Dismiss
InnovationQ will be updated on Sunday, Oct. 22, from 10am ET - noon. You may experience brief service interruptions during that time.
Browse Prior Art Database

Minimal Internet Key Exchange Version 2 (IKEv2) Initiator Implementation (RFC7815)

IP.com Disclosure Number: IPCOM000245660D
Original Publication Date: 2016-Mar-01
Included in the Prior Art Database: 2016-Mar-25
Document File: 82 page(s) / 93K

Publishing Venue

Internet Society Requests For Comment (RFCs)

Related People

T. Kivinen: AUTHOR

Abstract

The Internet Protocol Suite is increasingly used on small devices with severe constraints on power, memory, and processing resources. This document describes a minimal IKEv2 implementation designed for use on such constrained nodes that is interoperable with "Internet Key Exchange Protocol Version 2 (IKEv2)" [RFC7296].

This text was extracted from an ASCII text file.
This is the abbreviated version, containing approximately 3% of the total text.

Internet Engineering Task Force (IETF)                        T. Kivinen Request for Comments: 7815                                 INSIDE Secure Category: Informational                                       March 2016 ISSN: 2070-1721

 Minimal Internet Key Exchange Version 2 (IKEv2) Initiator Implementation

Abstract

   This document describes a minimal initiator version of the Internet    Key Exchange version 2 (IKEv2) protocol for constrained nodes.  IKEv2    is a component of IPsec used for performing mutual authentication and    establishing and maintaining Security Associations (SAs).  IKEv2    includes several optional features, which are not needed in minimal    implementations.  This document describes what is required from the    minimal implementation and also describes various optimizations that    can be done.  The protocol described here is interoperable with a    full IKEv2 implementation using shared secret authentication (IKEv2    does not require the use of certificate authentication).  This    minimal initiator implementation can only talk to a full IKEv2    implementation acting as the responder; thus, two minimal initiator    implementations cannot talk to each other.

   This document does not update or modify RFC 7296 but provides a more    compact description of the minimal version of the protocol.  If this    document and RFC 7296 conflict, then RFC 7296 is the authoritative    description.

Status of This Memo

   This document is not an Internet Standards Track specification; it is    published for informational purposes.

   This document is a product of the Internet Engineering Task Force    (IETF).  It represents the consensus of the IETF community.  It has    received public review and has been approved for publication by the    Internet Engineering Steering Group (IESG).  Not all documents    approved by the IESG are a candidate for any level of Internet    Standard; see Section 2 of RFC 5741.

   Information about the current status of this document, any errata,    and how to provide feedback on it may be obtained at    http://www.rfc-editor.org/info/rfc7815.

Kivinen                       Informational                     [Page 1]
 RFC 7815         Minimal IKEv2 Initiator Implementation       March 2016

 Copyright Notice

   Copyright (c) 2016 IETF Trust and the persons identified as the    document authors.  All rights reserved.

   This document is subject to BCP 78 and the IETF Trust's Legal    Provisions Relating to IETF Documents    (http://trustee.ietf.org/license-info) in effect on the date of    publication of this document.  Please review these documents    carefully, as they describe your rights and restrictions with respect    to this document.  Co...