Skip to main content

IP Security Maintenance and Extensions (ipsecme)

Document Date Status IPR AD/Shepherd
Active Internet-Drafts (10 hits)
14 pages
draft-ietf-ipsecme-add-ike-06
Internet Key Exchange Protocol Version 2 (IKEv2) Configuration for Encrypted DNS
2022-09-12 I-D Exists
In WG Last Call

68 pages
draft-ietf-ipsecme-g-ikev2-06
Group Key Management using IKEv2
2022-04-06
Expires soon
I-D Exists
In WG Last Call

7 pages
draft-ietf-ipsecme-ikev1-algo-to-historic-06
Deprecation of IKEv1 and obsoleted algorithms
2022-06-10 AD Evaluation::Revised I-D Needed 83
Submitted to IESG for Publication : Proposed Standard
Action Holders: Paul Wouters 82, Roman Danyliw 82
Roman Danyliw
Tero Kivinen
10 pages
draft-ietf-ipsecme-ikev2-auth-announce-01
Announcing Supported Authentication Methods in IKEv2
2022-07-11 I-D Exists
WG Document

33 pages
draft-ietf-ipsecme-ikev2-multiple-ke-06
Multiple Key Exchanges in IKEv2
2022-06-13 AD Evaluation::Revised I-D Needed
Submitted to IESG for Publication : Proposed Standard
Apr 2022
Action Holders: Valery Smyslov , Scott Fluhrer , Roman Danyliw , Oscar Garcia-Morchon , C. Tjhai , M. Tomlinson , G. Bartlett , Daniel Van Geest
1 Roman Danyliw
Tero Kivinen
37 pages
draft-ietf-ipsecme-iptfs-19
IP-TFS: Aggregation and Fragmentation Mode for ESP and its Use for IP Traffic Flow Security
2022-09-04 RFC Ed Queue : EDIT
Submitted to IESG for Publication : Proposed Standard
Reviews: intdir opsdir secdir genart LC secdir LC opsdir LC tsvart Early tsvart Early
Roman Danyliw
Tero Kivinen
10 pages
draft-ietf-ipsecme-labeled-ipsec-08
Labeled IPsec Traffic Selector support for IKEv2
2022-09-27
New
I-D Exists
WG Consensus: Waiting for Write-Up
Jul 2022

Tero Kivinen
22 pages
draft-ietf-ipsecme-mib-iptfs-05
Definitions of Managed Objects for IP Traffic Flow Security
2022-10-04
New
IESG Evaluation
IESG telechat: 2022-10-20
Submitted to IESG for Publication : Proposed Standard
Reviews: tsvart LC genart LC secdir LC opsdir LC
Action Holder: Roman Danyliw
Roman Danyliw
Tero Kivinen
35 pages
draft-ietf-ipsecme-rfc8229bis-09
TCP Encapsulation of IKE and IPsec Packets
2022-08-22 RFC Ed Queue : AUTH48 AUTH48
Submitted to IESG for Publication : Proposed Standard
Reviews: intdir secdir genart LC artart LC secdir LC tsvart LC opsdir LC
May 2022
Roman Danyliw
Tero Kivinen
28 pages
draft-ietf-ipsecme-yang-iptfs-11
A YANG Data Model for IP Traffic Flow Security
2022-09-22
New
RFC Ed Queue : EDIT
Submitted to IESG for Publication : Proposed Standard
Reviews: genart LC opsdir LC yangdoctors Early
Roman Danyliw
Tero Kivinen
Expired Internet-Draft (1 hit)
9 pages
draft-ietf-ipsecme-ike-tcp-01
A TCP transport for the Internet Key Exchange
2012-12-03 Expired
WG Document

Replaced Internet-Draft (1 hit)
13 pages
draft-btw-add-ipsecme-ike-04
Internet Key Exchange Protocol Version 2 (IKEv2) Configuration for Encrypted DNS
2021-11-08 Replaced by draft-ietf-ipsecme-add-ike
Adopted by a WG

RFCs (31 hits)
15 pages
RFC 5685 (was draft-ietf-ipsecme-ikev2-redirect)
Redirect Mechanism for the Internet Key Exchange Protocol Version 2 (IKEv2)
2009-11 Proposed Standard RFC Tim Polk
26 pages
RFC 5723 (was draft-ietf-ipsecme-ikev2-resumption)
Internet Key Exchange Protocol Version 2 (IKEv2) Session Resumption
2010-01 Proposed Standard RFC Pasi Eronen
32 pages
RFC 5739 (was draft-ietf-ipsecme-ikev2-ipv6-config)
IPv6 Configuration in Internet Key Exchange Protocol Version 2 (IKEv2) Errata
2010-02 Experimental RFC Tim Polk
15 pages
RFC 5840 (was draft-ietf-ipsecme-traffic-visibility)
Wrapped Encapsulating Security Payload (ESP) for Traffic Visibility
2010-04 Proposed Standard RFC Pasi Eronen
32 pages
RFC 5879 (was draft-ietf-ipsecme-esp-null-heuristics)
Heuristics for Detecting ESP-NULL Packets
2010-05 Informational RFC Pasi Eronen
6 pages
RFC 5930 (was draft-ietf-ipsecme-aes-ctr-ikev2)
Using Advanced Encryption Standard Counter Mode (AES-CTR) with the Internet Key Exchange version 02 (IKEv2) Protocol
2010-07 Informational RFC Sean Turner
138 pages
RFC 5996 (was draft-ietf-ipsecme-ikev2bis)
Internet Key Exchange Protocol Version 2 (IKEv2) Errata
2010-09 Proposed Standard RFC
Obsoleted by RFC 7296
Updated by RFC 5998, RFC 6989, RFC 6989
10 Sean Turner
16 pages
RFC 5998 (was draft-ietf-ipsecme-eap-mutual)
An Extension for EAP-Only Authentication in IKEv2
2010-09 Proposed Standard RFC Sean Turner
12 pages
RFC 6027 (was draft-ietf-ipsecme-ipsec-ha)
IPsec Cluster Problem Statement
2010-10 Informational RFC 1 Sean Turner
63 pages
RFC 6071 (was draft-ietf-ipsecme-roadmap)
IP Security (IPsec) and Internet Key Exchange (IKE) Document Roadmap
2011-02 Informational RFC Sean Turner
22 pages
RFC 6290 (was draft-ietf-ipsecme-failure-detection)
A Quick Crash Detection Method for the Internet Key Exchange Protocol (IKE) Errata
2011-06 Proposed Standard RFC Sean Turner
26 pages
RFC 6311 (was draft-ietf-ipsecme-ipsecha-protocol)
Protocol Support for High Availability of IKEv2/IPsec Errata
2011-07 Proposed Standard RFC 3 Sean Turner
10 pages
RFC 6989 (was draft-ietf-ipsecme-dh-checks)
Additional Diffie-Hellman Tests for the Internet Key Exchange Protocol Version 2 (IKEv2)
2013-07 Proposed Standard RFC 1 Sean Turner
Paul E. Hoffman
12 pages
RFC 7018 (was draft-ietf-ipsecme-ad-vpn-problem)
Auto-Discovery VPN Problem Statement and Requirements
2013-09 Informational RFC Sean Turner
Paul E. Hoffman
142 pages
RFC 7296 (was draft-kivinen-ipsecme-ikev2-rfc5996bis)
Internet Key Exchange Protocol Version 2 (IKEv2) Errata
2014-10 Internet Standard RFC
Updated by RFC 7427, RFC 7670, RFC 8247, RFC 8983
10 Kathleen Moriarty
Paul E. Hoffman
11 pages
RFC 7321 (was draft-ietf-ipsecme-esp-ah-reqts)
Cryptographic Algorithm Implementation Requirements and Usage Guidance for Encapsulating Security Payload (ESP) and Authentication Header (AH)
2014-08 Proposed Standard RFC
Obsoleted by RFC 8221
Kathleen Moriarty
Yaron Sheffer
20 pages
RFC 7383 (was draft-ietf-ipsecme-ikev2-fragmentation)
Internet Key Exchange Protocol Version 2 (IKEv2) Message Fragmentation
2014-11 Proposed Standard RFC Kathleen Moriarty
Paul E. Hoffman
18 pages
RFC 7427 (was draft-kivinen-ipsecme-signature-auth)
Signature Authentication in the Internet Key Exchange Version 2 (IKEv2)
2015-01 Proposed Standard RFC Kathleen Moriarty
Paul E. Hoffman
12 pages
RFC 7619 (was draft-ietf-ipsecme-ikev2-null-auth)
The NULL Authentication Method in the Internet Key Exchange Protocol Version 2 (IKEv2)
2015-08 Proposed Standard RFC Kathleen Moriarty
Paul E. Hoffman
13 pages
RFC 7634 (was draft-ietf-ipsecme-chacha20-poly1305)
ChaCha20, Poly1305, and Their Use in the Internet Key Exchange Protocol (IKE) and IPsec Errata
2015-08 Proposed Standard RFC Kathleen Moriarty
Paul E. Hoffman
32 pages
RFC 8019 (was draft-ietf-ipsecme-ddos-protection)
Protecting Internet Key Exchange Protocol Version 2 (IKEv2) Implementations from Distributed Denial-of-Service Attacks
2016-11 Proposed Standard RFC Kathleen Moriarty
David Waltermire
8 pages
RFC 8031 (was draft-ietf-ipsecme-safecurves)
Curve25519 and Curve448 for the Internet Key Exchange Protocol Version 2 (IKEv2) Key Agreement Errata
2016-12 Proposed Standard RFC Kathleen Moriarty
Tero Kivinen
15 pages
RFC 8221 (was draft-ietf-ipsecme-rfc7321bis)
Cryptographic Algorithm Implementation Requirements and Usage Guidance for Encapsulating Security Payload (ESP) and Authentication Header (AH)
2017-10 Proposed Standard RFC Eric Rescorla
David Waltermire
25 pages
RFC 8229 (was draft-ietf-ipsecme-tcp-encaps)
TCP Encapsulation of IKE and IPsec Packets Errata
2017-08 Proposed Standard RFC Eric Rescorla
Tero Kivinen
19 pages
RFC 8247 (was draft-ietf-ipsecme-rfc4307bis)
Algorithm Implementation Requirements and Usage Guidance for the Internet Key Exchange Protocol Version 2 (IKEv2)
2017-09 Proposed Standard RFC Eric Rescorla
David Waltermire
5 pages
RFC 8420 (was draft-ietf-ipsecme-eddsa)
Using the Edwards-Curve Digital Signature Algorithm (EdDSA) in the Internet Key Exchange Protocol Version 2 (IKEv2)
2018-08 Proposed Standard RFC Eric Rescorla
Tero Kivinen
16 pages
RFC 8598 (was draft-ietf-ipsecme-split-dns)
Split DNS Configuration for the Internet Key Exchange Protocol Version 2 (IKEv2)
2019-05 Proposed Standard RFC Eric Rescorla
David Waltermire
8 pages
RFC 8750 (was draft-ietf-ipsecme-implicit-iv)
Implicit Initialization Vector (IV) for Counter-Based Ciphers in Encapsulating Security Payload (ESP)
2020-03 Proposed Standard RFC Alexey Melnikov
Tero Kivinen
16 pages
RFC 8784 (was draft-ietf-ipsecme-qr-ikev2)
Mixing Preshared Keys in the Internet Key Exchange Protocol Version 2 (IKEv2) for Post-quantum Security
2020-06 Proposed Standard RFC Benjamin Kaduk
David Waltermire
7 pages
RFC 8983 (was draft-ietf-ipsecme-ipv6-ipv4-codes)
Internet Key Exchange Protocol Version 2 (IKEv2) Notification Status Types for IPv4/IPv6 Coexistence
2021-02 Proposed Standard RFC Benjamin Kaduk
Yoav Nir
14 pages
RFC 9242 (was draft-ietf-ipsecme-ikev2-intermediate)
Intermediate Exchange in the Internet Key Exchange Protocol Version 2 (IKEv2)
2022-05 Proposed Standard RFC Benjamin Kaduk
Yoav Nir
Related Internet-Drafts (10 hits)
9 pages
draft-kampati-ipsecme-ikev2-sa-ts-payloads-opt-09
IKEv2 Optional SA&TS Payloads in Child Exchange
2022-08-16 I-D Exists 2
10 pages
draft-liu-ipsecme-ikev2-mtu-dect-02
IKEv2 IPv4 Downstream Fragmentation Notification Extension
2022-05-13 I-D Exists 1
13 pages 2022-05-13 I-D Exists 1
53 pages
draft-mglt-ipsecme-diet-esp-08
ESP Header Compression and Diet-ESP
2022-05-13 I-D Exists
12 pages
draft-mglt-ipsecme-ikev2-diet-esp-extension-02
Internet Key Exchange version 2 (IKEv2) extension for the ESP Header Compression (EHC) Strategy
2022-05-13 I-D Exists
4 pages 2022-08-10 I-D Exists
6 pages
draft-nir-ipsecme-big-payload-00
A Larger Internet Key Exchange version 2 (IKEv2) Payload
2022-07-27 I-D Exists
13 pages
draft-pwouters-ipsecme-multi-sa-performance-04
IKEv2 support for per-queue Child SAs
2022-08-31 I-D Exists
10 pages
draft-smyslov-ipsecme-ikev2-cookie-revised-03
Revised Cookie Processing in the IKEv2 Protocol
2022-04-18 I-D Exists
15 pages
draft-tjhai-ikev2-beyond-64k-limit-03
Beyond 64KB Limit of IKEv2 Payloads
2022-07-28 I-D Exists