Hi Paul, This draft merges all suggestions and addresses all issues brought up for the previously draft-fluhrer-qr-ikev2 draft. It includes many changes for readability and some new insightful Security Considerations. It does include the optional NO_PPK_AUTH Valery brought up to solve the cases where a PPK_ID is not configured for a responder. For more details Check out the -05 changes in the Changes section.
We think it is more complete now and closer to finalization. Further feedback appreciated. Rgs, Panos -----Original Message----- From: IPsec [mailto:[email protected]] On Behalf Of Paul Wouters Sent: Thursday, October 19, 2017 7:48 PM To: [email protected] Subject: Re: [IPsec] I-D Action: draft-ietf-ipsecme-qr-ikev2-00.txt Did it not get marked as replacing the fluhrer draft ? Now there is no diff available. Can that still be fixed? Sent from my iPhone > On Oct 19, 2017, at 17:59, [email protected] wrote: > > > A New Internet-Draft is available from the on-line Internet-Drafts > directories. > This draft is a work item of the IP Security Maintenance and Extensions WG of > the IETF. > > Title : Postquantum Preshared Keys for IKEv2 > Authors : Scott Fluhrer > David McGrew > Panos Kampanakis > Valery Smyslov > Filename : draft-ietf-ipsecme-qr-ikev2-00.txt > Pages : 16 > Date : 2017-10-16 > > Abstract: > The possibility of Quantum Computers pose a serious challenge to > cryptography algorithms deployed widely today. IKEv2 is one example > of a cryptosystem that could be broken; someone storing VPN > communications today could decrypt them at a later time when a > Quantum Computer is available. It is anticipated that IKEv2 will be > extended to support quantum secure key exchange algorithms; however > that is not likely to happen in the near term. To address this > problem before then, this document describes an extension of IKEv2 to > allow it to be resistant to a Quantum Computer, by using preshared > keys. > > > The IETF datatracker status page for this draft is: > https://datatracker.ietf.org/doc/draft-ietf-ipsecme-qr-ikev2/ > > There are also htmlized versions available at: > https://tools.ietf.org/html/draft-ietf-ipsecme-qr-ikev2-00 > https://datatracker.ietf.org/doc/html/draft-ietf-ipsecme-qr-ikev2-00 > > > Please note that it may take a couple of minutes from the time of > submission until the htmlized version and diff are available at > tools.ietf.org. > > Internet-Drafts are also available by anonymous FTP at: > ftp://ftp.ietf.org/internet-drafts/ > > _______________________________________________ > IPsec mailing list > [email protected] > https://www.ietf.org/mailman/listinfo/ipsec _______________________________________________ IPsec mailing list [email protected] https://www.ietf.org/mailman/listinfo/ipsec _______________________________________________ IPsec mailing list [email protected] https://www.ietf.org/mailman/listinfo/ipsec
