On Mon, Jan 27, 2025 at 4:53 PM Daniel Migault <mglt.i...@gmail.com> wrote:
> Hi, > Speaking as individual (but also as one of the co-authors on these documents) > The charter indicates that the requirements for the implementation of > cryptographic algorithms and the associated usage guidance documents for > IKEv2, ESP, and AH will undergo updates. With assistance from Carsten, I > have created markdown versions of RFC8221 and RFC8247, which will serve as > foundational documents for RFC8221bis [1] and RFC8247bis [2]. > > I welcome the opportunity to discuss the content of these drafts further, > either through the mailing list or in an online meeting prior to the next > IETF. > I am not sure it makes sense updating these documents right now. It would have to exclude all the PQ discussion, as we don't have code points yet or experience to add them as MAY or SHOULD. That would make the changes to 8221 and 8247 pretty minor. I am not sure that its worth it at this point. I mean the only changes I think would be to MUST NOT HMAC_SHA1, 3DES, CBC for ESP but not IKE, and perhaps a SHOULD for 25519 ? Paul
_______________________________________________ IPsec mailing list -- ipsec@ietf.org To unsubscribe send an email to ipsec-le...@ietf.org
