Cryptographic Algorithm Implementation Requirements and Usage Guidance for Encapsulating Security Payload (ESP) and Authentication Header (AH)

Document Type Replaced Internet-Draft (ipsecme WG)
Authors Daniel Migault  , John Preuß Mattsson  , Paul Wouters  , Yoav Nir  , Tero Kivinen 
Last updated 2016-10-06 (latest revision 2016-09-09)
Replaced by RFC 8221
Stream IETF
Intended RFC status (None)
Expired & archived
pdf htmlized (tools) htmlized bibtex
Stream WG state Adopted by a WG
Document shepherd David Waltermire
IESG IESG state Replaced by draft-ietf-ipsecme-rfc7321bis
Consensus Boilerplate Unknown
Telechat date
Responsible AD (None)
Send notices to "David Waltermire" <>

This Internet-Draft is no longer active. A copy of the expired Internet-Draft can be found at


This document updates the Cryptographic Algorithm Implementation Requirements for ESP and AH. The goal of these document is to enable ESP and AH to benefit from cryptography that is up to date while making IPsec interoperable. This document obsoletes RFC 7321 on the cryptographic recommendations only.


Daniel Migault (
John Preuß Mattsson (
Paul Wouters (
Yoav Nir (
Tero Kivinen (

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)