The IESG has approved the following document: - 'Group Key Management using IKEv2' (draft-ietf-ipsecme-g-ikev2-21.txt) as Proposed Standard
This document is the product of the IP Security Maintenance and Extensions Working Group. The IESG contact persons are Paul Wouters and Deb Cooley. A URL of this Internet-Draft is: https://datatracker.ietf.org/doc/draft-ietf-ipsecme-g-ikev2/ Technical Summary This document presents an extension to the Internet Key Exchange version 2 (IKEv2) protocol for the purpose of a group key management. The protocol is in conformance with the Multicast Security (MSEC) key management architecture, which contains two components: member registration and group rekeying. Both components are required for a GCKS (Group Controller/Key Server) to provide authorized Group Members (GMs) with IPsec group security associations. The group members then exchange IP multicast or other group traffic as IPsec packets. This document obsoletes RFC 6407. Working Group Summary The document has a long history - the -00 version was published in March 2010. Since then the authors of the document were changed several times, so that no one of the original authors remains. The concept of the document was started more like a standalone protocol (like GDOI) and since then migrated to more like a complex extension to IKEv2. Since the draft addresses a specific problem of protecting multicast traffic with IPsec, it is of interest only for some part of IPsec community. It is believed that all interested parties reviewed the draft and the consensus is broad enough. Document Quality There were few implementations of the earlier versions of the draft, they are incompatible with the current version. No implementations of the current version exist is known. Personnel The Document Shepherd for this document is Tero Kivinen. The Responsible Area Director is Deb Cooley. IANA Note (Insert IANA Note here or remove section) _______________________________________________ IPsec mailing list -- ipsec@ietf.org To unsubscribe send an email to ipsec-le...@ietf.org
