Group Domain of Interpretation for ISAKMP

Document Type Replaced Internet-Draft (individual)
Authors Mark Baugher  , Thomas Hardjono  , Hugh Harney  , Brian Weis 
Last updated 2010-04-08 (latest revision 2001-01-08)
Replaced by RFC 3547
Stream Internet Research Task Force (IRTF)
Intended RFC status (None)
Expired & archived
pdf htmlized bibtex
Stream IRTF state (None)
Consensus Boilerplate Unknown
Document shepherd No shepherd assigned
IESG IESG state Replaced by draft-ietf-msec-gdoi
Telechat date
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft can be found at


This document presents an ISAKMP Domain of Interpretation (DOI) for secure group communications. The 'GDOI,' or 'Group ISAKMP,' borrows definitions from GSAKMP [HH], incorporates the Phase 1 SA of the Internet DOI [RFC2407, RFC2409], and proposes new payloads and exchanges according to the ISAKMP standard [RFC2408, p.14]. Group ISAKMP manages group security associations, which are used by security protocols running at the IP [RFC2406] or application layers [AMESP]. These security associations protect one or more key-encrypting keys, traffic-encrypting keys, or data shared by group members. Comments on this document should be addressed to


Mark Baugher (
Thomas Hardjono (
Hugh Harney (
Brian Weis (

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)