RFC 2412 (rfc2412) - Page 1 of 55
The OAKLEY Key Determination Protocol
Alternative Format: Original Text Document
Network Working Group H. Orman
Request for Comments: 2412 Department of Computer Science
Category: Informational University of Arizona
November 1998
The OAKLEY Key Determination Protocol
Status of this Memo
This memo provides information for the Internet community. It does
not specify an Internet standard of any kind. Distribution of this
memo is unlimited.
Copyright Notice
Copyright (C) The Internet Society (1998). All Rights Reserved.
Abstract
This document describes a protocol, named OAKLEY, by which two
authenticated parties can agree on secure and secret keying material.
The basic mechanism is the Diffie-Hellman key exchange algorithm.
The OAKLEY protocol supports Perfect Forward Secrecy, compatibility
with the ISAKMP protocol for managing security associations, user-
defined abstract group structures for use with the Diffie-Hellman
algorithm, key updates, and incorporation of keys distributed via
out-of-band mechanisms.
1. INTRODUCTION
Key establishment is the heart of data protection that relies on
cryptography, and it is an essential component of the packet
protection mechanisms described in [RFC 2401], for example. A
scalable and secure key distribution mechanism for the Internet is a
necessity. The goal of this protocol is to provide that mechanism,
coupled with a great deal of cryptographic strength.
The Diffie-Hellman key exchange algorithm provides such a mechanism.
It allows two parties to agree on a shared value without requiring
encryption. The shared value is immediately available for use in
encrypting subsequent conversation, e.g. data transmission and/or
authentication. The STS protocol [STS] provides a demonstration of
how to embed the algorithm in a secure protocol, one that ensures
that in addition to securely sharing a secret, the two parties can be
sure of each other's identities, even when an active attacker exists.
Orman Informational
