IETF Logo Mail Archive

Re: [Ace] Secdir last call review of draft-ietf-ace-wg-coap-eap-09

Dan Garcia Carrillo <garciadan@uniovi.es> Thu, 25 January 2024 10:46 UTC

Return-Path: <garciadan@uniovi.es>
X-Original-To: ace@ietfa.amsl.com
Delivered-To: ace@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 10F50C14F6FA; Thu, 25 Jan 2024 02:46:11 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.909
X-Spam-Level:
X-Spam-Status: No, score=-1.909 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_BLOCKED=0.001, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=unioviedo.onmicrosoft.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id hfaJvgYbBqcC; Thu, 25 Jan 2024 02:46:09 -0800 (PST)
Received: from EUR05-VI1-obe.outbound.protection.outlook.com (mail-vi1eur05on2076.outbound.protection.outlook.com [40.107.21.76]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A7170C151556; Thu, 25 Jan 2024 02:46:03 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=nozAyRUwDtrl6YI+uTdZ/ujocsnG1ALLxjKiqV1k8eCls6olRjMhl6yOlDg9IOf77uT5yPhQgHV9SK42ZKFGpPLuuj7boWHu1iDaPPRQccRiXRXGBtyg8ehfT+8ei7pure67OtjR5/SXv3SsTyrD0nwThucvpAlCAopQ3OyJuVdrmoG7WGazJOY6IGQAVGJZaFKB5VC2g3rmT/FyLqG0Balds1zHJJIEhgekFoY6Mld2cYWNr9KbyT56TvEcRI23VjTirae7Cd6OkFGCWpP7RZA6u37xhTkDqi+8L0W9ziWNo4Uz8/CkFeNYlfjIb4dGQFu5bxvV/8IIGRrHpUgN2A==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=Jhnf0ZgEtrO6iEQvJEqwLlg7R4PTOoHOpAUk3O96jQ0=; b=U/amWfJnbc7QDBfDAqlh9W1zFdoocGwQuFL9zOweVyn3y1ZdYsjPhkGKRoIjSRFdeJseCrN6StYHKhgOuZpXN5MXLtH2JzRQp0c9ITaphngr4qXVSbpcaRfyzEO5CNXwU/mNk4l0qz4GRtPZwl8r8I+PTjMdaIGIB38VEOmQ8grOmw39a7pL6Z7O0Rn6FBjLkItDH23FYRT+AOIxdCoxBPnXtkElMSznvDS/1HX5EXN6NuJ2yUi5TCyjkOOJr9iPq4mdSMiDdoErMQGyKGI70MvgFAkYs1lzVgpYQJgN4XYgTOYSne50ac+odYKAA2OVvAjF3QxkunX3JbaHrdggVQ==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=uniovi.es; dmarc=pass action=none header.from=uniovi.es; dkim=pass header.d=uniovi.es; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=unioviedo.onmicrosoft.com; s=selector2-unioviedo-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=Jhnf0ZgEtrO6iEQvJEqwLlg7R4PTOoHOpAUk3O96jQ0=; b=JOuqoE9jzHbRKZrmhE7BaFOIgcWn/sBAOHisFQ2zHAGfLf9voejbwPBmpXR55JBw+sDdi6ZUPju8N8QbpBcrOOovwgRiiQMI0769zh/whSXH4ASV7bVd8D9KqzkUaduMslYxlXEXxbFLmR2Prer8+LWuotwGZF2qtjFY270z8x0=
Authentication-Results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=uniovi.es;
Received: from AS4PR08MB8093.eurprd08.prod.outlook.com (2603:10a6:20b:588::18) by AM9PR08MB5939.eurprd08.prod.outlook.com (2603:10a6:20b:2d9::5) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.7228.26; Thu, 25 Jan 2024 10:46:00 +0000
Received: from AS4PR08MB8093.eurprd08.prod.outlook.com ([fe80::6790:fd23:1f81:c189]) by AS4PR08MB8093.eurprd08.prod.outlook.com ([fe80::6790:fd23:1f81:c189%6]) with mapi id 15.20.7228.026; Thu, 25 Jan 2024 10:46:00 +0000
Content-Type: multipart/alternative; boundary="------------CQ0n0IcGMl21mhwWxPWPDGUP"
Message-ID: <44875647-3537-430e-8e07-001ed61e7540@uniovi.es>
Date: Thu, 25 Jan 2024 11:45:58 +0100
User-Agent: Mozilla Thunderbird
Reply-To: garciadan@uniovi.es
Cc: garciadan@uniovi.es, ace@ietf.org, draft-ietf-ace-wg-coap-eap.all@ietf.org, last-call@ietf.org
Content-Language: en-GB
To: Deb Cooley <debcooley1@gmail.com>, secdir@ietf.org
References: <170601163753.46347.3725201997179804291@ietfa.amsl.com>
From: Dan Garcia Carrillo <garciadan@uniovi.es>
Organization: Universidad de Oviedo
In-Reply-To: <170601163753.46347.3725201997179804291@ietfa.amsl.com>
X-ClientProxiedBy: PR1P264CA0190.FRAP264.PROD.OUTLOOK.COM (2603:10a6:102:34d::19) To AS4PR08MB8093.eurprd08.prod.outlook.com (2603:10a6:20b:588::18)
MIME-Version: 1.0
X-MS-PublicTrafficType: Email
X-MS-TrafficTypeDiagnostic: AS4PR08MB8093:EE_|AM9PR08MB5939:EE_
X-MS-Office365-Filtering-Correlation-Id: d120eb0c-4a3c-4156-b3ad-08dc1d92d1cc
X-MS-Exchange-SenderADCheck: 1
X-MS-Exchange-AntiSpam-Relay: 0
X-Microsoft-Antispam: BCL:0;
X-Microsoft-Antispam-Message-Info: 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
X-Forefront-Antispam-Report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:AS4PR08MB8093.eurprd08.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230031)(136003)(366004)(39860400002)(376002)(346002)(396003)(230922051799003)(64100799003)(186009)(1800799012)(451199024)(38100700002)(2906002)(3450700001)(36756003)(31696002)(41300700001)(86362001)(33964004)(786003)(316002)(66476007)(66556008)(36916002)(6506007)(2616005)(8936002)(478600001)(6512007)(66946007)(83380400001)(5660300002)(8676002)(26005)(4326008)(6486002)(31686004)(43740500002)(45980500001); DIR:OUT; SFP:1101;
X-MS-Exchange-AntiSpam-MessageData-ChunkCount: 1
X-MS-Exchange-AntiSpam-MessageData-0: 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
X-OriginatorOrg: uniovi.es
X-MS-Exchange-CrossTenant-Network-Message-Id: d120eb0c-4a3c-4156-b3ad-08dc1d92d1cc
X-MS-Exchange-CrossTenant-AuthSource: AS4PR08MB8093.eurprd08.prod.outlook.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 25 Jan 2024 10:46:00.3131 (UTC)
X-MS-Exchange-CrossTenant-FromEntityHeader: Hosted
X-MS-Exchange-CrossTenant-Id: 05ea74a3-92c5-4c31-978a-925c3c799cd0
X-MS-Exchange-CrossTenant-MailboxType: HOSTED
X-MS-Exchange-CrossTenant-UserPrincipalName: GVB0XyTgQ4FLoMdBbKHILaCp/4XpN/5OxLjL6bt9VZsuFH+F7RVB3611g0h749KjCgVyUwMuOOnV4LaUgg1KWw==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: AM9PR08MB5939
X-MS-Exchange-CrossPremises-AuthSource: AS4PR08MB8093.eurprd08.prod.outlook.com
X-MS-Exchange-CrossPremises-AuthAs: Internal
X-MS-Exchange-CrossPremises-AuthMechanism: 14
X-MS-Exchange-CrossPremises-Mapi-Admin-Submission:
X-MS-Exchange-CrossPremises-MessageSource: StoreDriver
X-MS-Exchange-CrossPremises-BCC:
X-MS-Exchange-CrossPremises-OriginalClientIPAddress: 156.35.171.42
X-MS-Exchange-CrossPremises-TransportTrafficType: Email
X-MS-Exchange-CrossPremises-Antispam-ScanContext: DIR:Originating; SFV:NSPM; SKIP:0;
X-MS-Exchange-CrossPremises-SCL: 1
X-MS-Exchange-CrossPremises-Processed-By-Journaling: Journal Agent
X-OrganizationHeadersPreserved: AM9PR08MB5939.eurprd08.prod.outlook.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/ace/FfVDfZUUvorFbDh01PhWMhGQUKI>
Subject: Re: [Ace] Secdir last call review of draft-ietf-ace-wg-coap-eap-09
X-BeenThere: ace@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" <ace.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ace>, <mailto:ace-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ace/>
List-Post: <mailto:ace@ietf.org>
List-Help: <mailto:ace-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ace>, <mailto:ace-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 25 Jan 2024 10:46:11 -0000

Dear Deb,

Thank you for the update on the review.

Please let us comment inline.

El 23/1/24 a las 13:07, Deb Cooley via Datatracker escribió:
> Reviewer: Deb Cooley
> Review result: Has Nits
>
> I have reviewed this document as part of the security directorate's
> ongoing effort to review all IETF documents being processed by the
> IESG.  These comments were written primarily for the benefit of the
> security area directors.  Document editors and WG chairs should treat
> these comments just like any other last call comments.
>
> Document: draft-ietf-ace-wg-coap-eap-09
> Reviewer: Deb Cooley
> Review Date: 2024-01-23
>
> The summary of the review is 'Has Nits'.
>
> 0.  All of my early review comments have been addressed.  TY
Great, thank you.
> 1.  Section 5.1, last paragraph:  The MSK can be assumed to be 'fresh key
> material', but do all EAP methods yield 'strong cryptographic key' by Section
> 3.3 of RFC 5869?  If some EAP methods do not yield strong keys, then either the
> KDF Extract should be used, or those methods should not be allowed.  (I did not
> look this up, so telling me that you all checked is a fine answer)

This is a very good point.

In this sense, we limit the applicability of EAP methods to the ones 
compliant with the mandatory requirements of RFC4017. We will add  this 
clarification to the text.

Regarding the use of Extract, as it says in RFC5869, if we understand 
that the MSK is cryptographically strong by the requirements of RFC4017, 
we can directly use expand.

  

RFC5869

In some applications, the input key material IKM may already be

present as a cryptographically strong key (for example, the premaster

secret in TLS RSA cipher suites would be a pseudorandom string,

except for the first two octets).In this case, one can skip the

extract part and use IKM directly to key HMAC in the expand step.


That said, we do not see any inconvenient, far from it, that in addition 
to the requisites of RFC4017 for EAP methods to be used, to use extract 
as well for the case of CoAP-EAP to create a specific key.

Do you think this is an adequate approximation, o could we leave it as 
it currently is with these clarifications?

Using extract would change the design a bit, and we would have to define 
the new process, selecting the salt (e.g., a transcript hash of the 
exchange up to that point to generate a PRK). We understand that this 
would delay the process further and maybe we will be doing something 
unnecessary.

What do you think?


> 2.  Section 5.2:  It would be useful to have an actual example of the info part
> of the KDF. How is CS constructed - spaces, commas? Are there spaces between CS
> and the string?
>
We will add an example of this.

Thank you.

Best regards.

v2.23.0 | Report a Bug | By Email