Announcing Supported Authentication Methods in the Internet Key Exchange Protocol Version 2
RFC 9593, “Announcing Supported Authentication Methods in the Internet Key Exchange Protocol Version 2”, is a Proposed Standard document published in July 2024 by V. Smyslov. The canonical text is published by the RFC Editor.
Abstract
This specification defines a mechanism that allows implementations of the Internet Key Exchange Protocol Version 2 (IKEv2) to indicate the list of supported authentication methods to their peers while establishing IKEv2 Security Associations (SAs). This mechanism improves interoperability when IKEv2 partners are configured with multiple credentials of different types for authenticating each other.
What “Proposed Standard” means
An entry-level standards-track specification: stable, peer-reviewed and a solid basis for implementation, though it may still evolve before becoming an Internet Standard.
The canonical text of RFC 9593 is hosted at rfc-editor.org. Available in HTML,TXT,PDF,XML.
- RFC 9592 Retiring the Tao of the IETF
- RFC 9594 Key Provisioning for Group Communication Using Authentication and Authorization for Constrained Environments
- RFC 9591 The Flexible Round-Optimized Schnorr Threshold Protocol for Two-Round Schnorr Signatures
- RFC 9595 YANG Schema Item iDentifier
- RFC 9590 IMAP Extension for Returning Mailbox METADATA in Extended LIS
- RFC 9596 CBOR Object Signing and Encryption "typ" Header Parameter
- RFC 9589 On the Use of the Cryptographic Message Syntax Signing-Time Attribute in Resource Public Key Infrastructure Signed Objects
- RFC 9597 CBOR Web Token Claims in COSE Headers