Generic Security Service Application Program Interface Key Exchange with SHA-2
RFC 8732, “Generic Security Service Application Program Interface Key Exchange with SHA-2”, is a Proposed Standard document published in February 2020 by S. Sorce, H. Kario. It updates RFC 4462. The canonical text is published by the RFC Editor.
Abstract
This document specifies additions and amendments to RFC 4462. It defines a new key exchange method that uses SHA-2 for integrity and deprecates weak Diffie-Hellman (DH) groups. The purpose of this specification is to modernize the cryptographic primitives used by Generic Security Service (GSS) key exchanges.
What “Proposed Standard” means
An entry-level standards-track specification: stable, peer-reviewed and a solid basis for implementation, though it may still evolve before becoming an Internet Standard.
The canonical text of RFC 8732 is hosted at rfc-editor.org. Available in HTML,TXT,PDF,XML.
- RFC 8731 Secure Shell Key Exchange Method Using Curve25519 and Curve448
- RFC 8733 Path Computation Element Communication Protocol Extensions for MPLS-TE Label Switched Path Auto-Bandwidth Adjustment with Stateful PCE
- RFC 8730 Independent Submission Editor Model
- RFC 8734 Elliptic Curve Cryptography Brainpool Curves for Transport Layer Security Version 1.3
- RFC 8729 The RFC Series and RFC Editor
- RFC 8735 Scenarios and Simulation Results of PCE in a Native IP Network
- RFC 8728 RFC Editor Model
- RFC 8736 PIM Message Type Space Extension and Reserved Bits