Dear all @IPPM and @IPSEC, We have updated draft-ietf-ippm-ipsec to address the issue that arose during the shepherd review (IANA considerations).
Please let us know if you have any final comments and suggestions. Best regards, Kostas -----Ursprüngliche Nachricht----- Von: [email protected] [mailto:[email protected]] Gesendet: Samstag, 27. Dezember 2014 20:31 An: Yang Cui; Emma Zhang; Emma Zhang; Yang Cui; Kostas Pentikousis; Kostas Pentikousis Betreff: New Version Notification for draft-ietf-ippm-ipsec-07.txt A new version of I-D, draft-ietf-ippm-ipsec-07.txt has been successfully submitted by Kostas Pentikousis and posted to the IETF repository. Name: draft-ietf-ippm-ipsec Revision: 07 Title: IKEv2-based Shared Secret Key for O/TWAMP Document date: 2014-12-27 Group: ippm Pages: 13 URL: http://www.ietf.org/internet-drafts/draft-ietf-ippm-ipsec-07.txt Status: https://datatracker.ietf.org/doc/draft-ietf-ippm-ipsec/ Htmlized: http://tools.ietf.org/html/draft-ietf-ippm-ipsec-07 Diff: http://www.ietf.org/rfcdiff?url2=draft-ietf-ippm-ipsec-07 Abstract: The O/TWAMP security mechanism requires that both the client and server endpoints possess a shared secret. Since the currently- standardized O/TWAMP security mechanism only supports a pre-shared key mode, large scale deployment of O/TWAMP is hindered significantly. At the same time, recent trends point to wider IKEv2 deployment which, in turn, calls for mechanisms and methods that enable tunnel end-users, as well as operators, to measure one-way and two-way network performance in a standardized manner. This document discusses the use of keys derived from an IKEv2 SA as the shared key in O/TWAMP. If the shared key can be derived from the IKEv2 SA, O/ TWAMP can support certificate-based key exchange, which would allow for more operational flexibility and efficiency. The key derivation presented in this document can also facilitate automatic key management. Please note that it may take a couple of minutes from the time of submission until the htmlized version and diff are available at tools.ietf.org. The IETF Secretariat _______________________________________________ IPsec mailing list [email protected] https://www.ietf.org/mailman/listinfo/ipsec
