Diameter AVP Level Security: Keyed Message Digests, Digital Signatures, and Encryption

Document Type Expired Internet-Draft (individual)
Last updated 2016-09-01 (latest revision 2016-02-29)
Stream (None)
Intended RFC status (None)
Expired & archived
pdf htmlized (tools) htmlized bibtex
Stream Stream state (No stream defined)
Consensus Boilerplate Unknown
RFC Editor Note (None)
IESG IESG state Expired
Telechat date
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft can be found at


This document defines an extension for end to end authentication, integrity and confidentiality protection of Diameter Attribute Value Pairs. The solutions focuses on protecting Diameter Attribute Value Pairs and leaves the key distribution solution to a separate specification. The integrity protection can be introduced in a backward compatible manner to existing application. The confidentiality protection requires an explicit support from an application, thus is applicable only for newly defined applications. Terminology


Jouni Korhonen (jouni.nospam@gmail.com)
Hannes Tschofenig (hannes.tschofenig@gmx.de)

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)