Skip to main content

Opportunistic Encryption using the Internet Key Exchange (IKE)
RFC 4322

Revision differences

Document history

Date Rev. By Action
2020-01-21
17 (System) Received changes through RFC Editor sync (added Verified Errata tag)
2018-12-20
17 (System)
Received changes through RFC Editor sync (changed abstract to 'This document describes opportunistic encryption (OE) as designed and implemented by the Linux FreeS/WAN project. OE …
Received changes through RFC Editor sync (changed abstract to 'This document describes opportunistic encryption (OE) as designed and implemented by the Linux FreeS/WAN project. OE uses the Internet Key Exchange (IKE) and IPsec protocols. The objective is to allow encryption for secure communication without any pre-arrangement specific to the pair of systems involved. DNS is used to distribute the public keys of each system involved. This is resistant to passive attacks. The use of DNS Security (DNSSEC) secures this system against active attackers as well.

As a result, the administrative overhead is reduced from the square of the number of systems to a linear dependence, and it becomes possible to make secure communication the default even when the partner is not known in advance. This memo provides information for the Internet community.')
2015-10-14
17 (System) Notify list changed from mcr@sandelman.ottawa.on.ca, hugh@mimosa.com to (None)
2012-05-03
17 Cindy Morgan Changed stream from Legacy to ISE
2005-12-27
17 Amy Vezza State Changes to RFC Published from RFC Ed Queue by Amy Vezza
2005-12-27
17 Amy Vezza [Note]: 'RFC 4322' added by Amy Vezza
2005-12-23
17 (System) RFC published
2005-02-17
17 (System) New version available: draft-richardson-ipsec-opportunistic-17.txt
2004-12-01
17 Amy Vezza State Changes to RFC Ed Queue from Approved-announcement sent by Amy Vezza
2004-11-03
17 Amy Vezza IESG state changed to Approved-announcement sent
2004-11-03
17 Amy Vezza IESG has approved the document
2004-11-03
17 Amy Vezza Closed "Approve" ballot
2004-11-03
17 Steven Bellovin State Changes to Approved-announcement to be sent from Approved-announcement to be sent::Point Raised - writeup needed by Steve Bellovin
2004-11-03
17 Steven Bellovin author pinged
2004-07-23
17 Amy Vezza State Changes to Approved-announcement to be sent::Point Raised - writeup needed from IESG Evaluation by Amy Vezza
2004-07-23
17 (System) Removed from agenda for telechat - 2004-07-22
2004-07-22
17 Bert Wijnen
[Ballot comment]
The document should use the proper range of IP addresses in
examples, as per RFC3330. I see it done incorrectly on pages …
[Ballot comment]
The document should use the proper range of IP addresses in
examples, as per RFC3330. I see it done incorrectly on pages
7, 8, 35, 43.

I have passed this comment on to RFC-editor as well.
2004-07-22
17 Bert Wijnen
[Ballot comment]
The document should use the proper range of IP addresses in
examples, as per RFC3330. I see it done incorrectly on pages …
[Ballot comment]
The document should use the proper range of IP addresses in
examples, as per RFC3330. I see it done incorrectly on pages
7, 8, 35, 43
2004-07-22
17 Bert Wijnen [Ballot Position Update] New position, No Objection, has been recorded for Bert Wijnen by Bert Wijnen
2004-07-21
17 Bill Fenner [Ballot Position Update] New position, No Objection, has been recorded for Bill Fenner by Bill Fenner
2004-07-21
17 David Kessens [Ballot Position Update] New position, No Objection, has been recorded for David Kessens by David Kessens
2004-07-20
17 Ted Hardie [Ballot Position Update] New position, No Objection, has been recorded for Ted Hardie by Ted Hardie
2004-07-20
17 Harald Alvestrand [Ballot comment]
Reviewed by Joel Halpern, Gen-ART
Review sent directly to RFC Editor.
2004-07-20
17 Harald Alvestrand [Ballot Position Update] New position, No Objection, has been recorded for Harald Alvestrand by Harald Alvestrand
2004-07-19
16 (System) New version available: draft-richardson-ipsec-opportunistic-16.txt
2004-07-19
17 Steven Bellovin [Ballot Position Update] New position, Yes, has been recorded for Steven Bellovin
2004-07-19
17 Steven Bellovin Ballot has been issued by Steve Bellovin
2004-07-19
17 Steven Bellovin Created "Approve" ballot
2004-07-19
17 (System) Ballot writeup text was added
2004-07-19
17 (System) Last call text was added
2004-07-19
17 (System) Ballot approval text was added
2004-07-02
17 Steven Bellovin Placed on agenda for telechat - 2004-07-22 by Steve Bellovin
2004-07-02
17 Steven Bellovin State Changes to IESG Evaluation from Publication Requested by Steve Bellovin
2004-07-02
17 Steven Bellovin State Change Notice email list have been change to mcr@sandelman.ottawa.on.ca, hugh@mimosa.com from
2004-05-26
17 Steven Bellovin Shepherding AD has been changed to Steve Bellovin from Russ Housley
2004-05-06
17 Dinara Suleymanova Draft Added by Dinara Suleymanova
2004-04-01
15 (System) New version available: draft-richardson-ipsec-opportunistic-15.txt
2004-03-17
14 (System) New version available: draft-richardson-ipsec-opportunistic-14.txt
2004-03-08
13 (System) New version available: draft-richardson-ipsec-opportunistic-13.txt
2003-07-02
12 (System) New version available: draft-richardson-ipsec-opportunistic-12.txt
2003-01-13
11 (System) New version available: draft-richardson-ipsec-opportunistic-11.txt
2002-08-28
10 (System) New version available: draft-richardson-ipsec-opportunistic-10.txt
2002-06-07
09 (System) New version available: draft-richardson-ipsec-opportunistic-09.txt
2002-05-06
08 (System) New version available: draft-richardson-ipsec-opportunistic-08.txt
2002-04-10
07 (System) New version available: draft-richardson-ipsec-opportunistic-07.txt
2002-02-26
06 (System) New version available: draft-richardson-ipsec-opportunistic-06.txt
2002-02-11
05 (System) New version available: draft-richardson-ipsec-opportunistic-05.txt
2002-01-08
04 (System) New version available: draft-richardson-ipsec-opportunistic-04.txt
2001-11-09
03 (System) New version available: draft-richardson-ipsec-opportunistic-03.txt
2001-09-17
02 (System) New version available: draft-richardson-ipsec-opportunistic-02.txt
2001-08-24
01 (System) New version available: draft-richardson-ipsec-opportunistic-01.txt
2001-07-25
00 (System) New version available: draft-richardson-ipsec-opportunistic-00.txt