IKE and IKEv2 Authentication Using the Elliptic Curve Digital Signature Algorithm
RFC 4754, “IKE and IKEv2 Authentication Using the Elliptic Curve Digital Signature Algorithm”, is a Proposed Standard document published in January 2007 by D. Fu, J. Solinas. The canonical text is published by the RFC Editor.
Abstract
This document describes how the Elliptic Curve Digital Signature Algorithm (ECDSA) may be used as the authentication method within the Internet Key Exchange (IKE) and Internet Key Exchange version 2 (IKEv2) protocols. ECDSA may provide benefits including computational efficiency, small signature sizes, and minimal bandwidth compared to other available digital signature methods. This document adds ECDSA capability to IKE and IKEv2 without introducing any changes to existing IKE operation. [STANDARDS-TRACK]
What “Proposed Standard” means
An entry-level standards-track specification: stable, peer-reviewed and a solid basis for implementation, though it may still evolve before becoming an Internet Standard.
The canonical text of RFC 4754 is hosted at rfc-editor.org. Available in TXT,HTML.
- RFC 4753 ECP Groups For IKE and IKEv2
- RFC 4760 Multiprotocol Extensions for BGP-4
- RFC 4761 Virtual Private LAN Service Using BGP for Auto-Discovery and Signaling
- RFC 4762 Virtual Private LAN Service Using Label Distribution Protocol Signaling
- RFC 4745 Common Policy: A Document Format for Expressing Privacy Preferences
- RFC 4764 The EAP-PSK Protocol: A Pre-Shared Key Extensible Authentication Protocol Method
- RFC 4765 The Intrusion Detection Message Exchange Format
- RFC 4766 Intrusion Detection Message Exchange Requirements