Hi, this version contains no substantial changes. The question raised in https://mailarchive.ietf.org/arch/msg/ipsec/u05zTrU03sjv66vJ51EcQ-_JUK0/ remains and I'd like to hear from the WG members on this.
Regards, Valery. > -----Original Message----- > From: [email protected] <[email protected]> > Sent: Monday, April 6, 2026 5:12 PM > To: [email protected] > Cc: [email protected] > Subject: [IPsec] I-D Action: draft-ietf-ipsecme-ikev2-prf-plus-01.txt > > Internet-Draft draft-ietf-ipsecme-ikev2-prf-plus-01.txt is now available. It > is a work item of the IP Security Maintenance and Extensions (IPSECME) WG of > the IETF. > > Title: Use of Variable-Length Output Pseudo-Random Functions (PRFs) in > the Internet Key Exchange Protocol > Version 2 (IKEv2) > Author: Valery Smyslov > Name: draft-ietf-ipsecme-ikev2-prf-plus-01.txt > Pages: 6 > Dates: 2026-04-06 > > Abstract: > > This document specifies the use of variable-length output Pseudo- > Random Functions (PRFs) in the Internet Key Exchange Protocol Version > 2 (IKEv2). Current IKEv2 specification relies on traditional PRFs > with fixed output length for key derivation and uses iterative > application of a PRF (called "prf+") in cases when longer output is > required. Appearance of PRFs that can output as much bits as > requested allows to streamline the key derivation functions of IKEv2. > > This document updates RFCs 5723, 6617, 6631, 7296, 8784, 9370, 9838, > 9867 for the cases when variable-length output Pseudo-Random > Functions are used in IKEv2 and its extensions. > > The IETF datatracker status page for this Internet-Draft is: > https://datatracker.ietf.org/doc/draft-ietf-ipsecme-ikev2-prf-plus/ > > There is also an HTMLized version available at: > https://datatracker.ietf.org/doc/html/draft-ietf-ipsecme-ikev2-prf-plus-01 > > A diff from the previous version is available at: > https://author-tools.ietf.org/iddiff?url2=draft-ietf-ipsecme-ikev2-prf-plus-01 > > Internet-Drafts are also available by rsync at: > rsync.ietf.org::internet-drafts > > > _______________________________________________ > IPsec mailing list -- [email protected] > To unsubscribe send an email to [email protected] _______________________________________________ IPsec mailing list -- [email protected] To unsubscribe send an email to [email protected]
