Signature Authentication in the Internet Key Exchange Version 2 (IKEv2)
draft-kivinen-ipsecme-signature-auth-07

[Ballot comment]
-- Section 5 --
This section povides three ways by which the responder can select an appropiate key pair type, but gives little guidance about how to go about the process.  What happens if the different methods give different results?  Should they be applied in a particular order?  Why does this specification not cover this?

Shepherd Writeup for draft-kivinen-ipsecme-signature-auth-06

1. Summary

Paul Hoffman (IPsecME WG co-chair) is the document shepherd and Kathleen Moriarty is the
responsible AD.

This document generalizes the IKEv2 signature support so it can support any signature method
supported by the PKIX and also adds signature hash algorithm negotiation.  This means that
all types of signatures, not just RSA and ECDSA, and any type of elliptic curves can be
supported.

Given that this is a protocol extension, it is meant to be a Proposed Standard.


2. Review and Consensus

The WG discussion of the document was very good, with wide consensus for adoption. There were
no objections to adoption. There were only a few small changes requested during IETF Last Call,
and the authors made them.


3. Intellectual Property

The author has stated that their direct, personal knowledge of any IPR related to this
document has already been disclosed, in conformance with BCPs 78 and 79.


4. Other Points

There are no normative downrefs.

The IANA Considerations are short and to the point. The new registry is by expert review,
and the document author is extremely likely to become the expert reviewer.

The draft went through an extensive editorial revision after WG Last Call, and that version
was last called again in the WG. Joel Snyder was added as co-author.

IESG/Authors/WG Chairs:

IANA has reviewed draft-kivinen-ipsecme-signature-auth-06.  Authors should review the comments and/or questions below.  Please report any inaccuracies and respond to any questions as soon as possible.

We received the following comments/questions from the IANA's reviewer:

IANA understands that, upon approval of this document, there are three actions which IANA must complete.

First, in the Internet Key Exchange Version 2 (IKEv2) Parameters registry located at:

www.iana.org/assignments/ikev2-parameters/

a new subregistry will be created called the IKEv2 Hash Algorithms registry. Maintenance of the new subregistry is to be done through Expert Review as defined by RFC 5226.

Values 0 through 4 are the subject of initial registrations.
Values 5-1023 are not yet registered.
Values 1024-65535 are available for private use as defined by RFC 5226.

There are initial registrations in this new subregistry as follows:

Hash Algorithm Value Reference
-------------- ----- ----------------
RESERVED 0 [ RFC-to-be ]
SHA1 1    [ RFC-to-be ]
SHA2-256 2 [ RFC-to-be ]
SHA2-384 3 [ RFC-to-be ]
SHA2-512 4 [ RFC-to-be ]


Second, in the IKEv2 Notify Message Types - Status Types subregistry of the Internet Key Exchange Version 2 (IKEv2) Parameters registry located at:

www.iana.org/assignments/ikev2-parameters/

a new status type is to be added as follows:

Value: [ TBD-at-registration ]
Motify Messages - Status Types: SIGNATURE_HASH_ALGORITHMS
Reference: [ RFC-to-be ]

Third, in the IKEv2 Authentication Method subregistry also in the Internet Key Exchange Version 2 (IKEv2) Parameters registry located at:

www.iana.org/assignments/ikev2-parameters/

a new authrentication method is to be registered as follows:

Value: [ TBD-at-registration ]
Authentication Method: Digital Signature
Reference: [ RFC-to-be ]

IANA understands that these three actions are the only ones required to be completed upon approval of this document.

Note:  The actions requested in this document will not be completed
until the document has been approved for publication as an RFC.
This message is only to confirm what actions will be performed.

The following Last Call announcement was sent out:

From: The IESG
To: IETF-Announce
CC:
Reply-To: ietf@ietf.org
Sender:
Subject: Last Call:  (Signature Authentication in IKEv2) to Proposed Standard


The IESG has received a request from the IP Security Maintenance and
Extensions WG (ipsecme) to consider the following document:
- 'Signature Authentication in IKEv2'
  as Proposed Standard

The IESG plans to make a decision in the next few weeks, and solicits
final comments on this action. Please send substantive comments to the
ietf@ietf.org mailing lists by 2014-07-15. Exceptionally, comments may be
sent to iesg@ietf.org instead. In either case, please retain the
beginning of the Subject line to allow automated sorting.

Abstract


  The Internet Key Exchange Version 2 (IKEv2) protocol has limited
  support for the Elliptic Curve Digital Signature Algorithm (ECDSA).
  The current version only includes support for three Elliptic Curve
  groups, and there is a fixed hash algorithm tied to each group.  This
  document generalizes IKEv2 signature support to allow any signature
  method supported by the PKIX and also adds signature hash algorithm
  negotiation.  This is a generic mechanism, and is not limited to
  ECDSA, but can also be used with other signature algorithms.




The file can be obtained via
http://datatracker.ietf.org/doc/draft-kivinen-ipsecme-signature-auth/

IESG discussion can be tracked via
http://datatracker.ietf.org/doc/draft-kivinen-ipsecme-signature-auth/ballot/


No IPR declarations have been submitted directly on this I-D.

This draft updates RFC5996, however RFC5996 is in process of being updated in RFC5996-bis and will likely be published before this draft.  Each mention of RFC5996 should be replaced with the new RFC number for RFC5996-bis once a number has been assigned.

Shepherd Writeup for draft-kivinen-ipsecme-signature-auth-06

1. Summary

Paul Hoffman (IPsecME WG co-chair) is the document shepherd and Kathleen Moriarty is the
responsible AD.

This document generalizes the IKEv2 signature support so it can support any signature method
supported by the PKIX and also adds signature hash algorithm negotiation.  This means that
all types of signatures, not just RSA and ECDSA, and any type of elliptic curves can be
supported.

Given that this is a protocol extension, it is meant to be a Proposed Standard.


2. Review and Consensus

The WG discussion of the document was very good, with wide consensus for adoption. There were
no objections to adoption.


3. Intellectual Property

The author has stated that their direct, personal knowledge of any IPR related to this
document has already been disclosed, in conformance with BCPs 78 and 79.


4. Other Points

There are no normative downrefs.

The IANA Considerations are short and to the point. The new registry is by expert review,
and the document author is extremely likely to become the expert reviewer.

The draft went through an extensive editorial revision after WG Last Call, and that version
was last called again in the WG. Joel Snyder was added as co-author.

Shepherd Writeup for draft-kivinen-ipsecme-signature-auth-06

1. Summary

Paul Hoffman (IPsecME WG co-chair) is the document shepherd and Kathleen Moriarty is the
responsible AD.

This document generalizes the IKEv2 signature support so it can support any signature method
supported by the PKIX and also adds signature hash algorithm negotiation.  This means that
all types of signatures, not just RSA and ECDSA, and any type of elliptic curves can be
supported.

Given that this is a protocol extension, it is meant to be a Proposed Standard.


2. Review and Consensus

The WG discussion of the document was very good, with wide consensus for adoption. There were
no objections to adoption.


3. Intellectual Property

The author has stated that their direct, personal knowledge of any IPR related to this
document has already been disclosed, in conformance with BCPs 78 and 79.


4. Other Points

There are no normative downrefs.

The IANA Considerations are short and to the point. The new registry is by expert review,
and the document author is extremely likely to become the expert reviewer.