Dear all, We have updated the draft on "Network Performance Measurement for IPsec" (see below). We would greatly appreciate comments from both IPPM and IPSEC as we're heading to finalizing this work item in IPPM.
Best regards, Kostas -----Ursprüngliche Nachricht----- Von: internet-dra...@ietf.org [mailto:internet-dra...@ietf.org] Gesendet: Donnerstag, 5. Juni 2014 13:56 An: Yang Cui; Emma Zhang; Emma Zhang; Yang Cui; Kostas Pentikousis; Kostas Pentikousis Betreff: New Version Notification for draft-ietf-ippm-ipsec-03.txt A new version of I-D, draft-ietf-ippm-ipsec-03.txt has been successfully submitted by Kostas Pentikousis and posted to the IETF repository. Name: draft-ietf-ippm-ipsec Revision: 03 Title: Network Performance Measurement for IPsec Document date: 2014-06-05 Group: ippm Pages: 12 URL: http://www.ietf.org/internet-drafts/draft-ietf-ippm-ipsec-03.txt Status: https://datatracker.ietf.org/doc/draft-ietf-ippm-ipsec/ Htmlized: http://tools.ietf.org/html/draft-ietf-ippm-ipsec-03 Diff: http://www.ietf.org/rfcdiff?url2=draft-ietf-ippm-ipsec-03 Abstract: The O/TWAMP security mechanism requires that both the client and server endpoints possess a shared secret. Since the currently- standardized O/TWAMP security mechanism only supports a pre-shared key mode, large scale deployment of O/TWAMP is hindered significantly. At the same time, recent trends point to wider IKEv2 deployment which, in turn, calls for mechanisms and methods that enable tunnel end-users, as well as operators, to measure one-way and two-way network performance in a standardized manner. This document discusses the use of keys derived from an IKEv2 SA as the shared key in O/TWAMP. If the shared key can be derived from the IKEv2 SA, O/ TWAMP can support certificate-based key exchange, which would allow for more operational flexibility and efficiency. The key derivation presented in this document can also facilitate automatic key management. Please note that it may take a couple of minutes from the time of submission until the htmlized version and diff are available at tools.ietf.org. The IETF Secretariat _______________________________________________ IPsec mailing list IPsec@ietf.org https://www.ietf.org/mailman/listinfo/ipsec