Using GOST Ciphers in the Encapsulating Security Payload (ESP) and Internet Key Exchange Version 2 (IKEv2) Protocols
draft-smyslov-esp-gost-14
Revision differences
Document history
Date | Rev. | By | Action |
---|---|---|---|
2022-03-31
|
14 | (System) | RFC Editor state changed to AUTH48-DONE from AUTH48 |
2022-03-23
|
14 | (System) | RFC Editor state changed to AUTH48 |
2022-03-21
|
14 | (System) | RFC Editor state changed to RFC-EDITOR from EDIT |
2022-02-16
|
14 | (System) | IANA Action state changed to RFC-Ed-Ack from Waiting on RFC Editor |
2022-02-16
|
14 | (System) | IANA Action state changed to Waiting on RFC Editor from In Progress |
2022-02-16
|
14 | (System) | IANA Action state changed to In Progress from Waiting on Authors |
2022-02-15
|
14 | (System) | IANA Action state changed to Waiting on Authors from In Progress |
2022-02-09
|
14 | (System) | RFC Editor state changed to EDIT |
2022-02-09
|
14 | (System) | IANA Action state changed to In Progress |
2022-02-09
|
14 | Adrian Farrel | ISE state changed to Sent to the RFC Editor from In IESG Review |
2022-02-09
|
14 | Adrian Farrel | Sent request for publication to the RFC Editor |
2022-02-07
|
14 | Valery Smyslov | New version available: draft-smyslov-esp-gost-14.txt |
2022-02-07
|
14 | (System) | New version accepted (logged-in submitter: Valery Smyslov) |
2022-02-07
|
14 | Valery Smyslov | Uploaded new revision |
2022-02-07
|
13 | (System) | IANA Review state changed to Version Changed - Review Needed from IANA OK - Actions Needed |
2022-02-07
|
13 | Valery Smyslov | New version available: draft-smyslov-esp-gost-13.txt |
2022-02-07
|
13 | (System) | New version accepted (logged-in submitter: Valery Smyslov) |
2022-02-07
|
13 | Valery Smyslov | Uploaded new revision |
2021-12-23
|
12 | Amanda Baber | (Via drafts-eval@iana.org): IESG/Authors/ISE: The IANA Functions Operator has completed its review of draft-smyslov-esp-gost-12. If any part of this review is inaccurate, please let us … (Via drafts-eval@iana.org): IESG/Authors/ISE: The IANA Functions Operator has completed its review of draft-smyslov-esp-gost-12. If any part of this review is inaccurate, please let us know. We understand that when this document is sent to us for processing, we will perform one registry action: In the Transform Type 1 - Encryption Algorithm Transform IDs registry under the heading "Internet Key Exchange Version 2 (IKEv2) Parameters," we will update the references for the following existing registrations to point to the latest version of this document: Number Name ESP Reference IKEv2 Reference --------------------------------------------------------------------- 32 ENCR_KUZNYECHIK_MGM_KTREE [RFCXXXX] [RFCXXXX] 33 ENCR_MAGMA_MGM_KTREE [RFCXXXX] [RFCXXXX] 34 ENCR_KUZNYECHIK_MGM_MAC_KTREE [RFCXXXX] Not allowed 35 ENCR_MAGMA_MGM_MAC_KTREE [RFCXXXX] Not allowed Thank you, Amanda Baber IANA Operations Manager |
2021-12-23
|
12 | Amanda Baber | IANA Review state changed to IANA OK - Actions Needed |
2021-12-20
|
12 | Adrian Farrel | ISE state changed to In IESG Review from In ISE Review |
2021-12-20
|
12 | Adrian Farrel | IETF conflict review initiated - see conflict-review-smyslov-esp-gost |
2021-12-20
|
12 | Adrian Farrel | draft-smyslov-esp-gost has been presented to the ISE for publication as an Informational RFC on the Independent Stream. ==Purpose== This document defines a set of encryption … draft-smyslov-esp-gost has been presented to the ISE for publication as an Informational RFC on the Independent Stream. ==Purpose== This document defines a set of encryption transforms for use in the Encapsulating Security Payload (ESP) and in the Internet Key Exchange version 2 (IKEv2) protocols. The transforms are based on the GOST R 34.12-2015 block ciphers (which are named "Magma" and "Kuznyechik"). Thus, it forms one of a series of documents clarifying how to use the Russian GOST algorithms with IETF protocols. The document is presented to facilitate implementations that wish to support the GOST algorithms. == History== This document has not seen any discussion in the IETF. The document was first brought to the ISE in April 2021 at version -05. Since then it has been revised several times to address review comments. ==Non-IETF Work== The document contains a clear statement in the Abstract and Introduction that no implication of IETF approval of the algorithms discussed should be assumed. ==Security Considerations== The whole document is about security. However, there is also a Security Considerations section to call out specific issues with respect to the use of the different algorithms. ==IANA== IANA has already made assignments from the IKEv2 Transform Type 1 registry https://www.iana.org/assignments/ikev2-parameters/ikev2-parameters.xhtml#ikev2-parameters-5 using this draft as the reference. The registry is "Expert review" with the DEs being the author of this document and Tero Kivinen. On publication, IANA is requested to update the registry to point to the resulting RFC. ==Discussion== There has been some discussion about the advisability of 64 bit block ciphers (because Magma is one such). The author points out that Magma is in use as described in this document and saying "don't do that" will not change what is out there. However, after some debate we believe we have added some words explaining that there are risks and pointing to NIST's work (for DES). Furthermore, the document makes some clear statements of advice about the use of Magma. ==Reviews== As well as reviewing the document himself, the ISE commissioned reviews from Russ Housley, Yaron Sheffer, and Stanislav Smyshlyaev. The reviews caught a considerable number of issues of clarification and led to a several updates to fully address the issues raised. Details of the reviews can be retrieved on request. |
2021-12-20
|
12 | Adrian Farrel | ISE state changed to In ISE Review from Response to Review Needed |
2021-12-19
|
12 | Valery Smyslov | New version available: draft-smyslov-esp-gost-12.txt |
2021-12-19
|
12 | (System) | New version accepted (logged-in submitter: Valery Smyslov) |
2021-12-19
|
12 | Valery Smyslov | Uploaded new revision |
2021-12-17
|
11 | Adrian Farrel | draft-smyslov-esp-gost has been presented to the ISE for publication as an Informational RFC on the Independent Stream. ==Purpose== This document defines a set of encryption … draft-smyslov-esp-gost has been presented to the ISE for publication as an Informational RFC on the Independent Stream. ==Purpose== This document defines a set of encryption transforms for use in the Encapsulating Security Payload (ESP) and in the Internet Key Exchange version 2 (IKEv2) protocols. The transforms are based on the GOST R 34.12-2015 block ciphers (which are named "Magma" and "Kuznyechik"). Thus, it forms one of a series of documents clarifying how to use the Russian GOST algorithms with IETF protocols. The document is presented to facilitate implementations that wish to support the GOST algorithms. == History== This document has not seen any discussion in the IETF. The document was first brought to the ISE in Apri 2021 at version -05. Since then it has been revised several times to address review comments. ==Non-IETF Work== The document contains a clear statement in the Abstract and Introduction that no implication of IETF approval of the alorithms discussed should be assumed. ==Security Considerations== The whole document is about security. However, there is also a Security Considerations section to call out specific issues with respect to the use of the different algorithms. ==IANA== IANA has already made assignments from the IKEv2 Transform Type 1 registry https://www.iana.org/assignments/ikev2-parameters/ikev2-parameters.xhtml#ikev2-parameters-5 using this draft as the reference. The registry is "Expert review" with the DEs being the author of this document and Tero Kivinen. On publication, IANA is requested to update the registry to point to the resulting RFC. ==Discussion== There has been some discussion about the advisability of 64 bit block ciphers (because Magma is one such). The author points out that Magma is in use as described in this document and saying "don't do that" will not change what is out there. However, after some debate we believe we have added some words explaining that there are risks and pointing to NIST's work (for DES). Furthermore, the document makes some clear statements of advice about the use of Magma. ==Reviews== As well as reviewing the document himself, the ISE commissioned reviews from Russ Housley, Yaron Sheffer, and Stanislav Smyshlyaev. The reviews caught a considerable number of issues of clarification and led to a several updates to fully address the issues raised. Details of the reviews can be retrieved on request. |
2021-12-14
|
11 | (System) | Revised ID Needed tag cleared |
2021-12-14
|
11 | Valery Smyslov | New version available: draft-smyslov-esp-gost-11.txt |
2021-12-14
|
11 | (System) | New version accepted (logged-in submitter: Valery Smyslov) |
2021-12-14
|
11 | Valery Smyslov | Uploaded new revision |
2021-12-13
|
10 | Adrian Farrel | Tag Revised I-D Needed set. Tag Awaiting Reviews cleared. |
2021-12-13
|
10 | Adrian Farrel | ISE state changed to Response to Review Needed from In ISE Review |
2021-12-06
|
10 | Adrian Farrel | ISE state changed to In ISE Review from Finding Reviewers |
2021-12-06
|
10 | Valery Smyslov | New version available: draft-smyslov-esp-gost-10.txt |
2021-12-06
|
10 | (System) | New version accepted (logged-in submitter: Valery Smyslov) |
2021-12-06
|
10 | Valery Smyslov | Uploaded new revision |
2021-12-03
|
09 | (System) | Revised ID Needed tag cleared |
2021-12-03
|
09 | Valery Smyslov | New version available: draft-smyslov-esp-gost-09.txt |
2021-12-03
|
09 | (System) | New version accepted (logged-in submitter: Valery Smyslov) |
2021-12-03
|
09 | Valery Smyslov | Uploaded new revision |
2021-12-03
|
08 | Adrian Farrel | Tag Revised I-D Needed set. |
2021-12-01
|
08 | Valery Smyslov | New version available: draft-smyslov-esp-gost-08.txt |
2021-12-01
|
08 | (System) | New version accepted (logged-in submitter: Valery Smyslov) |
2021-12-01
|
08 | Valery Smyslov | Uploaded new revision |
2021-11-30
|
07 | Adrian Farrel | Tag Awaiting Reviews set. |
2021-11-30
|
07 | (System) | Revised ID Needed tag cleared |
2021-11-30
|
07 | Valery Smyslov | New version available: draft-smyslov-esp-gost-07.txt |
2021-11-30
|
07 | (System) | New version accepted (logged-in submitter: Valery Smyslov) |
2021-11-30
|
07 | Valery Smyslov | Uploaded new revision |
2021-11-26
|
06 | Adrian Farrel | Tag Revised I-D Needed set. |
2021-11-26
|
06 | Adrian Farrel | ISE state changed to Finding Reviewers from In ISE Review |
2021-11-26
|
06 | Adrian Farrel | ISE state changed to In ISE Review from Submission Received |
2021-08-25
|
06 | Valery Smyslov | New version available: draft-smyslov-esp-gost-06.txt |
2021-08-25
|
06 | (System) | New version accepted (logged-in submitter: Valery Smyslov) |
2021-08-25
|
06 | Valery Smyslov | Uploaded new revision |
2021-05-02
|
05 | Adrian Farrel | Notification list changed to rfc-ise@rfc-editor.org because the document shepherd was set |
2021-05-02
|
05 | Adrian Farrel | Document shepherd changed to Adrian Farrel |
2021-05-02
|
05 | Adrian Farrel | ISE state changed to Submission Received |
2021-05-02
|
05 | Adrian Farrel | Intended Status changed to Informational from None |
2021-05-02
|
05 | Adrian Farrel | Stream changed to ISE from None |
2021-04-26
|
05 | Valery Smyslov | New version available: draft-smyslov-esp-gost-05.txt |
2021-04-26
|
05 | (System) | New version accepted (logged-in submitter: Valery Smyslov) |
2021-04-26
|
05 | Valery Smyslov | Uploaded new revision |
2020-10-26
|
04 | Valery Smyslov | New version available: draft-smyslov-esp-gost-04.txt |
2020-10-26
|
04 | (System) | New version accepted (logged-in submitter: Valery Smyslov) |
2020-10-26
|
04 | Valery Smyslov | Uploaded new revision |
2020-05-03
|
03 | Valery Smyslov | New version available: draft-smyslov-esp-gost-03.txt |
2020-05-03
|
03 | (System) | New version accepted (logged-in submitter: Valery Smyslov) |
2020-05-03
|
03 | Valery Smyslov | Uploaded new revision |
2020-05-03
|
02 | (System) | Document has expired |
2019-10-31
|
02 | Valery Smyslov | New version available: draft-smyslov-esp-gost-02.txt |
2019-10-31
|
02 | (System) | New version accepted (logged-in submitter: Valery Smyslov) |
2019-10-31
|
02 | Valery Smyslov | Uploaded new revision |
2019-10-10
|
01 | Valery Smyslov | New version available: draft-smyslov-esp-gost-01.txt |
2019-10-10
|
01 | (System) | New version accepted (logged-in submitter: Valery Smyslov) |
2019-10-10
|
01 | Valery Smyslov | Uploaded new revision |
2019-07-05
|
00 | Valery Smyslov | New version available: draft-smyslov-esp-gost-00.txt |
2019-07-05
|
00 | (System) | New version approved |
2019-07-05
|
00 | Valery Smyslov | Request for posting confirmation emailed to submitter and authors: Valery Smyslov |
2019-07-05
|
00 | Valery Smyslov | Uploaded new revision |