Skip to content

Commit cb89af1

Browse files
antonyantonyantonyantony
committed
eesp-ikev2.org clean up eesp version.
1 parent 5664a5e commit cb89af1

File tree

1 file changed

+7
-52
lines changed

1 file changed

+7
-52
lines changed

eesp-ikev2.org

Lines changed: 7 additions & 52 deletions
Original file line numberDiff line numberDiff line change
@@ -161,26 +161,21 @@ the original EESP SA.
161161

162162
| Type | Description | Used In | Reference |
163163
|------+---------------------------+---------+-----------------+
164-
| TBD4 | EESP Version(EESPV) | (EESP) | [this document] |
165-
| TBD5 | EESP Sub SA(EESPSUBSA) | (EESP) | [this document] |
166164
| TBD6 | EESP Session ID(EESPSID) | (EESP) | [this document] |
167165

168166
#+caption: EESP SA proposal
169167
#+name: eesp-sa-proposal
170168
#+begin_src
171169
SA Payload
172170
|
173-
+--- Proposal #1 ( Proto ID = EESPv1(TBD1), SPI size = 4,
171+
+--- Proposal #1 ( Proto ID = EESPv0(TBD1), SPI size = 4,
174172
| | 8 transforms, SPI = 0x052357bb )
175173
| |
176174
| +-- Transform ENCR ( Name = ENCR_AES_CBC )
177175
| | +-- Attribute ( Key Length = 128 )
178176
| +-- Transform INTEG ( Name = AUTH_HMAC_SHA1_96 )
179177
| +-- Transform INTEG ( Name = AUTH_AES_XCBC_96 )
180178
| +-- Transform SN ( Name = 64-bit Sequential Numbers )
181-
| +-- Transform EESPSUBSA ( Name = )
182-
| +-- Transform EESPSSID ( Name = )
183-
| +-- Transform EESPFID ( Name = )
184179
#+end_src
185180

186181
** Replay Protection Service
@@ -225,9 +220,11 @@ does not include 64-bit Sequential Numbers return error
225220
NO_PROPOSAL_CHOSEN.
226221

227222
** EESP Version
228-
Each SA need an EESP Base Header version which is specified
229-
[[I-D.klassert-ipsecme-eesp]]. An Initiator may propose multipe
230-
EESPV and the responder MUST choose one proposal.
223+
Each EESP packets carry EESP Base Header version, which is specified
224+
[[I-D.klassert-ipsecme-eesp]]. This SHOULD BE negotiated using
225+
IKEv2. Each Base Header version, to be able to negotiate via IKEv2,
226+
SHOULD have a corresponding ~IKEv2 Security Protocol Identifiers~
227+
The initial version sepecified EESPv0(TBD1)
231228

232229
* Sub SA
233230
Existing mechanisms for establishing Child SAs, as described in
@@ -459,19 +456,7 @@ This document defines new Protocol ID in the
459456

460457
| Protocol ID | Protocol | Reference |
461458
|-------------+----------+-----------------+
462-
| [TBD1] | EESPv1 | [this document] 0
463-
464-
465-
*** IKEv2 Transform Type Values registry
466-
467-
This document defines new transforms in
468-
"IKEv2 Transform Type Values" registry, [[IKEv2-Transforms]]
469-
470-
| Type | Description | Used In | Reference |
471-
|------+---------------------------+---------+-----------------+
472-
| TBD4 | EESP Version(EESPV) | (EESP) | [this document] |
473-
| TBD5 | EESP Sub SA(EESPSUBSA) | (EESP) | [this document] |
474-
| TBD6 | EESP Session ID(EESPSID) | (EESP) | [this document] |
459+
| [TBD1] | EESPv0 | [this document] |
475460

476461
*** IKEv2 Notify Message Status Types registry.
477462

@@ -487,16 +472,6 @@ replace 'IKE and ESP' with 'IKE, ESP, and EESP'
487472

488473
Changes the "Used In" column for the existing allocations as follows;
489474

490-
*** Notify Message Error Types
491-
This document defines new Notify Message types in the
492-
"IKEv2 Notify Message Error Types" registry:
493-
494-
| Value | Notify Message Error Type | Reference |
495-
|-------------+----------------------+-----------------+
496-
| [TBD2] | INVALID_SESSION_ID | [this document] |
497-
| [TBD3] | INVALID_SUB_SA | [this document] |
498-
499-
500475
*** Sequence Number
501476

502477
This document defines a new value in the IKEv2 "Transform Type 5 - Sequence
@@ -507,26 +482,6 @@ This document defines a new value in the IKEv2 "Transform Type 5 - Sequence
507482
| [TBD9] | 64-bit Sequential Numbers | [this document] |
508483
| [TBD10] | None | [this document] |
509484

510-
** New Registries
511-
512-
A new set of registries is created for EESP-IKEv2 on IKEv2 parameters
513-
page [[IKEv2-IANA]]. The terms Reserved, Expert Review and Private
514-
Use are to be applied as defined in [[RFC8126]]
515-
516-
*** EESP Session ID registry
517-
518-
IANA is requested to create a new registry named
519-
'EESP Session ID Transform' in the 'Internet Key Exchange Version 2
520-
(IKEv2) Parameters', [[IKEv2-IANA]] page.
521-
522-
- Name: EESP Session ID Transform Registry
523-
- Description: EESP Base Header Session ID
524-
- Reference: This document
525-
526-
| Session ID | Name | Reference |
527-
|------------+------------- +-----------------+
528-
| 0 | Unspecified | [this document] |
529-
| 2 | SUB_SA_ID | [this document] |
530485

531486
* Implementation Status
532487

0 commit comments

Comments
 (0)