%% You should probably cite rfc9478 instead of this I-D.
@techreport{ietf-ipsecme-labeled-ipsec-00,
    number =    {draft-ietf-ipsecme-labeled-ipsec-00},
    type =      {Internet-Draft},
    institution =   {Internet Engineering Task Force},
    publisher = {Internet Engineering Task Force},
    note =      {Work in Progress},
    url =       {https://datatracker.ietf.org/doc/draft-ietf-ipsecme-labeled-ipsec/00/},
    author =    {Paul Wouters and Sahana Prasad},
    title =     {{Labeled IPsec Traffic Selector support for IKEv2}},
    pagetotal = 7,
    year =      2019,
    month =     mar,
    day =       11,
    abstract =  {This document defines two new Traffic Selector (TS) Types for Internet Key Exchange version 2 to add support for Mandatory Access Control (MAC) security labels, also known as "Labeled IPsec". The two new TS Types are TS\_IPV4\_ADDR\_RANGE\_SECLABEL and TS\_IPV6\_ADDR\_RANGE\_SECLABEL, which are identical to their non- seclabel namesakes except for the addition of a variable length opaque field specifying the security label. These new Traffic Selector Types facilitate negotiating security labels as an additional selector of the Security Policy Database to further restrict the type of traffic allowed to be send and received over the IPsec SA.},
}