Hi all, a new version (-01) of draft-smyslov-ipsecme-ikev2-downgrade-prevention is published. Christopher Patton has agreed to be a co-author of the draft (thank you, Chris). This version adds some clarification of the attack surface (in particular, with regard to identity misbinding attack), addresses feedback received during IETF 123 and fixes typos and grammar issues of the -00 version.
Regards, Valery (for the authors). > A new version of Internet-Draft > draft-smyslov-ipsecme-ikev2-downgrade-prevention-01.txt has been successfully > submitted by Valery Smyslov and posted to the > IETF repository. > > Name: draft-smyslov-ipsecme-ikev2-downgrade-prevention > Revision: 01 > Title: Prevention Downgrade Attacks on the Internet Key Exchange Protocol > Version 2 (IKEv2) > Date: 2025-07-30 > Group: Individual Submission > Pages: 9 > URL: > https://www.ietf.org/archive/id/draft-smyslov-ipsecme-ikev2-downgrade- > prevention-01.txt > Status: > https://datatracker.ietf.org/doc/draft-smyslov-ipsecme-ikev2-downgrade- > prevention/ > HTMLized: https://datatracker.ietf.org/doc/html/draft-smyslov-ipsecme-ikev2- > downgrade-prevention > Diff: > https://author-tools.ietf.org/iddiff?url2=draft-smyslov-ipsecme-ikev2- > downgrade-prevention-01 > > Abstract: > > This document describes an extension to the Internet Key Exchange > protocol version 2 (IKEv2) that aims to prevent some kinds of > downgrade attacks on this protocol by having the peers confirm they > have participated in the same conversation. > > > > The IETF Secretariat _______________________________________________ IPsec mailing list -- ipsec@ietf.org To unsubscribe send an email to ipsec-le...@ietf.org
