IETF Logo Mail Archive

[babel] (no subject)

Juliusz Chroboczek <jch@irif.fr> Tue, 15 January 2019 22:02 UTC

Return-Path: <jch@irif.fr>
X-Original-To: babel@ietfa.amsl.com
Delivered-To: babel@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 5B87F130F13 for <babel@ietfa.amsl.com>; Tue, 15 Jan 2019 14:02:31 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.102
X-Spam-Level:
X-Spam-Status: No, score=-0.102 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, MISSING_SUBJECT=1.799, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=no autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id XAouMdWprDZ3 for <babel@ietfa.amsl.com>; Tue, 15 Jan 2019 14:02:30 -0800 (PST)
Received: from korolev.univ-paris7.fr (korolev.univ-paris7.fr [IPv6:2001:660:3301:8000::1:2]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 34B1C130F1F for <babel@ietf.org>; Tue, 15 Jan 2019 14:02:29 -0800 (PST)
Received: from mailhub.math.univ-paris-diderot.fr (mailhub.math.univ-paris-diderot.fr [81.194.30.253]) by korolev.univ-paris7.fr (8.14.4/8.14.4/relay1/82085) with ESMTP id x0FM2Jxd011558; Tue, 15 Jan 2019 23:02:20 +0100
Received: from mailhub.math.univ-paris-diderot.fr (localhost [127.0.0.1]) by mailhub.math.univ-paris-diderot.fr (Postfix) with ESMTP id 813AD2965D; Tue, 15 Jan 2019 23:02:25 +0100 (CET)
X-Virus-Scanned: amavisd-new at math.univ-paris-diderot.fr
Received: from mailhub.math.univ-paris-diderot.fr ([127.0.0.1]) by mailhub.math.univ-paris-diderot.fr (mailhub.math.univ-paris-diderot.fr [127.0.0.1]) (amavisd-new, port 10023) with ESMTP id r4zaxHFGDjhZ; Tue, 15 Jan 2019 23:02:24 +0100 (CET)
Received: from pirx.irif.fr (unknown [78.194.40.74]) (Authenticated sender: jch) by mailhub.math.univ-paris-diderot.fr (Postfix) with ESMTPSA id 032502965A; Tue, 15 Jan 2019 23:02:24 +0100 (CET)
Date: Tue, 15 Jan 2019 23:02:23 +0100
Message-ID: <87lg3lbmvk.wl-jch@irif.fr>
From: Juliusz Chroboczek <jch@irif.fr>
To: "STARK, BARBARA H" <bs7652@att.com>
Cc: Babel at IETF <babel@ietf.org>
nSubject: Re: [babel] babel-hmac: key requirements
In-Reply-To: <2D09D61DDFA73D4C884805CC7865E6114DF9E3B4@GAALPA1MSGUSRBF.ITServices.sbc.com>
References: <2D09D61DDFA73D4C884805CC7865E6114DF96321@GAALPA1MSGUSRBF.ITServices.sbc.com> <874laevyy4.wl-jch@irif.fr> <2D09D61DDFA73D4C884805CC7865E6114DF9BFAF@GAALPA1MSGUSRBF.ITServices.sbc.com> <87o98hbt9j.wl-jch@irif.fr> <2D09D61DDFA73D4C884805CC7865E6114DF9E3B4@GAALPA1MSGUSRBF.ITServices.sbc.com>
User-Agent: Wanderlust/2.15.9
MIME-Version: 1.0 (generated by SEMI-EPG 1.14.7 - "Harue")
Content-Type: text/plain; charset="US-ASCII"
X-Greylist: Sender IP whitelisted, not delayed by milter-greylist-4.2.7 (korolev.univ-paris7.fr [194.254.61.138]); Tue, 15 Jan 2019 23:02:20 +0100 (CET)
X-Miltered: at korolev with ID 5C3E586B.001 by Joe's j-chkmail (http : // j-chkmail dot ensmp dot fr)!
X-j-chkmail-Enveloppe: 5C3E586B.001 from mailhub.math.univ-paris-diderot.fr/mailhub.math.univ-paris-diderot.fr/null/mailhub.math.univ-paris-diderot.fr/<jch@irif.fr>
X-j-chkmail-Score: MSGID : 5C3E586B.001 on korolev.univ-paris7.fr : j-chkmail score : . : R=. U=. O=. B=0.000 -> S=0.000
X-j-chkmail-Status: Ham
Archived-At: <https://mailarchive.ietf.org/arch/msg/babel/ZXTA3C4MNYXrE5pc1pz580PH6oY>
Subject: [babel] (no subject)
X-BeenThere: babel@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "A list for discussion of the Babel Routing Protocol." <babel.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/babel>, <mailto:babel-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/babel/>
List-Post: <mailto:babel@ietf.org>
List-Help: <mailto:babel-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/babel>, <mailto:babel-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 15 Jan 2019 22:02:31 -0000

>>> The provided HMAC Key MUST NOT be modified in any way prior to use
>>> with the hash algorithm.

>> Which draft are we speaking about?  The management draft or the HMAC draft?

> The HMAC draft.

Please consider me utterly confused.

The HMAC draft was carefully written to be agnostic about key distribution
policies.  It assumes that one or more HMAC keys are associated to each
interface (Section 3.1), and takes no stand about how these keys got into
the interface data strcture.

For example, a key might come from a config file, it might come from
a configuration protocol, or it might be the result of a Diffie-Hellman
key exchange.  Babel-HMAC doesn't care, it just consults the interface
data structure and grabs the keys that are there.

So what do you mean by "provided" in the sentence you suggest?  Who's the
mysterious entity doing the providing, and who is she providing the keys to?

(The point I'm making is that you obviously have a particular management
interface in mind -- probably a config file, or perhaps some kind of XML
over HTTP thing --, and that management interfaces are out of scope for
this draft.)

-- Juliusz

v2.23.0 | Report a Bug | By Email