@techreport{reddy-ipsecme-ikev2-pqc-auth-03, number = {draft-reddy-ipsecme-ikev2-pqc-auth-03}, type = {Internet-Draft}, institution = {Internet Engineering Task Force}, publisher = {Internet Engineering Task Force}, note = {Work in Progress}, url = {https://datatracker.ietf.org/doc/draft-reddy-ipsecme-ikev2-pqc-auth/03/}, author = {Tirumaleswar Reddy.K and Valery Smyslov and Scott Fluhrer}, title = {{Signature Authentication in the Internet Key Exchange Version 2 (IKEv2) using PQC}}, pagetotal = 9, year = 2024, month = nov, day = 14, abstract = {Signature-based authentication methods are utilized in IKEv2 {[}RFC7296{]}. The current version of the Internet Key Exchange Version 2 (IKEv2) protocol supports traditional digital signatures. This document outlines how post-quantum digital signatures, specifically Module-Lattice-Based Digital Signatures (ML-DSA) and Stateless Hash-Based Digital Signatures (SLH-DSA), can be employed as authentication methods within the IKEv2 protocol. It introduces ML- DSA and SLH-DSA capability to IKEv2 without necessitating any alterations to existing IKE operations.}, }