Internet-Draft draft-ietf-ipsecme-ikev2-pqc-auth-02.txt is now available. It
is a work item of the IP Security Maintenance and Extensions (IPSECME) WG of
the IETF.
Title: Signature Authentication in the Internet Key Exchange Version 2
(IKEv2) using PQC
Authors: Tirumaleswar Reddy
Valery Smyslov
Scott Fluhrer
Name: draft-ietf-ipsecme-ikev2-pqc-auth-02.txt
Pages: 14
Dates: 2025-04-11
Abstract:
Signature-based authentication methods are utilized in IKEv2
[RFC7296]. The current version of the Internet Key Exchange Version
2 (IKEv2) protocol supports traditional digital signatures.
This document specifies a generic mechanism for integrating post-
quantum cryptographic (PQC) digital signature algorithms into the
IKEv2 protocol. The approach allows for seamless inclusion of any
PQC signature scheme within the existing authentication framework of
IKEv2. Additionally, it outlines how Module-Lattice-Based Digital
Signatures (ML-DSA) and Stateless Hash-Based Digital Signatures (SLH-
DSA), can be employed as authentication methods within the IKEv2
protocol, as they have been standardized by NIST.
The IETF datatracker status page for this Internet-Draft is:
https://datatracker.ietf.org/doc/draft-ietf-ipsecme-ikev2-pqc-auth/
There is also an HTML version available at:
https://www.ietf.org/archive/id/draft-ietf-ipsecme-ikev2-pqc-auth-02.html
A diff from the previous version is available at:
https://author-tools.ietf.org/iddiff?url2=draft-ietf-ipsecme-ikev2-pqc-auth-02
Internet-Drafts are also available by rsync at:
rsync.ietf.org::internet-drafts
_______________________________________________
IPsec mailing list -- ipsec@ietf.org
To unsubscribe send an email to ipsec-le...@ietf.org
