On Jan 12, 2023, at 09:06, Valery Smyslov <[email protected]> wrote: > > Hi Paul, > >>> On Mon, 26 Dec 2022, Valery Smyslov wrote: >>> >>> Subject: Re: [IPsec] comments on draft-ietf-ipsecme-g-ikev2-07 >> >> I know this comment comes very late, but within the IETF we now see >> adoption happening of HPKE, Hybrid Public Key Encryption in RFC 9180. >> >> Would it make sense to redo the draft using HPKE primitives and methods? > > Unless I'm missing something, it's not immediately clear for me how you want > to use HPKE here. Can you clarify?
Similar to how MLS is using it to (re)generate the keys for the binary tree. They addressed the same problem of having a group and members joining and leaving and ensuring left members can’t decrypt new messages anymore. >> Paul - who still needs to do a full careful reading of the draft, sorry :/ > > Better late than never :-) I know, sorry for the delays…. Paul _______________________________________________ IPsec mailing list [email protected] https://www.ietf.org/mailman/listinfo/ipsec
