IP Security Maintenance and Extensions (ipsecme)

Document	Date	Status	IPR	AD / Shepherd
Active Internet-Drafts (6 hits)
draft-ietf-ipsecme-g-ikev2-00 Group Key Management using IKEv2	2020-01-08 52 pages	I-D Exists WG Document
draft-ietf-ipsecme-ikev2-intermediate-03 Intermediate Exchange in the IKEv2 Protocol	2019-12-16 11 pages Expires soon	I-D Exists WG Document
draft-ietf-ipsecme-ikev2-multiple-ke-00 Multiple Key Exchanges in IKEv2	2020-01-10 23 pages	I-D Exists WG Document	1
draft-ietf-ipsecme-iptfs-01 IP Traffic Flow Security	2020-03-02 25 pages	I-D Exists WG Document
draft-ietf-ipsecme-ipv6-ipv4-codes-04 IKEv2 Notification Status Types for IPv4/IPv6 Coexistence	2019-10-21 7 pages	Publication Requested for 115 days Submitted to IESG for Publication: Proposed Standard Dec 2019		Benjamin Kaduk Yoav Nir
draft-ietf-ipsecme-qr-ikev2-11 Mixing Preshared Keys in IKEv2 for Post-quantum Security	2020-01-14 20 pages	RFC Ed Queue : AUTH48 for 140 days Submitted to IESG for Publication: Proposed Standard Reviews: genart, opsdir, secdir		Benjamin Kaduk David Waltermire
RFCs (28 hits)
RFC 5685 (was draft-ietf-ipsecme-ikev2-redirect) Redirect Mechanism for the Internet Key Exchange Protocol Version 2 (IKEv2)	2009-11 15 pages	Proposed Standard RFC		Tim Polk
RFC 5723 (was draft-ietf-ipsecme-ikev2-resumption) Internet Key Exchange Protocol Version 2 (IKEv2) Session Resumption	2010-01 26 pages	Proposed Standard RFC		Pasi Eronen
RFC 5739 (was draft-ietf-ipsecme-ikev2-ipv6-config) IPv6 Configuration in Internet Key Exchange Protocol Version 2 (IKEv2)	2010-02 32 pages	Experimental RFC		Tim Polk
RFC 5840 (was draft-ietf-ipsecme-traffic-visibility) Wrapped Encapsulating Security Payload (ESP) for Traffic Visibility	2010-04 15 pages	Proposed Standard RFC		Pasi Eronen
RFC 5879 (was draft-ietf-ipsecme-esp-null-heuristics) Heuristics for Detecting ESP-NULL Packets	2010-05 32 pages	Informational RFC		Pasi Eronen
RFC 5930 (was draft-ietf-ipsecme-aes-ctr-ikev2) Using Advanced Encryption Standard Counter Mode (AES-CTR) with the Internet Key Exchange version 02 (IKEv2) Protocol	2010-07 6 pages	Informational RFC		Sean Turner
RFC 5996 (was draft-ietf-ipsecme-ikev2bis) Internet Key Exchange Protocol Version 2 (IKEv2)	2010-09 138 pages	Proposed Standard RFC Obsoleted by RFC7296 Updated by RFC5998, RFC6989, RFC6989	10	Sean Turner
RFC 5998 (was draft-ietf-ipsecme-eap-mutual) An Extension for EAP-Only Authentication in IKEv2	2010-09 16 pages	Proposed Standard RFC		Sean Turner
RFC 6027 (was draft-ietf-ipsecme-ipsec-ha) IPsec Cluster Problem Statement	2010-10 12 pages	Informational RFC	1	Sean Turner
RFC 6071 (was draft-ietf-ipsecme-roadmap) IP Security (IPsec) and Internet Key Exchange (IKE) Document Roadmap	2011-02 63 pages	Informational RFC		Sean Turner
RFC 6290 (was draft-ietf-ipsecme-failure-detection) A Quick Crash Detection Method for the Internet Key Exchange Protocol (IKE)	2011-06 22 pages	Proposed Standard RFC		Sean Turner
RFC 6311 (was draft-ietf-ipsecme-ipsecha-protocol) Protocol Support for High Availability of IKEv2/IPsec	2011-07 26 pages	Proposed Standard RFC	3	Sean Turner
RFC 6989 (was draft-ietf-ipsecme-dh-checks) Additional Diffie-Hellman Tests for the Internet Key Exchange Protocol Version 2 (IKEv2)	2013-07 10 pages	Proposed Standard RFC	1	Sean Turner Paul Hoffman
RFC 7018 (was draft-ietf-ipsecme-ad-vpn-problem) Auto-Discovery VPN Problem Statement and Requirements	2013-09 12 pages	Informational RFC		Sean Turner Paul Hoffman
RFC 7296 (was draft-kivinen-ipsecme-ikev2-rfc5996bis) Internet Key Exchange Protocol Version 2 (IKEv2)	2014-10 142 pages	Internet Standard RFC Updated by RFC7427, RFC7670, RFC8247	10	Kathleen Moriarty Paul Hoffman
RFC 7321 (was draft-ietf-ipsecme-esp-ah-reqts) Cryptographic Algorithm Implementation Requirements and Usage Guidance for Encapsulating Security Payload (ESP) and Authentication Header (AH)	2014-08 11 pages	Proposed Standard RFC Obsoleted by RFC8221		Kathleen Moriarty Yaron Sheffer
RFC 7383 (was draft-ietf-ipsecme-ikev2-fragmentation) Internet Key Exchange Protocol Version 2 (IKEv2) Message Fragmentation	2014-11 20 pages	Proposed Standard RFC		Kathleen Moriarty Paul Hoffman
RFC 7427 (was draft-kivinen-ipsecme-signature-auth) Signature Authentication in the Internet Key Exchange Version 2 (IKEv2)	2015-01 18 pages	Proposed Standard RFC		Kathleen Moriarty Paul Hoffman
RFC 7619 (was draft-ietf-ipsecme-ikev2-null-auth) The NULL Authentication Method in the Internet Key Exchange Protocol Version 2 (IKEv2)	2015-08 12 pages	Proposed Standard RFC		Kathleen Moriarty Paul Hoffman
RFC 7634 (was draft-ietf-ipsecme-chacha20-poly1305) ChaCha20, Poly1305, and Their Use in the Internet Key Exchange Protocol (IKE) and IPsec	2015-08 13 pages	Proposed Standard RFC		Kathleen Moriarty Paul Hoffman
RFC 8019 (was draft-ietf-ipsecme-ddos-protection) Protecting Internet Key Exchange Protocol Version 2 (IKEv2) Implementations from Distributed Denial-of-Service Attacks	2016-11 32 pages	Proposed Standard RFC		Kathleen Moriarty David Waltermire
RFC 8031 (was draft-ietf-ipsecme-safecurves) Curve25519 and Curve448 for the Internet Key Exchange Protocol Version 2 (IKEv2) Key Agreement	2016-12 8 pages	Proposed Standard RFC		Kathleen Moriarty Tero Kivinen
RFC 8221 (was draft-ietf-ipsecme-rfc7321bis) Cryptographic Algorithm Implementation Requirements and Usage Guidance for Encapsulating Security Payload (ESP) and Authentication Header (AH)	2017-10 15 pages	Proposed Standard RFC		Eric Rescorla David Waltermire
RFC 8229 (was draft-ietf-ipsecme-tcp-encaps) TCP Encapsulation of IKE and IPsec Packets	2017-08 25 pages	Proposed Standard RFC		Eric Rescorla Tero Kivinen
RFC 8247 (was draft-ietf-ipsecme-rfc4307bis) Algorithm Implementation Requirements and Usage Guidance for the Internet Key Exchange Protocol Version 2 (IKEv2)	2017-09 19 pages	Proposed Standard RFC		Eric Rescorla David Waltermire
RFC 8420 (was draft-ietf-ipsecme-eddsa) Using the Edwards-Curve Digital Signature Algorithm (EdDSA) in the Internet Key Exchange Protocol Version 2 (IKEv2)	2018-08 5 pages	Proposed Standard RFC		Eric Rescorla Tero Kivinen
RFC 8598 (was draft-ietf-ipsecme-split-dns) Split DNS Configuration for the Internet Key Exchange Protocol Version 2 (IKEv2)	2019-05 16 pages	Proposed Standard RFC		Eric Rescorla David Waltermire
RFC 8750 (was draft-ietf-ipsecme-implicit-iv) Implicit Initialization Vector (IV) for Counter-Based Ciphers in Encapsulating Security Payload (ESP)	2020-03 8 pages	Proposed Standard RFC		Alexey Melnikov Tero Kivinen

Document	Date	Status	AD / Shepherd
Related Internet-Drafts (12 hits)
draft-corcoran-cnsa-ipsec-profile-00 Commercial National Security Algorithm (CNSA) Suite Cryptography for Internet Protocol Security (IPSec)	2019-12-04 14 pages Expires soon	I-D Exists
draft-hujun-idr-bgp-ipsec-02 BGP Provisioned IPsec Tunnel Configuration	2020-03-09 15 pages	I-D Exists Call For Adoption By WG Issued
draft-ietf-i2nsf-sdn-ipsec-flow-protection-07 Software-Defined Networking (SDN)-based IPsec Flow Protection	2019-08-05 ☯ Yang Validation for draft-ietf-i2nsf-sdn-ipsec-flow-protection-07 on 2020-06-05 draft-ietf-i2nsf-sdn-ipsec-flow-protection-07.txt: xym 0.4.8: Extracting 'ietf-ipsec-common@2019-08-05.yang' Removed 0 empty lines Extracting 'ietf-ipsec-ike@2019-08-05.yang' Removed 3 empty lines Extracting 'ietf-ipsec-ikeless@2019-08-05.yang' Removed 2 empty lines ietf-ipsec-common@2019-08-05.yang: pyang 2.2.1: pyang --verbose --ietf -p {libs} {model}: # module search path: a/www/ietf-ftp/yang/rfcmod/:/a/www/ietf-ftp/yang/draftmod/:/a/www/ietf-ftp/yang/ianamod/:.:/var/lib/wwwrun/yang/modules:/a/www/ietf-datatracker/7.1.0/env/share/yang/modules # read ietf-ipsec-common@2019-08-05.yang (CL) # read /a/www/ietf-datatracker/7.1.0/env/share/yang/modules/ietf/ietf-inet-types.yang # read /a/www/ietf-ftp/yang/rfcmod/ietf-inet-types@2013-07-15.yang # read /a/www/ietf-datatracker/7.1.0/env/share/yang/modules/ietf/ietf-yang-types.yang # read /a/www/ietf-ftp/yang/rfcmod/ietf-yang-types@2013-07-15.yang yanglint SO 1.6.7: yanglint --verbose -p {rfclib} -p {draftlib} -p {tmplib} {model} -i: No validation errors ietf-ipsec-ikeless@2019-08-05.yang: pyang 2.2.1: pyang --verbose --ietf -p {libs} {model}: # module search path: a/www/ietf-ftp/yang/rfcmod/:/a/www/ietf-ftp/yang/draftmod/:/a/www/ietf-ftp/yang/ianamod/:.:/var/lib/wwwrun/yang/modules:/a/www/ietf-datatracker/7.1.0/env/share/yang/modules # read ietf-ipsec-ikeless@2019-08-05.yang (CL) # read /a/www/ietf-datatracker/7.1.0/env/share/yang/modules/ietf/ietf-yang-types.yang # read /a/www/ietf-ftp/yang/rfcmod/ietf-yang-types@2013-07-15.yang # read /a/www/ietf-ftp/yang/draftmod/ietf-ipsec-common@2019-08-05.yang # read /a/www/ietf-datatracker/7.1.0/env/share/yang/modules/ietf/ietf-inet-types.yang # read /a/www/ietf-ftp/yang/rfcmod/ietf-inet-types@2013-07-15.yang # read /a/www/ietf-datatracker/7.1.0/env/share/yang/modules/ietf/ietf-netconf-acm.yang # read /a/www/ietf-ftp/yang/rfcmod/ietf-netconf-acm@2018-02-14.yang yanglint SO 1.6.7: yanglint --verbose -p {rfclib} -p {draftlib} -p {tmplib} {model} -i: No validation errors ietf-ipsec-ike@2019-08-05.yang: pyang 2.2.1: pyang --verbose --ietf -p {libs} {model}: # module search path: a/www/ietf-ftp/yang/rfcmod/:/a/www/ietf-ftp/yang/draftmod/:/a/www/ietf-ftp/yang/ianamod/:.:/var/lib/wwwrun/yang/modules:/a/www/ietf-datatracker/7.1.0/env/share/yang/modules # read ietf-ipsec-ike@2019-08-05.yang (CL) # read /a/www/ietf-datatracker/7.1.0/env/share/yang/modules/ietf/ietf-inet-types.yang # read /a/www/ietf-ftp/yang/rfcmod/ietf-inet-types@2013-07-15.yang # read /a/www/ietf-datatracker/7.1.0/env/share/yang/modules/ietf/ietf-yang-types.yang # read /a/www/ietf-ftp/yang/rfcmod/ietf-yang-types@2013-07-15.yang # read /a/www/ietf-ftp/yang/draftmod/ietf-crypto-types@2020-05-20.yang # read /a/www/ietf-datatracker/7.1.0/env/share/yang/modules/ietf/ietf-netconf-acm.yang # read /a/www/ietf-ftp/yang/rfcmod/ietf-netconf-acm@2018-02-14.yang # read /a/www/ietf-ftp/yang/draftmod/ietf-ipsec-common@2019-08-05.yang yanglint SO 1.6.7: yanglint --verbose -p {rfclib} -p {draftlib} -p {tmplib} {model} -i: No validation errors 86 pages	AD Evaluation::Revised I-D Needed for 25 days Submitted to IESG for Publication: Proposed Standard Reviews: yangdoctors	Roman Danyliw Yoav Nir
draft-pwouters-ikev1-ipsec-graveyard-04 Deprecation of IKEv1 and obsoleted algorithms	2019-12-30 7 pages	I-D Exists
draft-smyslov-ipsecme-ikev2-auth-announce-01 Announcing Supported Authentication Methods in IKEv2	2020-03-11 9 pages	I-D Exists
draft-smyslov-ipsecme-ikev2-compact-07 Compact Format of IKEv2 Payloads	2020-03-31 19 pages	I-D Exists
draft-smyslov-ipsecme-ikev2-compression-09 Using compression in the Internet Key Exchange Protocol Version 2 (IKEv2)	2020-03-05 12 pages	I-D Exists
draft-smyslov-ipsecme-ikev2-qr-alt-01 Alternative Approach for Mixing Preshared Keys in IKEv2 for Post-quantum Security	2020-02-04 8 pages	I-D Exists
draft-smyslov-ipsecme-ikev2-r-mobike-06 Responder Initiated IP Addresses Update in MOBIKE	2020-05-30 9 pages New	I-D Exists
draft-smyslov-ipsecme-rfc8229bis-01 TCP Encapsulation of IKE and IPsec Packets	2020-05-15 30 pages	I-D Exists
draft-smyslov-ipsecme-tcp-guidelines-03 Clarifications and Implementation Guidelines for using TCP Encapsulation in IKEv2	2019-12-17 11 pages	I-D Exists Aug 2020
draft-xu-ipsecme-esp-in-udp-lb-04 Encapsulating IPsec ESP in UDP for Load-balancing	2020-03-11 8 pages	I-D Exists