Skip to main content

Guidelines for Specifying the Use of IPsec Version 2
RFC 5406

Approval announcement
Draft of message to be sent after approval:


From: The IESG <>
To: IETF-Announce <>
Cc: Internet Architecture Board <>,
    RFC Editor <>
Subject: Protocol Action: 'Guidelines for Specifying the Use of 
         IPsec Version 2' to BCP 

The IESG has approved the following document:

- 'Guidelines for Specifying the Use of IPsec Version 2 '
   <draft-bellovin-useipsec-11.txt> as a BCP

This document has been reviewed in the IETF but is not the product of an
IETF Working Group. 

The IESG contact person is Tim Polk.

A URL of this Internet-Draft is:

Ballot Text

Technical Summary

  The Security Considerations sections of many Internet Drafts say, in
  effect, "just use IPsec".  While this is sometimes correct, more often
  it will leave users without real, interoperable security mechanisms.
  This document offers some guidance on when IPsec should and should not
  be specified.

Working Group Summary

  This is an individual contribution, but it was posted to the SAAG mail
  list to obtain some review.

Protocol Quality

  This document was reviewed by Russ Housley for the IESG.

RFC Editor Note