[IPsec] Fwd: New Version Notification for draft-reddy-ipsecme-ikev2-pqc-auth-02.txt

Sun, 27 Oct 2024 22:47:16 -0700 

Hi all,

The draft https://datatracker.ietf.org/doc/draft-reddy-ipsecme-ikev2-pqc-auth/
outlines how PQC digital signatures, ML-DSA and SLH-DSA, can be employed as
authentication methods within the IKEv2 protocol. It has been updated to
align with the final FIPS 204 and FIPS 205.

Comments and suggestions are welcome.

Cheers,
-Tiru

---------- Forwarded message ---------
From: <internet-dra...@ietf.org>
Date: Mon, 21 Oct 2024 at 15:35
Subject: New Version Notification for
draft-reddy-ipsecme-ikev2-pqc-auth-02.txt
To: Tirumaleswar Reddy.K <kond...@gmail.com>, Scott Fluhrer <
sfluh...@cisco.com>, Valery Smyslov <s...@elvis.ru>


A new version of Internet-Draft draft-reddy-ipsecme-ikev2-pqc-auth-02.txt
has
been successfully submitted by Tirumaleswar Reddy and posted to the
IETF repository.

Name:     draft-reddy-ipsecme-ikev2-pqc-auth
Revision: 02
Title:    Signature Authentication in the Internet Key Exchange Version 2
(IKEv2) using PQC
Date:     2024-10-21
Group:    Individual Submission
Pages:    9
URL:
https://www.ietf.org/archive/id/draft-reddy-ipsecme-ikev2-pqc-auth-02.txt
Status:
https://datatracker.ietf.org/doc/draft-reddy-ipsecme-ikev2-pqc-auth/
HTML:
https://www.ietf.org/archive/id/draft-reddy-ipsecme-ikev2-pqc-auth-02.html
HTMLized:
https://datatracker.ietf.org/doc/html/draft-reddy-ipsecme-ikev2-pqc-auth
Diff:
https://author-tools.ietf.org/iddiff?url2=draft-reddy-ipsecme-ikev2-pqc-auth-02

Abstract:

   Signature-based authentication methods are utilized in IKEv2
   [RFC7296].  The current version of the Internet Key Exchange Version
   2 (IKEv2) protocol supports traditional digital signatures.

   This document outlines how post-quantum digital signatures,
   specifically Module-Lattice-Based Digital Signatures (ML-DSA) and
   Stateless Hash-Based Digital Signatures (SLH-DSA), can be employed as
   authentication methods within the IKEv2 protocol.  It introduces ML-
   DSA and SLH-DSA capability to IKEv2 without necessitating any
   alterations to existing IKE operations.



The IETF Secretariat

_______________________________________________
IPsec mailing list -- ipsec@ietf.org
To unsubscribe send an email to ipsec-le...@ietf.org

Reply via email to