Changed milestone "IETF Last Call on Split-DNS Configuration for IKEv2",
resolved as "Done".
URL: https://datatracker.ietf.org/wg/ipsecme/about/
___
IPsec mailing list
IPsec@ietf.org
https://www.ietf.org/mailman/listinfo/ipsec
I was pointed to a new draft:
https://tools.ietf.org/html/draft-kampati-ipsecme-ikev2-sa-ts-payloads-opt-00
It's goal is to minimize the payloads for rekeying for IKE SA's and
IPsec SA's. The use case is like 3gpp use of large amounts of IKEv2
sessions.
I think the idea is fine, but I think I
Hi,
we had a side meeting today where some of us shared our experiences
implementing this
draft and we had the chance to discuss the future of this draft with the
authors.
Here's what we have talked about and our results:
#1 Nonces in IKE_INTERMEDIATE and CHILD_SA exchanges:
The current draft pr
> #4 Big Keys (e.G. Classic McEliece)
> In general there was consensus that we should find a way to enable the use of
> McEliece keys.
> The problem is that McEliece keys are >1MB in size and thus can not fit into
> the KE payload
> (which has a 16 bit size field).
Exchanging such big keys would
