UNLIMITED FREE
ACCESS TO THE WORLD'S BEST IDEAS

SUBMIT
Already a GlobalSpec user? Log in.

This is embarrasing...

An error occurred while processing the form. Please try again in a few minutes.

Customize Your GlobalSpec Experience

Select Your Free Newsletters

Industry Newsletters

Select Your Free Product Alerts

Finish!
Privacy Policy

This is embarrasing...

An error occurred while processing the form. Please try again in a few minutes.

IETF RFC 8221

Cryptographic Algorithm Implementation Requirements and Usage Guidance for Encapsulating Security Payload (ESP) and Authentication Header (AH)

active, Most Current
Buy Now
Organization: IETF
Publication Date: 1 October 2017
Status: active
Page Count: 15
scope:

This document replaces RFC 7321, "Cryptographic Algorithm Implementation Requirements and Usage Guidance for Encapsulating Security Payload (ESP) and Authentication Header (AH)". The goal of this document is to enable ESP and AH to benefit from cryptography that is up to date while making IPsec interoperable.

Document History

IETF RFC 8221
October 1, 2017
Cryptographic Algorithm Implementation Requirements and Usage Guidance for Encapsulating Security Payload (ESP) and Authentication Header (AH)
This document replaces RFC 7321, "Cryptographic Algorithm Implementation Requirements and Usage Guidance for Encapsulating Security Payload (ESP) and Authentication Header (AH)". The goal of this...

References

This document references:
BS PD 0010 - The principles of good practice for information management
Published by BSI on November 1, 1996
This invaluable publication offers a practical framework to guide organizations through the operation and development of new methods and technologies for managing information.
This document references:
IETF RFC 2403 - The Use of HMAC-MD5-96 within ESP and AH
Published by IETF on November 1, 1998
This memo describes the use of the HMAC algorithm [RFC-2104] in conjunction with the MD5 algorithm [RFC-1321] as an authentication mechanism within the revised IPSEC Encapsulating Security Payload...
This document references:
IETF RFC 2404 - The Use of HMAC-SHA-1-96 within ESP and AH
Published by IETF on November 1, 1998
This memo describes the use of the HMAC algorithm [RFC-2104] in conjunction with the SHA-1 algorithm [FIPS-180-1] as an authentication mechanism within the revised IPSEC Encapsulating Security...
This document references:
IETF RFC 2405 - The ESP DES-CBC Cipher Algorithm With Explicit IV
Published by IETF on November 1, 1998
This document describes the use of the DES Cipher algorithm in Cipher Block Chaining Mode, with an explicit IV, as a confidentiality mechanism within the context of the IPSec Encapsulating Security...
This document references:
IETF RFC 2410 - The NULL Encryption Algorithm and Its Use With IPsec
Published by IETF on November 1, 1998
This memo defines the NULL encryption algorithm and its use with the IPsec Encapsulating Security Payload (ESP). NULL does nothing to alter plaintext data. In fact, NULL, by itself, does nothing....
This document is referenced by:
IETF RFC 8750 - Implicit Initialization Vector (IV) for Counter-Based Ciphers in Encapsulating Security Payload (ESP)
Published by IETF on March 1, 2020
Abstract Encapsulating Security Payload (ESP) sends an initialization vector (IV) in each packet. The size of the IV depends on the applied transform and is usually 8 or 16 octets for the transforms...
This document is referenced by:
TS 133 210 - Digital cellular telecommunications system (Phase 2+) (GSM); Universal Mobile Telecommunications System (UMTS); LTE; 5G; Network Domain Security (NDS); IP network layer security
Published by ETSI on September 1, 2022
The present document defines the security architecture for network domain IP based control planes, which shall be applied to NDS/IP-networks (i.e. 3GPP and fixed broadband networks). The scope of...
This document is referenced by:
RFC 8994 - An Autonomic Control Plane (ACP)
Published by IETF on May 1, 2021
Applicability and Scope Please see the following Terminology section (Section 2) for explanations of terms used in this section. The design of the ACP as defined in this document is considered to be...
This document is referenced by:
RFC 9061 - A YANG Data Model for IPsec Flow Protection Based on Software‑Defined Networking (SDN)
Published by IETF on July 1, 2021
Abstract This document describes how to provide IPsec-based flow protection (integrity and confidentiality) by means of an Interface to Network Security Function (I2NSF) Controller. It considers two...
This document is referenced by:
0700037 - Wireless Emergency Alert (WEA) 3.0 Federal Alert Gateway to CMSP Gateway Interface Specification
Published by ATIS on March 1, 2022
The scope of this Standard is the definition of the interface between the Federal Alert Gateway and the Commercial Mobile Service Provider (CMSP) Gateway for WEA alerts. Any processing in either the...
View Less
View All
Advertisement