RFC 6989

Additional Diffie-Hellman Tests for the Internet Key Exchange Protocol Version 2 (IKEv2), July 2013

File formats:
icon for text file icon for PDF icon for HTML
Status:
PROPOSED STANDARD
Updates:
RFC 5996
Authors:
Y. Sheffer
S. Fluhrer
Stream:
IETF
Source:
ipsecme (sec)

Cite this RFC: TXT  |  XML

DOI:  10.17487/RFC6989

Discuss this RFC: Send questions or comments to ipsec@ietf.org

Other actions: Submit Errata  |  Find IPR Disclosures from the IETF  |  View History of RFC 6989


Abstract

This document adds a small number of mandatory tests required for the secure operation of the Internet Key Exchange Protocol version 2 (IKEv2) with elliptic curve groups. No change is required to IKE implementations that use modular exponential groups, other than a few rarely used so-called Digital Signature Algorithm (DSA) groups. This document updates the IKEv2 protocol, RFC 5996.


For the definition of Status, see RFC 2026.

For the definition of Stream, see RFC 8729.