Generic Raw Public-Key Support for IKEv2
RFC 7670, “Generic Raw Public-Key Support for IKEv2”, is a Proposed Standard document published in January 2016 by T. Kivinen, P. Wouters, H. Tschofenig. It updates RFC 7296. The canonical text is published by the RFC Editor.
Abstract
The Internet Key Exchange Version 2 (IKEv2) protocol did have support for raw public keys, but it only supported RSA raw public keys. In constrained environments, it is useful to make use of other types of public keys, such as those based on Elliptic Curve Cryptography. This document updates RFC 7296, adding support for other types of raw public keys to IKEv2.
What “Proposed Standard” means
An entry-level standards-track specification: stable, peer-reviewed and a solid basis for implementation, though it may still evolve before becoming an Internet Standard.
The canonical text of RFC 7670 is hosted at rfc-editor.org. Available in TXT,HTML.
- RFC 7679 A One-Way Delay Metric for IP Performance Metrics
- RFC 7680 A One-Way Loss Metric for IP Performance Metrics
- RFC 7690 Close Encounters of the ICMP Type 2 Kind (Near Misses with ICMPv6 Packet Too Big )
- RFC 7697 MPLS Transport Profile Operations, Administration, and Maintenance Identifiers Management Information Base
- RFC 7707 Network Reconnaissance in IPv6 Networks
- RFC 7715 Multipoint LDP Node Protection
- RFC 7721 Security and Privacy Considerations for IPv6 Address Generation Mechanisms
- RFC 7723 Port Control Protocol Anycast Addresses