Hi,
this new version addresses issues raised by Paul (I hope I didn't miss any).
Regards,
Valery.
> -Original Message-
> From: IPsec [mailto:ipsec-boun...@ietf.org] On Behalf Of
> internet-dra...@ietf.org
> Sent: Friday, April 14, 2023 5:52 PM
> To: i-d-annou...@ietf.org
> Cc:
A New Internet-Draft is available from the on-line Internet-Drafts
directories. This Internet-Draft is a work item of the IP Security Maintenance
and Extensions (IPSECME) WG of the IETF.
Title : Announcing Supported Authentication Methods in IKEv2
Author : Valery
On Fri, Apr 14, 2023 at 10:00 AM Valery Smyslov
wrote:
>
> OK, I see your point. We use similar approach, but payload processing
> is also dependent on the exchange it is encountered (in addition to its
> type),
> so there is no problem to have same payloads in different exchanges for
> our
HI Paul,
> >> There is text about IDi/IDr payloads being used in IKE_INTERMEDIATE and
> >> then talk about SHOULD be identical to the ones in IKE_AUTH. I would
> >> prefer a
> >> different notify for this (eg SAM_IDi/SAM_IDr) to avoid implementers
> >> confusing/erroring on confusing these with
Reviewer: Russ Housley
Review result: Not Ready
I reviewed this document as part of the Security Directorate's ongoing
effort to review all IETF documents being processed by the IESG. These
comments were written primarily for the benefit of the Security Area
Directors. Document authors,
Hi,
a new version of the draft has been published.
It addresses issue with mismatched PPKs and also adds some clarifications on
interaction with RFC 8784.
As it was discussed at the IETF116 IPSECME meeting,
once the new version is published, a call for adoption would be issued.
Chairs, can