This paper concerns the Minimal Internet Key Exchange (IKE) protocol, which has received little attention to date, despite its potential to make the best-known IKE protocol sufficiently lightweight to be also applied in contexts where it is currently prohibitive, due to its large footprint. First, we introduce and describe Colibri, an efficient, open-source implementation of the Minimal IKE protocol, which allows us to quantitatively assess its real advantages in terms of lightness. Then we introduce a post-quantum variant of the Minimal IKE protocol, which is essential to make it contemporary, and assess it through Colibri. We demonstrate that the protocol performance remains excellent even in such a more challenging context, making it suitable for deploying pervasive and quantum-resistant virtual private networks.

翻译：本文关注最小化互联网密钥交换（IKE）协议，该协议迄今鲜受关注，尽管其有潜力使最著名的IKE协议变得足够轻量，从而也能应用于当前因其较大开销而难以适用的场景。首先，我们介绍并描述了Colibri——一个高效、开源的最小化IKE协议实现，这使我们能够定量评估其在轻量性方面的实际优势。接着，我们提出了最小化IKE协议的后量子变体，这对于使其与时俱进至关重要，并通过Colibri对其进行了评估。我们证明，即使在这种更具挑战性的背景下，协议性能依然优异，使其适合部署普及且抗量子攻击的虚拟专用网络。