Skip to main content

Using Authenticated Encryption Algorithms with the Encrypted Payload of the Internet Key Exchange version 2 (IKEv2) Protocol
RFC 5282

Revision differences

Document history

Date Rev. By Action
2020-01-21
01 (System) Received changes through RFC Editor sync (added Verified Errata tag)
2018-12-20
01 (System)
Received changes through RFC Editor sync (changed abstract to 'An authenticated encryption algorithm combines encryption and integrity into a single operation; such algorithms may also …
Received changes through RFC Editor sync (changed abstract to 'An authenticated encryption algorithm combines encryption and integrity into a single operation; such algorithms may also be referred to as combined modes of an encryption cipher or as combined mode algorithms. This document describes the use of authenticated encryption algorithms with the Encrypted Payload of the Internet Key Exchange version 2 (IKEv2) protocol.

The use of two specific authenticated encryption algorithms with the IKEv2 Encrypted Payload is also described; these two algorithms are the Advanced Encryption Standard (AES) in Galois/Counter Mode (AES GCM) and AES in Counter with CBC-MAC Mode (AES CCM). Additional documents may describe the use of other authenticated encryption algorithms with the IKEv2 Encrypted Payload. [STANDARDS-TRACK]')
2015-10-14
01 (System) Notify list changed from black_david@emc.com, mcgrew@cisco.com, draft-black-ipsec-ikev2-aead-modes@ietf.org to (None)
2008-08-21
01 Cindy Morgan State Changes to RFC Published from RFC Ed Queue by Cindy Morgan
2008-08-21
01 Cindy Morgan [Note]: 'RFC 5282' added by Cindy Morgan
2008-08-21
01 (System) RFC published
2008-07-24
01 (System) IANA Action state changed to RFC-Ed-Ack from Waiting on RFC Editor
2008-07-24
01 (System) IANA Action state changed to Waiting on RFC Editor from In Progress
2008-07-24
01 (System) IANA Action state changed to In Progress from Waiting on Authors
2008-07-23
01 (System) IANA Action state changed to Waiting on Authors from In Progress
2008-07-21
01 Cindy Morgan State Changes to RFC Ed Queue from Approved-announcement sent by Cindy Morgan
2008-07-21
01 (System) IANA Action state changed to In Progress
2008-07-21
01 Amy Vezza IESG state changed to Approved-announcement sent
2008-07-21
01 Amy Vezza IESG has approved the document
2008-07-21
01 Amy Vezza Closed "Approve" ballot
2008-07-18
01 (System) Removed from agenda for telechat - 2008-07-17
2008-07-17
01 Cindy Morgan State Changes to Approved-announcement to be sent::Point Raised - writeup needed from IESG Evaluation by Cindy Morgan
2008-07-17
01 Jon Peterson [Ballot Position Update] New position, No Objection, has been recorded by Jon Peterson
2008-07-17
01 Lisa Dusseault [Ballot Position Update] New position, No Objection, has been recorded by Lisa Dusseault
2008-07-17
01 Chris Newman [Ballot Position Update] New position, No Objection, has been recorded by Chris Newman
2008-07-17
01 Jari Arkko [Ballot Position Update] New position, No Objection, has been recorded by Jari Arkko
2008-07-17
01 Ross Callon [Ballot Position Update] New position, No Objection, has been recorded by Ross Callon
2008-07-17
01 Mark Townsley [Ballot Position Update] New position, No Objection, has been recorded by Mark Townsley
2008-07-17
01 Pasi Eronen
[Ballot comment]
Section 12: the numeric identifiers should be "TBD-BY-IANA", since
it's likely these numbers have already been allocated (to SIV)
by the time this …
[Ballot comment]
Section 12: the numeric identifiers should be "TBD-BY-IANA", since
it's likely these numbers have already been allocated (to SIV)
by the time this document reaches IANA.

Section 1, "The current version of ESP is version 2, ESPv2 [RFC4303]":
it's version 3 (v1 was RFC 1827; and the draft that became RFC4303
was also named draft-ietf-ipsec-esp-v3).
2008-07-17
01 Pasi Eronen [Ballot Position Update] New position, No Objection, has been recorded by Pasi Eronen
2008-07-17
01 Ron Bonica [Ballot Position Update] New position, No Objection, has been recorded by Ron Bonica
2008-07-17
01 Magnus Westerlund [Ballot Position Update] New position, No Objection, has been recorded by Magnus Westerlund
2008-07-17
01 Lars Eggert [Ballot Position Update] New position, No Objection, has been recorded by Lars Eggert
2008-07-16
01 David Ward [Ballot Position Update] New position, No Objection, has been recorded by David Ward
2008-07-16
01 Cullen Jennings [Ballot Position Update] New position, No Objection, has been recorded by Cullen Jennings
2008-07-16
01 Russ Housley [Ballot Position Update] New position, No Objection, has been recorded by Russ Housley
2008-07-16
01 Amy Vezza State Changes to IESG Evaluation from Waiting for AD Go-Ahead by Amy Vezza
2008-07-16
01 Tim Polk [Ballot Position Update] New position, Yes, has been recorded for Tim Polk
2008-07-16
01 Tim Polk Ballot has been issued by Tim Polk
2008-07-15
01 Dan Romascanu [Ballot Position Update] New position, No Objection, has been recorded by Dan Romascanu
2008-07-15
01 Dan Romascanu Created "Approve" ballot
2008-07-07
01 (System) State has been changed to Waiting for AD Go-Ahead from In Last Call by system
2008-06-25
01 Samuel Weiler Request for Telechat review by SECDIR Completed. Reviewer: Charlie Kaufman.
2008-06-25
01 Samuel Weiler Request for Telechat review by SECDIR is assigned to Charlie Kaufman
2008-06-25
01 Samuel Weiler Request for Telechat review by SECDIR is assigned to Charlie Kaufman
2008-06-25
01 Samuel Weiler Assignment of request for Last Call review by SECDIR to Steve Hanna was rejected
2008-06-13
01 Samuel Weiler Request for Last Call review by SECDIR is assigned to Steve Hanna
2008-06-13
01 Samuel Weiler Request for Last Call review by SECDIR is assigned to Steve Hanna
2008-06-12
01 Amanda Baber
IANA Last Call comments:

Upon approval of this document, IANA understands that the
following actions must be taken:

IANA notes that the following identifiers have …
IANA Last Call comments:

Upon approval of this document, IANA understands that the
following actions must be taken:

IANA notes that the following identifiers have been previously
allocated by IANA for the purpose of negotiating the use of AES
GCM and AES CCM as the Encryption (ENCR) Transform for IKEv2
and whose meaning is being extended to their usage to IKEv2 for
the Encrypted Payload.

For Transform Type 1 (Encryption Algorithm), defined Transform
IDs are:
Number Name Reference
------ --------------------------------- ---------
14 ENCR_AES-CCM_8 [RFC4309]
15 ENCR-AES-CCM_12 [RFC4309]
16 ENCR-AES-CCM_16 [RFC4309]
18 AES-GCM with a 8 octet ICV [RFC4106]
19 AES-GCM with a 12 octet ICV [RFC4106]
20 AES-GCM with a 16 octet ICV [RFC4106]

These registrations already exist in the registry located at:

http://www.iana.org/assignments/ikev2-parameters

IANA understands that no further action need be taken for
extending the meaning of these registry entries.

In addition, upon approval of the document the IANA will add ten
new entries to the Authenticated Encryption with Associated Data
(AEAD) Parameters Registry at

http://www.iana.org/assignments/aead-parameters

Those ten new entries will be:

Registry:
Numeric ID Name
----------- ----------------------------
tbd AEAD_AES_128_GCM_8
tbd AEAD_AES_256_GCM_8
tbd AEAD_AES_128_GCM_12
tbd AEAD_AES_256_GCM_12
tbd AEAD_AES_128_CCM_SHORT
tbd AEAD_AES_256_CCM_SHORT
tbd AEAD_AES_128_CCM_SHORT_8
tbd AEAD_AES_256_CCM_SHORT_8
tbd AEAD_AES_128_CCM_SHORT_12
tbd AEAD_AES_256_CCM_SHORT_12

IANA notes that the document requests specific values for these
new registry entries and will comply with that request where
possible. IANA makes no statement or claim about the quality or
security of any algorithim represented in this registry.

IANA understands that, upon approval of the document, this is a
complete list of the actions required by IANA.
2008-06-11
01 Tim Polk Placed on agenda for telechat - 2008-07-17 by Tim Polk
2008-06-09
01 Amy Vezza Last call sent
2008-06-09
01 Amy Vezza State Changes to In Last Call from Last Call Requested by Amy Vezza
2008-06-09
01 Tim Polk State Changes to Last Call Requested from Publication Requested by Tim Polk
2008-06-09
01 Tim Polk Last Call was requested by Tim Polk
2008-06-09
01 (System) Ballot writeup text was added
2008-06-09
01 (System) Last call text was added
2008-06-09
01 (System) Ballot approval text was added
2008-05-23
01 Tim Polk Draft Added by Tim Polk in state Publication Requested
2008-05-23
01 Tim Polk [Note]: 'pseudo Last Call on ipsec@ietf.org' added by Tim Polk
2008-04-22
01 (System) New version available: draft-black-ipsec-ikev2-aead-modes-01.txt
2008-02-20
00 (System) New version available: draft-black-ipsec-ikev2-aead-modes-00.txt