datatracker.ietf.org
Sign in
Version 5.4.0, 2014-04-22
Report a bug

The Extensible Authentication Protocol-Internet Key Exchange Protocol version 2 (EAP-IKEv2) Method
RFC 5106

Document type: RFC - Experimental (February 2008; Errata)
Was draft-tschofenig-eap-ikev2 (individual in int area)
Document stream: IETF
Last updated: 2013-03-02
Other versions: plain text, pdf, html

IETF State: (None)
Consensus: Unknown
Document shepherd: No shepherd assigned

IESG State: RFC 5106 (Experimental)
Responsible AD: Jari Arkko
Send notices to: emu-chairs@tools.ietf.org,eap-chairs@tools.ietf.org,draft-tschofenig-eap-ikev2@tools.ietf.org

Network Working Group                                      H. Tschofenig
Request for Comments: 5106                                D. Kroeselberg
Category: Experimental                            Nokia Siemens Networks
                                                           A. Pashalidis
                                                                     NEC
                                                                 Y. Ohba
                                                                 Toshiba
                                                              F. Bersani
                                                          France Telecom
                                                           February 2008

 The Extensible Authentication Protocol-Internet Key Exchange Protocol
                     version 2 (EAP-IKEv2) Method

Status of This Memo

   This memo defines an Experimental Protocol for the Internet
   community.  It does not specify an Internet standard of any kind.
   Discussion and suggestions for improvement are requested.
   Distribution of this memo is unlimited.

Abstract

   This document specifies EAP-IKEv2, an Extensible Authentication
   Protocol (EAP) method that is based on the Internet Key Exchange
   (IKEv2) protocol.  EAP-IKEv2 provides mutual authentication and
   session key establishment between an EAP peer and an EAP server.  It
   supports authentication techniques that are based on passwords,
   high-entropy shared keys, and public key certificates.  EAP-IKEv2
   further provides support for cryptographic ciphersuite negotiation,
   hash function agility, identity confidentiality (in certain modes of
   operation), fragmentation, and an optional "fast reconnect" mode.

Tschofenig, et al.            Experimental                      [Page 1]
RFC 5106                    EAP-IKEv2 Method               February 2008

Table of Contents

   1. Introduction ....................................................3
   2. Terminology .....................................................4
   3. Protocol Overview ...............................................6
   4. Fast Reconnect ..................................................9
   5. Key Derivation .................................................12
   6. Session ID, Peer ID, and Server ID .............................13
   7. Error Handling .................................................13
   8. Specification of Protocol Fields ...............................16
      8.1. The Flags, Message Length, and Integrity Checksum
           Data Fields ...............................................17
      8.2. EAP-IKEv2 Header ..........................................19
      8.3. Security Association Payload ..............................19
      8.4. Key Exchange Payload ......................................20
      8.5. Nonce Payload .............................................20
      8.6. Identification Payload ....................................20
      8.7. Certificate Payload .......................................20
      8.8. Certificate Request Payload ...............................20
      8.9. Encrypted Payload .........................................20
      8.10. Authentication Payload ...................................20
      8.11. Notify Payload ...........................................21
      8.12. Next Fast-ID Payload .....................................21
   9. Payload Types and Extensibility ................................22
   10. Security Considerations .......................................22
      10.1. Protected Ciphersuite Negotiation ........................23
      10.2. Mutual Authentication ....................................23
      10.3. Integrity Protection .....................................23
      10.4. Replay Protection ........................................23
      10.5. Confidentiality ..........................................23
      10.6. Key Strength .............................................24
      10.7. Dictionary Attack Resistance .............................24
      10.8. Fast Reconnect ...........................................25
      10.9. Cryptographic Binding ....................................25
      10.10. Session Independence ....................................25
      10.11. Fragmentation ...........................................26
      10.12. Channel Binding .........................................26
      10.13. Summary .................................................26
   11. IANA Considerations ...........................................27
   12. Contributors ..................................................28
   13. Acknowledgements ..............................................28
   14. References ....................................................29
      14.1. Normative References .....................................29

[include full document text]