Labeled IPsec Traffic Selector Support for the Internet Key Exchange Protocol Version 2
RFC 9478, “Labeled IPsec Traffic Selector Support for the Internet Key Exchange Protocol Version 2”, is a Proposed Standard document published in October 2023 by P. Wouters, S. Prasad. The canonical text is published by the RFC Editor.
Abstract
This document defines a new Traffic Selector Type (TS Type) for the Internet Key Exchange Protocol version 2 (IKEv2) to add support for negotiating Mandatory Access Control (MAC) security labels as a Traffic Selector of the Security Policy Database (SPD). Security Labels for IPsec are also known as "Labeled IPsec". The new TS Type, TS_SECLABEL, consists of a variable length opaque field that specifies the security label.
What “Proposed Standard” means
An entry-level standards-track specification: stable, peer-reviewed and a solid basis for implementation, though it may still evolve before becoming an Internet Standard.
The canonical text of RFC 9478 is hosted at rfc-editor.org. Available in HTML,TXT,PDF,XML.
- RFC 9477 Complaint Feedback Loop Address Header
- RFC 9479 IS-IS Application-Specific Link Attributes
- RFC 9476 The .alt Special-Use Top-Level Domain
- RFC 9480 Certificate Management Protocol Updates
- RFC 9475 Messaging Use Cases and Extensions for Secure Telephone Identity Revisited
- RFC 9481 Certificate Management Protocol Algorithms
- RFC 9474 RSA Blind Signatures
- RFC 9482 Constrained Application Protocol Transfer for the Certificate Management Protocol