Skip to main content

Ephemeral Diffie-Hellman Over COSE (EDHOC)

Approval announcement
Draft of message to be sent after approval:


From: The IESG <>
To: IETF-Announce <>
Cc: The IESG <>,,,,,,
Subject: Protocol Action: 'Ephemeral Diffie-Hellman Over COSE (EDHOC)' to Proposed Standard (draft-ietf-lake-edhoc-22.txt)

The IESG has approved the following document:
- 'Ephemeral Diffie-Hellman Over COSE (EDHOC)'
  (draft-ietf-lake-edhoc-22.txt) as Proposed Standard

This document is the product of the Lightweight Authenticated Key Exchange
Working Group.

The IESG contact persons are Paul Wouters and Roman Danyliw.

A URL of this Internet-Draft is:

Ballot Text

Technical Summary

   This document specifies Ephemeral Diffie-Hellman Over COSE (EDHOC), a
   very compact and lightweight authenticated Diffie-Hellman key
   exchange with ephemeral keys.  EDHOC provides mutual authentication,
   forward secrecy, and identity protection.  EDHOC is intended for
   usage in constrained scenarios and a main use case is to establish an
   OSCORE security context.  By reusing COSE for cryptography, CBOR for
   encoding, and CoAP for transport, the additional code size can be
   kept very low.

Working Group Summary

   Consensus in the WG was strong. As part of the AD Review, the document
   saw one more change on encrypting C_R, which was run through the WG
   for consensus as well. A previous AD didn't like this protocol much, and
   offered cTLS (compact TLS) as alternative but that did not meet the same
   requirements and features as EDHOC.

Document Quality

   There are at least two implementations that interoperate, both
   verifying the draft-ietf-lake-edhoc traces test vectors as well.
   At least one large vendor has a number of interested customers
   that are looking at deployment.
   A registration in the .well-known registry passed Expert Review.


   The Document Shepherd for this document is Mališa Vučinić. The
   Responsible Area Director is Paul Wouters.

RFC Editor Note