Browse Prior Art Database

ChaCha20, Poly1305, and Their Use in the Internet Key Exchange Protocol (IKE) and IPsec (RFC7634)

IP.com Disclosure Number: IPCOM000242822D
Original Publication Date: 2015-Aug-01
Included in the Prior Art Database: 2015-Aug-21
Document File: 26 page(s) / 28K

Publishing Venue

Internet Society Requests For Comment (RFCs)

Related People

Y. Nir: AUTHOR

Abstract

The Advanced Encryption Standard (AES) [FIPS-197] has become the go- to algorithm for encryption. It is now the most commonly used algorithm in many areas, including IPsec Virtual Private Networks (VPNs). On most modern platforms, AES is anywhere from four to ten times as fast as the previously popular cipher, Triple Data Encryption Standard (3DES) [SP800-67]. 3DES also uses a 64-bit block; this means that the amount of data that can be encrypted before rekeying is required is limited. These reasons make AES not only the best choice, but the only viable choice for IPsec.

This text was extracted from an ASCII text file.
This is the abbreviated version, containing approximately 10% of the total text.

Internet Engineering Task Force (IETF)                            Y. Nir Request for Comments: 7634                                   Check Point Category: Standards Track                                    August 2015 ISSN: 2070-1721

                    ChaCha20, Poly1305, and Their Use          in the Internet Key Exchange Protocol (IKE) and IPsec

Abstract

   This document describes the use of the ChaCha20 stream cipher along    with the Poly1305 authenticator, combined into an AEAD algorithm for    the Internet Key Exchange Protocol version 2 (IKEv2) and for IPsec.

Status of This Memo

   This is an Internet Standards Track document.

   This document is a product of the Internet Engineering Task Force    (IETF).  It represents the consensus of the IETF community.  It has    received public review and has been approved for publication by the    Internet Engineering Steering Group (IESG).  Further information on    Internet Standards is available in Section 2 of RFC 5741.

   Information about the current status of this document, any errata,    and how to provide feedback on it may be obtained at    http://www.rfc-editor.org/info/rfc7634.

Copyright Notice

   Copyright (c) 2015 IETF Trust and the persons identified as the    document authors.  All rights reserved.

   This document is subject to BCP 78 and the IETF Trust's Legal    Provisions Relating to IETF Documents    (http://trustee.ietf.org/license-info) in effect on the date of    publication of this document.  Please review these documents    carefully, as they describe your rights and restrictions with respect    to this document.  Code Components extracted from this document must    include Simplified BSD License text as described in Section 4.e of    the Trust Legal Provisions and are provided without warranty as    described in the Simplified BSD License.

 Nir                          Standards Track                    [Page 1]
 RFC 7634              ChaCha20 & Poly1305 for IPsec          August 2015

 Table of Contents

   1.  Introduction  . . . . . . . . . . . . . . . . . . . . . . . .   2

     1.1.  Conventions Used in This Document . . . . . . . . . . . .   3

   2.  ChaCha20 and Poly1305 for ESP . . . . . . . . . . . . . . . .   3

     2.1.  AAD Construction  . . . . . . . . . . . . . . . . . . . .   5

   3.  Use in IKEv2  . . . . . . . . . . . . . . . . . . . . . . . .   6

   4.  Negotiation in IKEv2  . . . . . . . . . . . . . . . . . . . .   6

   5.  Security Considerations . . . . . . . . . . . . . . . . . . .   6

   6.  IANA Considerations . . . . . . . . . . . . . . . . . . . . .   7

   7.  References  . . . . . . . . . . . . . . . . . . . . . . . . .   7

     7...