IPsec and Related Standards
This is a list of IPsec and IPsec-related IETF standards and drafts.
If nothing else is noted in the status column, the standards and drafts are at least partially implemented by the most current strongSwan release or by the Linux kernel.
IKEv1
Core Standards
S[1] | RFC, Internet Draft |
---|---|
RFC 2407: IPsec Domain of Interpretation for ISAKMP (IPsec DoI) |
|
RFC 2408: Internet Security Association and Key Management Protocol (ISAKMP) |
|
RFC 2409: Internet Key Exchange (IKE) |
|
RFC 9395: Deprecation of the Internet Key Exchange Version 1 (IKEv1) Protocol and Obsoleted Algorithms |
|
IANA-ISAKMP: ISAKMP Registry |
|
IANA-IKE/IPSEC: IKE/IPsec Registry |
Extensions
S[1] | RFC, Internet Draft |
---|---|
RFC 3526: More Modular Exponential (MODP) Diffie-Hellman groups for IKE |
|
RFC 3706: A Traffic-Based Method of Detecting Dead IKE Peers |
|
RFC 3947: Negotiation of NAT-Traversal in the IKE |
|
draft-dukes-ike-mode-cfg: The ISAKMP Configuration Method |
|
draft-ietf-ipsec-isakmp-xauth: Extended Authentication within ISAKMP/Oakley (XAUTH) |
|
draft-ietf-ipsec-isakmp-hybrid-auth: A Hybrid Authentication Mode for IKE |
IKEv2
Core Standards
S[1] | RFC, Internet Draft |
---|---|
RFC 7296: Internet Key Exchange Protocol Version 2 (IKEv2) |
|
RFC 7815: Minimal IKEv2 Initiator Implementation |
|
RFC 8247: Algorithm Implementation Requirements and Usage Guidance for IKEv2 |
|
IANA-IKEv2: IKEv2 Parameters |
Extensions
S[1] | RFC, Internet Draft |
---|---|
RFC 4478: Repeated Authentication in Internet Key Exchange (IKEv2) Protocol |
|
RFC 4555: IKEv2 Mobility and Multihoming Protocol (MOBIKE) |
|
x |
RFC 4595: Use of IKEv2 in the Fibre Channel Security Association Management Protocol |
RFC 6515: The AES-Cipher-based Message Authentication Code-Pseudo-Random Function-128 (AES-CMAC-PRF-128) Algorithm for IKE |
|
RFC 4621: Design of the IKEv2 Mobility and Multihoming (MOBIKE) Protocol |
|
RFC 4739: Multiple Authentication Exchanges in the IKEv2 Protocol |
|
RFC 4754: IKE and IKEv2 Authentication Using the Elliptic Curve Digital Signature Algorithm (ECDSA) |
|
RFC 4806: Online Certificate Status Protocol (OCSP) Extensions to IKEv2 |
|
x |
RFC 5026: Mobile IPv6 Bootstrapping in Split Scenario |
RFC 5282: Using Authenticated Encryption Algorithms with the Encrypted Payload of the IKEv2 Protocol |
|
RFC 5685: Redirect Mechanism for IKEv2 |
|
x |
RFC 5723: IKEv2 Session Resumption |
x |
RFC 5739: IPv6 Configuration in IKEv2 |
x |
RFC 5857: IKEv2 Extensions to Support Robust Header Compression over IPsec |
RFC 5903: ECP Groups for IKE and IKEv2 |
|
RFC 5930: Using Advanced Encryption Standard Counter Mode (AES-CTR) with the IKEv2 Protocol |
|
RFC 5998: An Extension for EAP-only Authentication in IKEv2 |
|
RFC 6023: A Childless Initiation of the IKEv2 Security Association (SA) |
|
x |
RFC 6027: IPsec Cluster Problem Statement |
x |
RFC 6290: A Quick Crash Detection Method for the IKE Protocol |
x |
RFC 6311: Protocol Support for High Availability of IKEv2/IPsec |
d |
RFC 6467: Secure Password Framework for IKEv2 |
x |
RFC 6617: Secure Pre-Shared Key (PSK) Authentication for IKE |
d |
RFC 6628: Efficient Augmented Password-Only Authentication and Key Exchange for IKEv2 |
d |
RFC 6631: Password Authenticated Connection Establishment with IKEv2 |
x |
RFC 6867: An IKEv2 Extension to Support EAP Re-authentication Protocol (ERP) |
RFC 6932: Brainpool Elliptic Curves for the IKE Group Description Registry |
|
RFC 6954: Using the Elliptic Curve Cryptography (ECC) Brainpool Curves for IKEv2 |
|
RFC 6989: Additional Diffie-Hellman Tests for IKEv2 |
|
RFC 7383: IKEv2 Message Fragmentation |
|
RFC 7427: Signature Authentication in IKEv2 |
|
x |
RFC 7619: The NULL Authentication Method in IKEv2 |
RFC 7634: ChaCha20, Poly1305, and Their Use in the IKE Protocol and IPsec |
|
d |
RFC 7651: 3GPP IP Multimedia Subsystems (IMS) Option for IKEv2 |
x |
RFC 7670: Generic Raw Public-Key Support for IKEv2 |
x |
RFC 7791: Cloning the IKE Security Association in the Internet Key Exchange Protocol Version 2 (IKEv2) |
x |
RFC 8019: Protecting IKEv2 Implementations from Distributed Denial-of-Service Attacks |
RFC 8031: Curve25519 and Curve448 for the IKEv2 Key Agreement |
|
RFC 8420: Using the Edwards-Curve Digital Signature Algorithm (EdDSA) in IKEv2 |
|
x |
RFC 8598: Split DNS Configuration for IKEv2 |
RFC 8784: Mixing Preshared Keys in IKEv2 for Post-quantum Security |
|
x |
RFC 8983: IKEv2 Notification Status Types for IPv4/IPv6 Coexistence |
RFC 9242: Intermediate Exchange in the IKEv2 Protocol |
|
x |
RFC 9329: TCP Encapsulation of IKE and IPsec Packets |
x |
RFC 9347: Aggregation and Fragmentation Mode for ESP and Its Use for IP Traffic Flow Security (IP-TFS) |
RFC 9370: Multiple Key Exchanges in the Internet Key Exchange Protocol Version 2 (IKEv2) |
|
x |
RFC 9385: Using GOST Cryptographic Algorithms in the Internet Key Exchange Protocol Version 2 (IKEv2) |
RFC 9478: Labeled IPsec Traffic Selector support for IKEv2 |
|
x |
RFC 9464: Internet Key Exchange Protocol Version 2 (IKEv2) Configuration for Encrypted DNS |
x |
RFC 9593: Announcing Supported Authentication Methods in the Internet Key Exchange Protocol Version 2 (IKEv2) |
d |
RFC 9611: Internet Key Exchange Protocol Version 2 (IKEv2) Support for Per-Resource Child Security Associations (SAs) |
draft-kampanakis-ml-kem-ikev2: Post-quantum Hybrid Key Exchange with ML-KEM in IKEv2 |
|
draft-brunner-ikev2-mediation: IKEv2 Mediation Extension |
|
x |
draft-laganier-ike-ipv6-cga: Using IKE with IPv6 Cryptographically Generated Addresses |
IPsec
Core Standards
S[1] | RFC, Internet Draft |
---|---|
RFC 4301: Security Architecture for the Internet Protocol |
|
RFC 4302: IP Authentication Header (AH) |
|
RFC 4303: IP Encapsulating Security Payload (ESP) |
|
RFC 4308: Cryptographic Suites for IPsec |
|
RFC 8221: Cryptographic Algorithm Implementation Requirements and Usage Guidance for ESP and AH |
Extensions
S[1] | RFC, Internet Draft |
---|---|
RFC 2410: The NULL Encryption Algorithm and Its Use With IPsec |
|
RFC 2451: The ESP CBC-Mode Cipher Algorithms |
|
RFC 3602: The AES-CBC Cipher Algorithm and Its Use with IPsec |
|
RFC 3948: UDP Encapsulation of IPsec ESP Packets |
|
RFC 3686: Using Advanced Encryption Standard (AES) Counter Mode With IPsec ESP |
|
RFC 4106: The Use of Galois/Counter Mode (GCM) in IPsec ESP |
|
RFC 4304: Extended Sequence Number (ESN) Addendum to IPsec DOI for ISAKMP |
|
RFC 4309: Using Advanced Encryption Standard (AES) CCM Mode with IPsec ESP |
|
x |
RFC 4494: The AES-CMAC-96 Algorithm and Its Use with IPsec |
RFC 4543: The Use of Galois Message Authentication Code (GMAC) in IPsec ESP and AH |
|
RFC 4868: Using HMAC-SHA-256, HMAC-SHA-384, and HMAC-SHA-512 with IPsec |
|
RFC 5114: Additional Diffie-Hellman Groups for Use with IETF Standards |
|
RFC 5529: Modes of Operation for Camellia for Use with IPsec |
|
x |
RFC 5660: IPsec Channels: Connection Latching |
x |
RFC 5840: Wrapped Encapsulating Security Payload (ESP) for Traffic Visibility |
RFC 5879: Heuristics for Detecting ESP-NULL Packets |
|
RFC 6379: Suite B Cryptographic Suites for IPsec |
|
RFC 6380: Suite B Profile for Internet Protocol Security (IPsec) |
|
RFC 6479: IPsec Anti-Replay Algorithm without Bit Shifting |
|
x |
RFC 7018: Auto-Discovery VPN Problem Statement and Requirements |
x |
RFC 8750: Implicit Initialization Vector (IV) for Counter-Based Ciphers in ESP |
x |
RFC 9329: TCP Encapsulation of IKE and IPsec Packets |
RFC 9333: Minimal IP Encapsulating Security Payload (ESP) |
|
x |
RFC 9347: Aggregation and Fragmentation Mode for ESP and Its Use for IP Traffic Flow Security (IP-TFS) |
Multicast IPsec
S[1] | RFC, Internet Draft |
---|---|
x |
RFC 4046: Multicast Security (MSEC) Group Key Management Architecture |
x |
RFC 4535: GSAKMP: Group Secure Association Key Management Protocol |
x |
RFC 5374: Multicast Extensions to the Security Architecture for the Internet Protocol |
x |
RFC 6054: Using Counter Modes with ESP and AH to Protect Group Traffic |
x |
RFC 6407: The Group Domain of Interpretation (GDOI) |
x |
draft-ietf-msec-gkdp: GKDP: Group Key Distribution Protocol |
PKI
S[1] | RFC, Internet Draft |
---|---|
RFC 3779: X.509 Extensions for IP Addresses and AS Identifiers |
|
RFC 4514: LDAP: String Representation of Distinguished Names |
|
RFC 4518: LDAP Internationalized String Preparation |
|
RFC 4809: Requirements for an IPsec Certificate Management Profile |
|
RFC 4945: The Internet IP Security PKI Profile of IKEv1/ISAKMP, IKEv2, and PKIX |
|
RFC 5280: Internet X.509 Public Key Infrastructure - Certificate and CRL Profile |
|
RFC 5755: An Internet Attribute Certificate Profile for Authorization |
|
RFC 5759: Suite B Certificate and CRL Profile |
|
RFC 6818: Updates to the Internet X.509 PKI Certificate and CRL Profile |
|
RFC 6960: X.509 Internet PKI Online Certificate Status Protocol - OCSP |
|
RFC 7030: Enrollment over Secure Transport (EST) |
|
RFC 7468: Textual Encodings of PKIX, PKCS, and CMS Structures |
|
RFC 8032: Edwards-Curve Digital Signature Algorithm (EdDSA) |
|
RFC 8410: Algorithm Identifiers for EdDSA, Ed25519, Ed448, Curve25519 and Curve448 for X.509 |
|
RFC 8894: Simple Certificate Enrollment Protocol (SCEP) |
|
RFC 8954: Online Certificate Status Protocol (OCSP) Nonce Extension |
EAP
S[1] | RFC, Internet Draft |
---|---|
RFC 3748: Extensible Authentication Protocol (EAP) |
|
RFC 4186: EAP Method for GSM Subscriber Identity Modules (EAP-SIM) |
|
RFC 4187: EAP Method for 3rd Generation Authentication and Key Agreement (EAP-AKA) |
|
RFC 5216: The EAP-TLS Authentication Protocol |
|
RFC 5281: The EAP-TTLS Authentication Protocol Version 0 |
|
x |
RFC 5448: Improved EAP Method for 3rd Generation Authentication and Key Agreement (EAP-AKA') |
x |
RFC 7170: Tunnel EAP Method (TEAP) Version 1 |
RFC 7171: PT-EAP: Posture Transport Protocol For EAP Tunnel Methods |
|
RFC 9190: EAP-TLS 1.3: Using the Extensible Authentication Protocol with TLS 1.3 |
|
IANA EAP: EAP Method Types |
|
IANA EAP-AKA/SIM: EAP-AKA and EAP-SIM Parameters |
NEA
S[1] | RFC, Internet Draft |
---|---|
RFC 5209: Network Endpoint Assessment (NEA): Overview and Requirements |
|
RFC 5792: PA-TNC: A Posture Attribute (PA) Protocol Compatible with TNC |
|
RFC 5793: PB-TNC: A Posture Broker (PB) Protocol Compatible with TNC |
|
RFC 6876: PT-TLS: Posture Transport Protocol over TLS |
|
RFC 7171: PT-EAP: Posture Transport Protocol For EAP Tunnel Methods |
|
RFC 8412: Software Inventory Message and Attributes (SWIMA) for PA-TNC |