%% You should probably cite draft-touch-tcp-ao-encrypt-09 instead of this revision. @techreport{touch-tcp-ao-encrypt-07, number = {draft-touch-tcp-ao-encrypt-07}, type = {Internet-Draft}, institution = {Internet Engineering Task Force}, publisher = {Internet Engineering Task Force}, note = {Work in Progress}, url = {https://datatracker.ietf.org/doc/draft-touch-tcp-ao-encrypt/07/}, author = {Dr. Joseph D. Touch}, title = {{A TCP Authentication Option Extension for Payload Encryption}}, pagetotal = 9, year = 2017, month = apr, day = 17, abstract = {This document describes an extension to the TCP Authentication Option (TCP-AO) to encrypt the TCP segment payload in addition to providing TCP-AO's authentication of the payload, TCP header, and IP pseudoheader. This extension augments how the packet contents and headers are processed and which keys are derived, and adds a capability for in-band coordination of unauthenticated Diffie- Hellman key exchange at connection establishment. The extension preserves key rollover coordination and protection of long-lived connections.}, }