Commercial National Security Algorithm Suite Cryptography for Internet Protocol Security
RFC 9206, “Commercial National Security Algorithm Suite Cryptography for Internet Protocol Security”, is an Informational document published in March 2022 by L. Corcoran, M. Jenkins. The canonical text is published by the RFC Editor.
Abstract
The United States Government has published the National Security Agency's Commercial National Security Algorithm (CNSA) Suite, which defines cryptographic algorithm policy for national security applications. This document specifies the conventions for using the United States National Security Agency's CNSA Suite algorithms in Internet Protocol Security (IPsec). It applies to the capabilities, configuration, and operation of all components of US National Security Systems (described in NIST Special Publication 800-59) that employ IPsec. This document is also appropriate for all other US Government systems that process high-value information. It is made publicly available for use by developers and operators of these and any other system deployments.
What “Informational” means
Published for the general information of the community. It does not define an IETF standard and carries no standards-track status.
The canonical text of RFC 9206 is hosted at rfc-editor.org. Available in HTML,TXT,PDF,XML.
- RFC 9205 Building Protocols with HTTP
- RFC 9207 OAuth 2.0 Authorization Server Issuer Identification
- RFC 9204 QPACK: Field Compression for HTTP/3
- RFC 9208 IMAP QUOTA Extension
- RFC 9203 The Object Security for Constrained RESTful Environments Profile of the Authentication and Authorization for Constrained Environments Framework
- RFC 9209 The Proxy-Status HTTP Response Header Field
- RFC 9202 Datagram Transport Layer Security Profile for Authentication and Authorization for Constrained Environments
- RFC 9210 DNS Transport over TCP - Operational Requirements