linux-ipsec: IPSEC RFC's

From: Sandy Harris <sandy.harris(at)sympatico.ca>
Date: Tue Dec 08 1998 - 17:18:55 EST

Methinks the current distribution's directory ietf-drafts is out of date & should be relaced with a directory internet-docs containing mainly RFCs, plus perhaps some drafts if there are some that haven't yet reached RFC status & are important.

Below is the Readme file I'd put in the internet-docs directory. What have I missed? Is anything listed that is redundant, irrelevant, out of date, . . . ?

This directory contains the RFCs for IPSEC. All filenames are of the form rfc*.txt, with the * replaced with the RFC number.

RFC# Title

Overview:

2401	Security Architecture for the Internet Protocol
2411	IP Security Document Roadmap

Basic protocols:

2402	IP Authentication Header
2406	IP Encapsulating Security Payload (ESP)

Key management:

2367	PF_KEY Key Management API, Version 2
2407	The Internet IP Security Domain of Interpretation for ISAKMP
2408	Internet Security Association and Key Management Protocol (ISAKMP)
2409	The Internet Key Exchange (IKE)
2412	The OAKLEY Key Determination Protocol

Details of various things used:

1321	The MD5 Message-Digest Algorithm
1828	IP Authentication using Keyed MD5
1829	The ESP DES-CBC Transform
1851	The ESP Triple DES Transform
1852	IP Authentication using Keyed SHA
2085	HMAC-MD5 IP Authentication with Replay Prevention
2104	HMAC: Keyed-Hashing for Message Authentication
2207	RSVP Extensions for IPSEC Data Flows
2403	The Use of HMAC-MD5-96 within ESP and AH
2404	The Use of HMAC-SHA-1-96 within ESP and AH
2405	The ESP DES-CBC Cipher Algorithm With Explicit IV
2410	The NULL Encryption Algorithm and Its Use With IPsec
2451	The ESP CBC-Mode Cipher Algorithms

The subdirectrory internet-docs/related has RFCs for other security-related things:

1750	Randomness Recommendations for Security
1991	PGP Message Exchange Formats
2015	MIME Security with Pretty Good Privacy (PGP)
2078	Generic Security Service Application Program Interface, Version 2
2083	RIP-2 MD5 Authentication
2144	The CAST-128 Encryption Algorithm
2311	S/MIME Version 2 Message Specification
2312	S/MIME Version 2 Certificate Handling
2314	PKCS #10: Certification Request Syntax Version 1.5
2315	PKCS #7: Cryptographic Message Syntax Version 1.5
2316	Report of the IAB Security Architecture Workshop
2437	PKCS #1: RSA Cryptography Specifications Version 2.0
2440	OpenPGP Message Format

--
Sandy Harris                                        sandy.harris@sympatico.ca
                 Fight cryptography controls

"The real aim of current policy is to ensure the continued effectiveness of US  information warfare assets against individuals, businesses and governments in  Europe and elsewhere" -- Ross Anderson, Cambridge University Received on Tue Dec 8 17:45:33 1998