Dear all, Here is my first draft for IETF. Your kind comments and suggestions are welcome!
Also, it will be great to know if anyone may be interested in working together on this draft. Best wishes, Guilin -----Original Message----- From: internet-dra...@ietf.org <internet-dra...@ietf.org> Sent: Wednesday, 8 May 2024 7:45 pm To: Wang Guilin <wang.gui...@huawei.com>; Wang Guilin <wang.gui...@huawei.com> Subject: New Version Notification for draft-wang-hybrid-kem-ikev2-frodo-01.txt A new version of Internet-Draft draft-wang-hybrid-kem-ikev2-frodo-01.txt has been successfully submitted by Guilin Wang and posted to the IETF repository. Name: draft-wang-hybrid-kem-ikev2-frodo Revision: 01 Title: Post-quantum Hybrid Key Exchange in the IKEv2 with ECDH, ML-KEM, and FrodoKEM Date: 2024-05-08 Group: Individual Submission Pages: 10 URL: https://www.ietf.org/archive/id/draft-wang-hybrid-kem-ikev2-frodo-01.txt Status: https://datatracker.ietf.org/doc/draft-wang-hybrid-kem-ikev2-frodo/ HTML: https://www.ietf.org/archive/id/draft-wang-hybrid-kem-ikev2-frodo-01.html HTMLized: https://datatracker.ietf.org/doc/html/draft-wang-hybrid-kem-ikev2-frodo Diff: https://author-tools.ietf.org/iddiff?url2=draft-wang-hybrid-kem-ikev2-frodo-01 Abstract: RFC 9370 specifies a framework that supports mulitple key encapsulation mechanisms (KEMs) in the Internet Key Exchange Protocol Version 2 (IKEv2) by allowing up to 7 layers of additiona KEMs employed with the oringal ECDH to derive the final shared secret keys for IPsec protocols. The primitive goal is to mitigate the security threat against quantum computers by hybriding additional post-quantum (PQ) KEMs with the orinigal ECDH key exchange. This draft describes concretely how two specific QP KEMs, namely, ML-KEM and FrodoKEM, can be instantiated in the IKEv2 as the additional KEMs with the main ECDH to achieve hybrid key agreement. [EDNOTE: IANA KE code points for FrodoKEM may need to be assigned, when considering the code points for ML-KEM has been considered in [I-D.D24]. ] The IETF Secretariat _______________________________________________ IPsec mailing list -- ipsec@ietf.org To unsubscribe send an email to ipsec-le...@ietf.org