Dan Harkins <[email protected]> wrote: > https://www.nsa.gov/ia/programs/suiteb_cryptography/index.shtml
> "CSfC deployments involving an IKE/IPsec layer may use RFC
> 2409-conformant implementations of the IKE standard (IKEv1)
> together with large, high-entropy, pre-shared keys and the
> AES-256 encryption algorithm. RFC 2409 is the only version
> of the IKE standard that leverages symmetric pre-shared keys
> in a manner that may achieve quantum resistant confidentiality."
So, all of IKEv2 is out, according to them?
Or they just didn't consider it yet?
--
Michael Richardson <[email protected]>, Sandelman Software Works
-= IPv6 IoT consulting =-
signature.asc
Description: PGP signature
_______________________________________________ IPsec mailing list [email protected] https://www.ietf.org/mailman/listinfo/ipsec
