{"draft":"draft-ietf-btns-core-07","doc_id":"RFC5386","title":"Better-Than-Nothing Security: An Unauthenticated Mode of IPsec","authors":["N. Williams","M. Richardson"],"format":["ASCII","HTML"],"page_count":"11","pub_status":"PROPOSED STANDARD","status":"PROPOSED STANDARD","source":"Better-Than-Nothing Security","abstract":"This document specifies how to use the Internet Key Exchange (IKE)\r\nprotocols, such as IKEv1 and IKEv2, to setup \"unauthenticated\"\r\nsecurity associations (SAs) for use with the IPsec Encapsulating\r\nSecurity Payload (ESP) and the IPsec Authentication Header (AH).  No\r\nchanges to IKEv2 bits-on-the-wire are required, but Peer\r\nAuthorization Database (PAD) and Security Policy Database (SPD)\r\nextensions are specified.  Unauthenticated IPsec is herein referred\r\nto by its popular acronym, \"BTNS\" (Better-Than-Nothing Security).  \r\n[STANDARDS-TRACK]","pub_date":"November 2008","keywords":["[--------]","internet protocol security","ikev1","ikev2","sas","esp","ah","pad","spd","btns","unauthenticated ipsec"],"obsoletes":[],"obsoleted_by":[],"updates":[],"updated_by":[],"see_also":[],"doi":"10.17487\/RFC5386","errata_url":"https:\/\/www.rfc-editor.org\/errata\/rfc5386"}