[IPsec] Re: FW: New Version Notification for draft-sfluhrer-ipsecme-ikev2-mldsa-00.txt

Hi Scott, Small nit in abstract: This document describes how to use ML-DSA with IKEv2 as an auhentication scheme. auhentication -> authentication. Overall, This I-D is useful and should move forward. On Fri, 31 Jan 2025 at 23:41, Scott Fluhrer (sfluhrer) wrote: > > I just noticed that IKE was

[IPsec] OpenIKEd implementation with PQ support

Hi All, The OpenBSD project develops its own IPsec implementation known as OpenIKED. OpenIKED supports x25519+sntrup761 as a key exchange with the following option: 'ikesa group sntrup761x25519' OpenBSD users are already using this in production: See this email: " Hi David, Hi tech@, I somehow

[IPsec] Re: OpenIKEd implementation with PQ support

This might have slipped due to holidays last year. I would like to know if there is any interest in documenting the use of x25519-sntrup761 as used in OpenIKED ? On Thu, 19 Dec 2024 at 12:08, Loganaden Velvindron wrote: > > Hi All, > > The OpenBSD project develops its own IPsec im

[IPsec] Re: [CFRG] Re: Re: [IPsec]: FrodoKEM and its usage in IKemEv2

able". > Kind Regards > > Mike > > -Original Message- > From: Loganaden Velvindron > Sent: Wednesday, January 22, 2025 7:11 PM > To: John Mattsson > Cc: Wang Guilin ; ipsec > ; cfrg ; Wang Guilin > Subject: [EXTERNAL] [CFRG] Re: [IPsec] Re: [IPs

[IPsec] Re: [CFRG] [IPsec]: FrodoKEM and its usage in IKemEv2

On Wed, 22 Jan 2025 at 17:05, John Mattsson wrote: > > Hi, > > > > I think IKEv2 should register code points for FrodoKEM and BIKE/HQC > (depending on which one NIST standardizes). I think it is important with > backups to ML-KEM. The importance of cryptographic agility has been > emphasized by

[IPsec] Re: [CFRG] Re: [IPsec]: FrodoKEM and its usage in IKemEv2

On Thu, 23 Jan 2025 at 10:11, John Mattsson wrote: > > >There exist standards for FrodoKEM now, so you could point to those > >documents (or does IANA insist they be IETF documents?) > I do not think IETF should normatively refer to paywalled ISO crypto > standards, they don’t even fulfill speci

[IPsec] Re: The IPSECME WG has placed draft-kampanakis-ml-kem-ikev2 in state "Call For Adoption By WG Issued"

I also support. On Tue, 18 Mar 2025 at 13:13, Scott Fluhrer (sfluhrer) wrote: > > I vote for adoption (to absolutely no one's surprise) > > > -Original Message- > > From: IETF Secretariat > > Sent: Tuesday, March 18, 2025 5:08 AM > > To: draft-kampanakis-ml-kem-ik...@ietf.org; ipsec@ietf

[IPsec] Re: WG Adoption call of draft-reddy-ipsecme-ikev2-pqc-auth

I support adoption. On Mon, 17 Feb 2025 at 13:14, Tero Kivinen wrote: > > As our charter is now updated, this document is working on the > following charter item: > > Post-quantum Cryptography (PQC) brings new authentication and key > establishment methods. The working group will develop

[IPsec] Re: WG Adoption call of draft-kampanakis-ml-kem-ikev2

I support adoption. On Tue, 18 Mar 2025 at 15:01, Tero Kivinen wrote: > > As our charter is now updated, this document is working on the > following charter item: > > Post-quantum Cryptography (PQC) brings new authentication and > key establishment methods. The working group will