[prev in list] [next in list] [prev in thread] [next in thread]
List: ipsec
Subject: [IPsec] WG: New Version Notification for draft-ietf-ippm-ipsec-07.txt
From: Kostas Pentikousis <k.pentikousis () eict ! de>
Date: 2014-12-27 20:12:22
Message-ID: 0C7EDCF89AB9E2478B5D010026CFF4AEB5AB607753 () SBS2008 ! eict ! local
[Download RAW message or body]
Dear all @IPPM and @IPSEC,
We have updated draft-ietf-ippm-ipsec to address the issue that arose during the \
shepherd review (IANA considerations).
Please let us know if you have any final comments and suggestions.
Best regards,
Kostas
-----Ursprüngliche Nachricht-----
Von: internet-drafts@ietf.org [mailto:internet-drafts@ietf.org]
Gesendet: Samstag, 27. Dezember 2014 20:31
An: Yang Cui; Emma Zhang; Emma Zhang; Yang Cui; Kostas Pentikousis; Kostas \
Pentikousis
Betreff: New Version Notification for draft-ietf-ippm-ipsec-07.txt
A new version of I-D, draft-ietf-ippm-ipsec-07.txt has been successfully submitted by \
Kostas Pentikousis and posted to the IETF repository.
Name: draft-ietf-ippm-ipsec
Revision: 07
Title: IKEv2-based Shared Secret Key for O/TWAMP
Document date: 2014-12-27
Group: ippm
Pages: 13
URL: http://www.ietf.org/internet-drafts/draft-ietf-ippm-ipsec-07.txt
Status: https://datatracker.ietf.org/doc/draft-ietf-ippm-ipsec/
Htmlized: http://tools.ietf.org/html/draft-ietf-ippm-ipsec-07
Diff: http://www.ietf.org/rfcdiff?url2=draft-ietf-ippm-ipsec-07
Abstract:
The O/TWAMP security mechanism requires that both the client and
server endpoints possess a shared secret. Since the currently-
standardized O/TWAMP security mechanism only supports a pre-shared
key mode, large scale deployment of O/TWAMP is hindered
significantly. At the same time, recent trends point to wider IKEv2
deployment which, in turn, calls for mechanisms and methods that
enable tunnel end-users, as well as operators, to measure one-way and
two-way network performance in a standardized manner. This document
discusses the use of keys derived from an IKEv2 SA as the shared key
in O/TWAMP. If the shared key can be derived from the IKEv2 SA, O/
TWAMP can support certificate-based key exchange, which would allow
for more operational flexibility and efficiency. The key derivation
presented in this document can also facilitate automatic key
management.
Please note that it may take a couple of minutes from the time of submission until \
the htmlized version and diff are available at tools.ietf.org.
The IETF Secretariat
_______________________________________________
IPsec mailing list
IPsec@ietf.org
https://www.ietf.org/mailman/listinfo/ipsec
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic