HTT Consulting

Oak Park MI 48237 USA rgm@labs.htt-consult.com

kivinen@iki.fi

Internet IPSECME RFC Request for Comments I-D Internet-Draft IPSECKEY EdDSA This document assigns a value for EdDSA Public Keys to the IPSECKEY IANA registry.

Introduction The IPSECKEY IANA Registry specifically enumerates the various Algorithm Types used. This document adds support for the EdDSA algorithm's Public Keys in IPSECKEY. The IPSECKEY RR defines the 'Algorithm Type' for specifying the PK Algorithm. Herein we are adding the EdDSA algorithm.

Terms and Definitions

Requirements Terminology The key words "MUST", "MUST NOT", "REQUIRED", "SHALL", "SHALL NOT", "SHOULD", "SHOULD NOT", "RECOMMENDED", "NOT RECOMMENDED", "MAY", and "OPTIONAL" in this document are to be interpreted as described in BCP 14 when, and only when, they appear in all capitals, as shown here.

IPSECKEY support for EdDSA The new EdDSA value uses for the IPSECKEY encoding:

IANA Considerations

IANA IPSECKEY Registry Update This document requests IANA to make the following change to the "IPSECKEY Resource Record Parameters" registry:

IPSECKEY:

This document defines the new IPSECKEY value TBD2 (suggested: 4) () in the "Algorithm Type Field" subregistry of the "IPSECKEY Resource Record Parameters" registry.

Security Considerations TBD

References IANA

IPSECKEY EdDSA example The following is an example of an IPSECKEY RR with an EdDSA public key base64 encode with no gateway: The associated EdDSA private key (in hex):

Acknowledgments Thanks to Security Area director, Paul Wouters, for initial review.