, by giving stronger signal
that is past time to migrate any IKEv1 left to IKEv2.

Personnel

Document Shepherd: Tero Kivinen

Responsible AD: Roman Danyliw

RFC Editor Note