Hi, 3GPP is also looking at updating its IKEv2 profile - most likely in November. I beleive it would be good to know about it and eventually to position RFC4307bis toward them. So far the differences I see with [1] are:
- DH group 19 (256-bit random ECP group) is MUST in 3GPP instead of SHOULD in [1]. - PRF_HMAC_SHA2_384; is MUST in 3GPP and is not mentionned in [1]. - Diffie-Hellman group 20 (384-bit random ECP group) is SHOULD in 3GPP instead of MAY in [1]. - DH group 2 (1024-bit MODP) is MUST NOT in 3GPP instead of SHOULD NOT in [1]. Are they any opinion to upgrade the requiremenst of [1] regarding 3GPP IKEv2 profiles? [1] https://tools.ietf.org/html/draft-nir-ipsecme-rfc4307bis-00
_______________________________________________ IPsec mailing list [email protected] https://www.ietf.org/mailman/listinfo/ipsec
