Skip to main content

Curve25519 and Curve448 for the Internet Key Exchange Protocol Version 2 (IKEv2) Key Agreement
RFC 8031

Revision differences

Document history

Date Rev. By Action
2020-11-19
05 (System) Received changes through RFC Editor sync (added Errata tag)
2016-12-08
05 (System)
Received changes through RFC Editor sync (created alias RFC 8031, changed title to 'Curve25519 and Curve448 for the Internet Key Exchange Protocol Version 2 …
Received changes through RFC Editor sync (created alias RFC 8031, changed title to 'Curve25519 and Curve448 for the Internet Key Exchange Protocol Version 2 (IKEv2) Key Agreement', changed abstract to 'This document describes the use of Curve25519 and Curve448 for ephemeral key exchange in the Internet Key Exchange Protocol Version 2 (IKEv2).', changed pages to 8, changed standardization level to Proposed Standard, changed state to RFC, added RFC published event at 2016-12-08, changed IESG state to RFC Published)
2016-12-08
05 (System) RFC published
2016-12-07
05 (System) RFC Editor state changed to <a href="http://www.rfc-editor.org/auth48/rfc8031">AUTH48-DONE</a> from AUTH48
2016-11-14
05 (System) RFC Editor state changed to <a href="http://www.rfc-editor.org/auth48/rfc8031">AUTH48</a> from RFC-EDITOR
2016-11-12
05 Jean Mahoney Closed request for Last Call review by GENART with state 'No Response'
2016-11-01
05 (System) RFC Editor state changed to RFC-EDITOR from EDIT
2016-10-20
05 (System) IANA Action state changed to RFC-Ed-Ack from Waiting on RFC Editor
2016-10-20
05 (System) IANA Action state changed to Waiting on RFC Editor from Waiting on Authors
2016-10-20
05 (System) IANA Action state changed to Waiting on Authors
2016-10-20
05 Tero Kivinen Closed request for Last Call review by SECDIR with state 'No Response'
2016-10-17
05 (System) RFC Editor state changed to EDIT
2016-10-17
05 (System) IESG state changed to RFC Ed Queue from Approved-announcement sent
2016-10-17
05 (System) Announcement was received by RFC Editor
2016-10-17
05 Amy Vezza IESG state changed to Approved-announcement sent from Approved-announcement to be sent
2016-10-17
05 Amy Vezza IESG has approved the document
2016-10-17
05 Amy Vezza Closed "Approve" ballot
2016-10-17
05 Amy Vezza Ballot approval text was generated
2016-10-13
05 Cindy Morgan IESG state changed to Approved-announcement to be sent from Waiting for AD Go-Ahead
2016-10-13
05 Stephen Farrell
[Ballot comment]

- Wouldn't it be good to encourage minimising re-use of
public values for multiple key exchanges? As-is, the text
sort-of encourages use for …
[Ballot comment]

- Wouldn't it be good to encourage minimising re-use of
public values for multiple key exchanges? As-is, the text
sort-of encourages use for "many key exchanges" in
section 4.

- Sorry if I'm forgetting how we handle this in IPsec,
but is an implementation of this RFC expected to support
both curves? I think it'd be ok to say that 25519 is a
MUST for folks doing, this but that 448 is optional.  I'm
also fine if we mean that implementing this means you
have to support both btw but you don't say (here) that
that's the case.
2016-10-13
05 Stephen Farrell [Ballot Position Update] New position, Yes, has been recorded for Stephen Farrell
2016-10-13
05 Jari Arkko [Ballot Position Update] New position, No Objection, has been recorded for Jari Arkko
2016-10-12
05 Gunter Van de Velde Request for Last Call review by OPSDIR Completed: Ready. Reviewer: Tim Wicinski.
2016-10-12
05 Alia Atlas [Ballot Position Update] New position, No Objection, has been recorded for Alia Atlas
2016-10-12
05 Amanda Baber IANA Review state changed to IANA OK - Actions Needed from Version Changed - Review Needed
2016-10-12
05 Ben Campbell [Ballot Position Update] New position, No Objection, has been recorded for Ben Campbell
2016-10-12
05 Spencer Dawkins [Ballot Position Update] New position, No Objection, has been recorded for Spencer Dawkins
2016-10-12
05 Alexey Melnikov [Ballot Position Update] New position, Yes, has been recorded for Alexey Melnikov
2016-10-12
05 Benoît Claise [Ballot Position Update] New position, No Objection, has been recorded for Benoit Claise
2016-10-11
05 Deborah Brungard [Ballot Position Update] New position, No Objection, has been recorded for Deborah Brungard
2016-10-11
05 (System) IANA Review state changed to Version Changed - Review Needed from IANA OK - Actions Needed
2016-10-11
05 Yoav Nir New version available: draft-ietf-ipsecme-safecurves-05.txt
2016-10-11
05 (System) New version approved
2016-10-11
04 (System) Request for posting confirmation emailed to previous authors: "Yoav Nir" <ynir.ietf@gmail.com>, "Simon Josefsson" <simon@josefsson.org>
2016-10-11
04 Yoav Nir Uploaded new revision
2016-10-11
04 Joel Jaeggli [Ballot Position Update] New position, No Objection, has been recorded for Joel Jaeggli
2016-10-11
04 Suresh Krishnan [Ballot Position Update] New position, No Objection, has been recorded for Suresh Krishnan
2016-10-10
04 Alissa Cooper [Ballot Position Update] New position, No Objection, has been recorded for Alissa Cooper
2016-10-10
04 Mirja Kühlewind [Ballot Position Update] New position, No Objection, has been recorded for Mirja Kühlewind
2016-10-07
04 Kathleen Moriarty Ballot has been issued
2016-10-07
04 Kathleen Moriarty [Ballot Position Update] New position, Yes, has been recorded for Kathleen Moriarty
2016-10-07
04 Kathleen Moriarty Created "Approve" ballot
2016-10-07
04 Kathleen Moriarty Ballot writeup was changed
2016-10-07
04 Kathleen Moriarty Notification list changed to "Tero Kivinen" <kivinen@iki.fi>, ipsec@ietf.org from "Tero Kivinen" <kivinen@iki.fi>
2016-10-03
04 Sabrina Tanamal IANA Review state changed to IANA OK - Actions Needed from IANA - Not OK
2016-09-29
04 (System) IESG state changed to Waiting for AD Go-Ahead from In Last Call
2016-09-28
04 (System) IANA Review state changed to IANA - Not OK from IANA - Review Needed
2016-09-28
04 Sabrina Tanamal
(Via drafts-lastcall-comment@iana.org): IESG/Authors/WG Chairs:

IANA has completed its review of draft-ietf-ipsecme-safecurves-04.txt. If any part of this review is inaccurate, please let us know.

IANA …
(Via drafts-lastcall-comment@iana.org): IESG/Authors/WG Chairs:

IANA has completed its review of draft-ietf-ipsecme-safecurves-04.txt. If any part of this review is inaccurate, please let us know.

IANA understands that, upon approval of this document, there is a single action which IANA must complete.

In the Transform Type 4 - Diffie-Hellman Group Transform IDs subregistry of the Internet Key Exchange Version 2 (IKEv2) Parameters registry located at:

http://www.iana.org/assignments/ikev2-parameters/

two new Transform IDs will be registered as follows:

Number: [ TBD-at-Registration ]
Name: Curve25519
Recipient Tests: [ RFC-to-be ] Section 3.2
Reference: [ RFC-to-be ]

Number: [ TBD-at-Registration ]
Name: Curve448
Recipient Tests: [ RFC-to-be ] Section 3.2
Reference: [ RFC-to-be ]

As this document requests registrations in an Expert Review or Specification Required (see RFC 5226) registry, we will initiate the required Expert Review via a separate request. Expert review will need to be completed before your document can be approved for publication as an RFC.

IANA understands that this is the only action required to be completed upon approval of this document.

Note:  The actions requested in this document will not be completed until the document has been approved for publication as an RFC. This message is only to confirm what actions will be performed. 


Thank you,

Sabrina Tanamal
IANA Specialist
ICANN
2016-09-22
04 Tero Kivinen Request for Last Call review by SECDIR is assigned to Matt Lepinski
2016-09-22
04 Tero Kivinen Request for Last Call review by SECDIR is assigned to Matt Lepinski
2016-09-21
04 Gunter Van de Velde Request for Last Call review by OPSDIR is assigned to Tim Wicinski
2016-09-21
04 Gunter Van de Velde Request for Last Call review by OPSDIR is assigned to Tim Wicinski
2016-09-21
04 Kathleen Moriarty Ballot writeup was changed
2016-09-21
04 Kathleen Moriarty Ballot writeup was changed
2016-09-21
04 Kathleen Moriarty Placed on agenda for telechat - 2016-10-13
2016-09-15
04 Jean Mahoney Request for Last Call review by GENART is assigned to Orit Levin
2016-09-15
04 Jean Mahoney Request for Last Call review by GENART is assigned to Orit Levin
2016-09-15
04 Amy Vezza IANA Review state changed to IANA - Review Needed
2016-09-15
04 Amy Vezza
The following Last Call announcement was sent out:<br><br>From: The IESG <iesg-secretary@ietf.org>
To: "IETF-Announce" <ietf-announce@ietf.org>
CC: ipsecme-chairs@ietf.org, draft-ietf-ipsecme-safecurves@ietf.org, kivinen@iki.fi, …
The following Last Call announcement was sent out:<br><br>From: The IESG <iesg-secretary@ietf.org>
To: "IETF-Announce" <ietf-announce@ietf.org>
CC: ipsecme-chairs@ietf.org, draft-ietf-ipsecme-safecurves@ietf.org, kivinen@iki.fi, ipsec@ietf.org, Kathleen.Moriarty.ietf@gmail.com, "Tero Kivinen" <kivinen@iki.fi>
Reply-To: ietf@ietf.org
Sender: <iesg-secretary@ietf.org>
Subject: Last Call: <draft-ietf-ipsecme-safecurves-04.txt> (Curve25519 and Curve448 for IKEv2 Key Agreement) to Proposed Standard


The IESG has received a request from the IP Security Maintenance and
Extensions WG (ipsecme) to consider the following document:
- 'Curve25519 and Curve448 for IKEv2 Key Agreement'
  <draft-ietf-ipsecme-safecurves-04.txt> as Proposed Standard

The IESG plans to make a decision in the next few weeks, and solicits
final comments on this action. Please send substantive comments to the
ietf@ietf.org mailing lists by 2016-09-29. Exceptionally, comments may be
sent to iesg@ietf.org instead. In either case, please retain the
beginning of the Subject line to allow automated sorting.

Abstract

  This document describes the use of Curve25519 and Curve448 for
  ephemeral key exchange in the Internet Key Exchange (IKEv2) protocol.


The file can be obtained via
https://datatracker.ietf.org/doc/draft-ietf-ipsecme-safecurves/

IESG discussion can be tracked via
https://datatracker.ietf.org/doc/draft-ietf-ipsecme-safecurves/ballot/

No IPR declarations have been submitted directly on this I-D.

Downward Normative References

There is normative reference to the informational RFC 7748. The RFC
7748
is the actual algorithm description published by the CFRG.


2016-09-15
04 Amy Vezza IESG state changed to In Last Call from Last Call Requested
2016-09-15
04 Amy Vezza Last call announcement was changed
2016-09-09
04 Kathleen Moriarty Last call was requested
2016-09-09
04 Kathleen Moriarty Last call was requested
2016-09-09
04 Kathleen Moriarty Ballot approval text was generated
2016-09-09
04 Kathleen Moriarty Ballot writeup was generated
2016-09-09
04 Kathleen Moriarty IESG state changed to Last Call Requested from Publication Requested
2016-09-09
04 Kathleen Moriarty Last call announcement was generated
2016-08-30
04 Tero Kivinen
RFC Type: Proposed Standard.

In general we have had algorithm drafts as informal RFCs instead of
standard track documents, but some of them has been …
RFC Type: Proposed Standard.

In general we have had algorithm drafts as informal RFCs instead of
standard track documents, but some of them has been put on standard
track when they are considered as core algorithms. This is true for
the RFC3526 which defined the current MODP Diffie-Hellman groups used
now, and also for AES etc. Because this document will most likely be
defining the very commonly used Diffie-Hellman groups for future, this
document has been put on the Standard Track.

Technical Summary

This document describes the use of Curve25519 and Curve448 for
ephemeral key exchange in the Internet Key Exchange (IKEv2) protocol.

Working Group Summary

The document did not get much comments in the IPsecME working group,
but as this document just mostly reuses what was defined in the
RFC7748 defining those Diffie-Hellman groups this was expected. This
document just defines how those groups are used in the IKE.

Document Quality

No implementations are known, but there have been implementors
indicating that they would like to implement this, and want to get the
IANA allocations for the groups soon.

Personnel

Authors are Yoav Nir and Simon Josefsson. Kathleen Moriarty is the
responsible Area Director. Tero Kivinen is the document shepherd.

Intellectual Property

All authors have confirmed that they are not aware of any undisclosed
IPR associated with this document. There have been no IPR disclosures.
The algorithms defined in this document are based on the RFC7748
which do not have any IPR disclosures submitted to it.

Downward Normative References

There is normative reference to the informational RFC 7748. The RFC
7748
is the actual algorithm description published by the CFRG.


2016-08-30
04 Tero Kivinen Responsible AD changed to Kathleen Moriarty
2016-08-30
04 Tero Kivinen IETF WG state changed to Submitted to IESG for Publication from WG Consensus: Waiting for Write-Up
2016-08-30
04 Tero Kivinen IESG state changed to Publication Requested
2016-08-30
04 Tero Kivinen IESG process started in state Publication Requested
2016-08-30
04 Tero Kivinen Changed document writeup
2016-08-30
04 Yoav Nir New version available: draft-ietf-ipsecme-safecurves-04.txt
2016-08-26
03 Tero Kivinen Notification list changed to "Tero Kivinen" <kivinen@iki.fi>
2016-08-26
03 Tero Kivinen Document shepherd changed to Tero Kivinen
2016-08-26
03 Tero Kivinen Changed consensus to Yes from Unknown
2016-08-26
03 Tero Kivinen IETF WG state changed to WG Consensus: Waiting for Write-Up from In WG Last Call
2016-08-26
03 Tero Kivinen Intended Status changed to Proposed Standard from None
2016-08-11
03 Tero Kivinen IETF WG state changed to In WG Last Call from WG Document
2016-08-09
03 Yoav Nir New version available: draft-ietf-ipsecme-safecurves-03.txt
2016-08-04
02 Yoav Nir New version available: draft-ietf-ipsecme-safecurves-02.txt
2016-02-01
01 Yoav Nir New version available: draft-ietf-ipsecme-safecurves-01.txt
2015-09-08
00 Paul Hoffman This document now replaces draft-nir-ipsecme-curve25519 instead of None
2015-09-08
00 Simon Josefsson New version available: draft-ietf-ipsecme-safecurves-00.txt