Re: [Cfrg] I-D Action:draft-sheffer-emu-eap-eke-00.txt
Paul Hoffman <paul.hoffman@vpnc.org> Mon, 02 February 2009 17:08 UTC
Return-Path: <cfrg-bounces@irtf.org>
X-Original-To: cfrg-archive@megatron.ietf.org
Delivered-To: ietfarch-cfrg-archive@core3.amsl.com
Received: from [127.0.0.1] (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 8C46128C23F; Mon, 2 Feb 2009 09:08:23 -0800 (PST)
X-Original-To: cfrg@core3.amsl.com
Delivered-To: cfrg@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id CE38D28C245 for <cfrg@core3.amsl.com>; Mon, 2 Feb 2009 09:08:21 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.581
X-Spam-Level:
X-Spam-Status: No, score=-2.581 tagged_above=-999 required=5 tests=[AWL=0.018, BAYES_00=-2.599]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id JnWr4I-hAobl for <cfrg@core3.amsl.com>; Mon, 2 Feb 2009 09:08:21 -0800 (PST)
Received: from balder-227.proper.com (properopus-pt.tunnel.tserv3.fmt2.ipv6.he.net [IPv6:2001:470:1f04:392::2]) by core3.amsl.com (Postfix) with ESMTP id 910C628C23F for <cfrg@irtf.org>; Mon, 2 Feb 2009 09:08:20 -0800 (PST)
Received: from [10.20.30.158] (dsl-63-249-108-169.cruzio.com [63.249.108.169]) (authenticated bits=0) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n12H7uwt056226 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Mon, 2 Feb 2009 10:07:57 -0700 (MST) (envelope-from paul.hoffman@vpnc.org)
Mime-Version: 1.0
Message-Id: <p06240802c5acd84fe181@[10.20.30.158]>
In-Reply-To: <024901c984ec$63e685d0$54f4200a@amer.cisco.com>
References: <7F9A6D26EB51614FBF9F81C0DA4CFEC8D97E66F68F@il-ex01.ad.checkpoint.com><662 E50A8-503C-4AC7-8291-3AF56E149FA9@cisco.com><62ff80fe052dd40d647ad37f96712 e2f.squirrel@www.trepanning.net> <20090201123520.73568d42@cs.columbia.edu> <024901c984ec$63e685d0$54f4200a@amer.cisco.com>
Date: Mon, 02 Feb 2009 09:07:55 -0800
To: Scott Fluhrer <sfluhrer@cisco.com>
From: Paul Hoffman <paul.hoffman@vpnc.org>
Cc: cfrg@irtf.org
Subject: Re: [Cfrg] I-D Action:draft-sheffer-emu-eap-eke-00.txt
X-BeenThere: cfrg@irtf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Crypto Forum Research Group <cfrg.irtf.org>
List-Unsubscribe: <http://www.irtf.org/mailman/listinfo/cfrg>, <mailto:cfrg-request@irtf.org?subject=unsubscribe>
List-Archive: <http://www.irtf.org/mailman/private/cfrg>
List-Post: <mailto:cfrg@irtf.org>
List-Help: <mailto:cfrg-request@irtf.org?subject=help>
List-Subscribe: <http://www.irtf.org/mailman/listinfo/cfrg>, <mailto:cfrg-request@irtf.org?subject=subscribe>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Sender: cfrg-bounces@irtf.org
Errors-To: cfrg-bounces@irtf.org
At 11:11 PM -0500 2/1/09, Scott Fluhrer wrote: >One thing to note about this scenario is that the base security assumptions >are backwards to normal cryptology. Normally, we assume that the key has >strong security properties, and that the data may have little. Here, we >assume that the key has weak security properties (the attack may have a list >of possible keys), and hence we need to ensure that the data has strong >properties (indistinguishable from random). This difference may mean that >conventional wisdom in cryptology might not apply in this case. This is an excellent summary, one that should be reflected in the document itself. --Paul Hoffman, Director --VPN Consortium _______________________________________________ Cfrg mailing list Cfrg@irtf.org http://www.irtf.org/mailman/listinfo/cfrg Return-Path: <yaronf@checkpoint.com> X-Original-To: cfrg@core3.amsl.com Delivered-To: cfrg@core3.amsl.com Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 7F0183A6B8F for <cfrg@core3.amsl.com>; Tue, 10 Feb 2009 12:56:43 -0800 (PST) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -2.544 X-Spam-Level: X-Spam-Status: No, score=-2.544 tagged_above=-999 required=5 tests=[AWL=0.055, BAYES_00=-2.599] Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 7o9rNlwWoaCl for <cfrg@core3.amsl.com>; Tue, 10 Feb 2009 12:56:42 -0800 (PST) Received: from dlpdemo.checkpoint.com (dlpdemo.checkpoint.com [194.29.32.54]) by core3.amsl.com (Postfix) with ESMTP id F2F323A6991 for <cfrg@irtf.org>; Tue, 10 Feb 2009 12:56:41 -0800 (PST) Received: by dlpdemo.checkpoint.com (Postfix, from userid 105) id 06D5D29C005; Tue, 10 Feb 2009 22:32:00 +0200 (IST) Received: from michael.checkpoint.com (michael.checkpoint.com [194.29.32.68]) by dlpdemo.checkpoint.com (Postfix) with ESMTP id B610229C002 for <cfrg@irtf.org>; Tue, 10 Feb 2009 22:30:59 +0200 (IST) X-CheckPoint: {4991E3AC-10000-88241DC2-7B6} Received: from il-ex01.ad.checkpoint.com (localhost [127.0.0.1]) by michael.checkpoint.com (8.12.10+Sun/8.12.10) with ESMTP id n1AKUwv3015184 for <cfrg@irtf.org>; Tue, 10 Feb 2009 22:30:59 +0200 (IST) Received: from il-ex01.ad.checkpoint.com ([194.29.32.26]) by il-ex01.ad.checkpoint.com ([194.29.32.26]) with mapi; Tue, 10 Feb 2009 22:30:58 +0200 From: Yaron Sheffer <yaronf@checkpoint.com> To: "cfrg@irtf.org" <cfrg@irtf.org> Date: Tue, 10 Feb 2009 22:30:56 +0200 Thread-Topic: I-D Action:draft-sheffer-emu-eap-eke-01.txt Thread-Index: AcmLlp6I9ML7vVgTR7SDkNI56veFlgAJvwAg Message-ID: <7F9A6D26EB51614FBF9F81C0DA4CFEC8D98157DDBF@il-ex01.ad.checkpoint.com> Accept-Language: en-US Content-Language: en-US X-MS-Has-Attach: X-MS-TNEF-Correlator: acceptlanguage: en-US Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: quoted-printable MIME-Version: 1.0 Subject: [Cfrg] FW: I-D Action:draft-sheffer-emu-eap-eke-01.txt X-BeenThere: cfrg@irtf.org X-Mailman-Version: 2.1.9 Precedence: list List-Id: Crypto Forum Research Group <cfrg.irtf.org> List-Unsubscribe: <http://www.irtf.org/mailman/listinfo/cfrg>, <mailto:cfrg-request@irtf.org?subject=unsubscribe> List-Archive: <http://www.irtf.org/mailman/private/cfrg> List-Post: <mailto:cfrg@irtf.org> List-Help: <mailto:cfrg-request@irtf.org?subject=help> List-Subscribe: <http://www.irtf.org/mailman/listinfo/cfrg>, <mailto:cfrg-request@irtf.org?subject=subscribe> X-List-Received-Date: Tue, 10 Feb 2009 20:56:43 -0000 Hi everyone, Version -01 of our draft closes the vulnerability that was pointed out by S= cott Fluhrer, by defining a new MODP group (the common Group 14, but with a= different generator). Your further comments are welcome. Thanks, Yaron -----Original Message----- From: Internet-Drafts@ietf.org [mailto:Internet-Drafts@ietf.org] Sent: Tuesday, February 10, 2009 12:45 To: i-d-announce@ietf.org Subject: I-D Action:draft-sheffer-emu-eap-eke-01.txt A New Internet-Draft is available from the on-line Internet-Drafts director= ies. Title : An EAP Authentication Method Based on the EKE Pro= tocol Author(s) : Y. Sheffer, et al. Filename : draft-sheffer-emu-eap-eke-01.txt Pages : 24 Date : 2009-02-10 The Extensible Authentication Protocol (EAP) describes a framework that allows the use of multiple authentication mechanisms. This document defines an authentication mechanism for EAP called EAP-EKE, based on the Encrypted Key Exchange (EKE) protocol. This method provides mutual authentication through the use of a short, easy to remember password. A URL for this Internet-Draft is: http://www.ietf.org/internet-drafts/draft-sheffer-emu-eap-eke-01.txt Internet-Drafts are also available by anonymous FTP at: ftp://ftp.ietf.org/internet-drafts/ Below is the data which will enable a MIME compliant mail reader implementation to automatically retrieve the ASCII version of the Internet-Draft. Email secured by Check Point Return-Path: <mcgrew@cisco.com> X-Original-To: cfrg@core3.amsl.com Delivered-To: cfrg@core3.amsl.com Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id CD7713A6818 for <cfrg@core3.amsl.com>; Fri, 27 Feb 2009 06:24:06 -0800 (PST) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -6.299 X-Spam-Level: X-Spam-Status: No, score=-6.299 tagged_above=-999 required=5 tests=[AWL=-0.300, BAYES_00=-2.599, J_CHICKENPOX_13=0.6, RCVD_IN_DNSWL_MED=-4] Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id VexOF+MlAAbu for <cfrg@core3.amsl.com>; Fri, 27 Feb 2009 06:24:05 -0800 (PST) Received: from sj-iport-4.cisco.com (sj-iport-4.cisco.com [171.68.10.86]) by core3.amsl.com (Postfix) with ESMTP id A94F93A67A4 for <cfrg@irtf.org>; Fri, 27 Feb 2009 06:24:05 -0800 (PST) X-IronPort-AV: E=Sophos;i="4.38,276,1233532800"; d="scan'208";a="30589539" Received: from sj-dkim-2.cisco.com ([171.71.179.186]) by sj-iport-4.cisco.com with ESMTP; 27 Feb 2009 14:23:16 +0000 Received: from sj-core-1.cisco.com (sj-core-1.cisco.com [171.71.177.237]) by sj-dkim-2.cisco.com (8.12.11/8.12.11) with ESMTP id n1RENGtT028249 for <cfrg@irtf.org>; Fri, 27 Feb 2009 06:23:16 -0800 Received: from xbh-sjc-221.amer.cisco.com (xbh-sjc-221.cisco.com [128.107.191.63]) by sj-core-1.cisco.com (8.13.8/8.13.8) with ESMTP id n1RENG35021911 for <cfrg@irtf.org>; Fri, 27 Feb 2009 14:23:16 GMT Received: from xfe-sjc-211.amer.cisco.com ([171.70.151.174]) by xbh-sjc-221.amer.cisco.com with Microsoft SMTPSVC(6.0.3790.1830); Fri, 27 Feb 2009 06:23:16 -0800 Received: from [10.32.254.210] ([10.32.254.210]) by xfe-sjc-211.amer.cisco.com with Microsoft SMTPSVC(6.0.3790.1830); Fri, 27 Feb 2009 06:23:15 -0800 Message-Id: <5B97E9E6-5A31-44C7-B1C2-F8E6DEE97E5E@cisco.com> From: David McGrew <mcgrew@cisco.com> To: cfrg@irtf.org Content-Type: text/plain; charset=US-ASCII; format=flowed; delsp=yes Content-Transfer-Encoding: 7bit Mime-Version: 1.0 (Apple Message framework v930.3) Date: Fri, 27 Feb 2009 06:23:13 -0800 References: <49A7F059.1090505@bbn.com> X-Mailer: Apple Mail (2.930.3) X-OriginalArrivalTime: 27 Feb 2009 14:23:15.0928 (UTC) FILETIME=[EDFA6580:01C998E6] DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; l=2715; t=1235744596; x=1236608596; c=relaxed/simple; s=sjdkim2002; h=Content-Type:From:Subject:Content-Transfer-Encoding:MIME-Version; d=cisco.com; i=mcgrew@cisco.com; z=From:=20David=20McGrew=20<mcgrew@cisco.com> |Subject:=20CFRG=20Mail=20List=20Archiving=20Incorrectly |Sender:=20; bh=sUxFoQ4MowuPtak+xXkOvh1mmIWdydLyvQQyIOquszg=; b=ecwHd+wvn8xGOqtR9DBnv3hlISjjc3WGAgl4Mo+PotKobQn4VIsZ90s1/v isq1QJjzKnhPwf45PLbOXDNUgBxAgMbWMDoWBiDXSEaEozmRqXjnaM5/PmeG DNO2WIWM8K; Authentication-Results: sj-dkim-2; header.From=mcgrew@cisco.com; dkim=pass ( sig from cisco.com/sjdkim2002 verified; ); Subject: [Cfrg] CFRG Mail List Archiving Incorrectly X-BeenThere: cfrg@irtf.org X-Mailman-Version: 2.1.9 Precedence: list List-Id: Crypto Forum Research Group <cfrg.irtf.org> List-Unsubscribe: <http://www.irtf.org/mailman/listinfo/cfrg>, <mailto:cfrg-request@irtf.org?subject=unsubscribe> List-Archive: <http://www.irtf.org/mailman/private/cfrg> List-Post: <mailto:cfrg@irtf.org> List-Help: <mailto:cfrg-request@irtf.org?subject=help> List-Subscribe: <http://www.irtf.org/mailman/listinfo/cfrg>, <mailto:cfrg-request@irtf.org?subject=subscribe> X-List-Received-Date: Fri, 27 Feb 2009 14:24:06 -0000 This is just for your information, but the CFRG mail list has not been archiving correctly this month; the problem has been identified and will be fixed. David Begin forwarded message: > -------- Original Message -------- > Subject: [IAB] Some WG Mail Lists Archiving Incorrectly > Date: Thu, 26 Feb 2009 16:11:49 -0800 > From: Alexa Morris <amorris@amsl.com> > To: wgchairs@ietf.org > CC: ietf@ietf.org > > > > On February 3rd we upgraded the Mailman list archives in order to keep > spammers from sending spam directly to our archives. It has since been > brought to our attention that, as side effect of this upgrade, some > mail lists with previously public archives had their list > configuration reset to private archiving, which means that these > archives have not been available for several weeks. > > We are currently going through the Mailman settings for each of these > lists and resetting the archives so that they will once again be > publicly available. We anticipate that the list archives will be > properly repaired by early next week. The complete tally of impacted > lists is included below. > > As always, please feel free to contact me with any questions or > concerns. > > Impacted Mail Lists: > > 16ng > adslmib > ason-routing > bmwg > bofchairs > bridge-mib > cfrg > crisp > dccp > diffserv-interest > dns-dir > ecrit > enum > gsmp > hubmib > ietf-message-headers > imap > intersecs > ipcdn > ipdir > ipoverib > ipv6-adoption > irtf-announce > isis-update > kmart > l1vpn > l2vpn > l3vpn > ldap-dir > lemonade > malloc > media-feature-tags > megaco > midcom > mip4 > mip6 > mipshop > mobopts > mpls > mpls-interop > nemo > new-work > nsis > numbers > ops-dir > ospf-wireless-design > p2pi-com > pana > pim > port-srv-reg > pppext > proxies > pwe3 > rai-discuss > rfced-ietf > rip > rir-ietf > rmonmib > rmt > rohc > rserpool > rtg-bfd > rtg-dir > rtg-mibs > rtg-rdd > rtgwg > saad > sigtran > sitescope-list > spam-discussion > speechsc > ssm > tcpao-security > tmc > tsv-dir > uri-review > urn-nid > videomgmt > vpim > vpn-dir > vrrp > w3c-policy > xcon > > Regards, > Alexa > > ----------- > Alexa Morris / Executive Director / IETF > 48377 Fremont Blvd., Suite 117, Fremont, CA 94538 > Phone: +1.510.492.4089 / Fax: +1.510.492.4001 > Email: amorris@amsl.com > > Managed by Association Management Solutions (AMS) > Forum Management, Meeting and Event Planning > www.amsl.com <http://www.amsl.com/> > > _______________________________________________ > IRSG mailing list > IRSG@mailman.isi.edu > http://mailman.isi.edu/mailman/listinfo/irsg
- Re: [Cfrg] I-D Action:draft-sheffer-emu-eap-eke-0… Dan Harkins
- [Cfrg] I-D Action:draft-sheffer-emu-eap-eke-00.txt David McGrew
- Re: [Cfrg] I-D Action:draft-sheffer-emu-eap-eke-0… Scott Fluhrer
- Re: [Cfrg] I-D Action:draft-sheffer-emu-eap-eke-0… David Jacobson
- Re: [Cfrg] I-D Action:draft-sheffer-emu-eap-eke-0… Yaron Sheffer
- Re: [Cfrg] I-D Action:draft-sheffer-emu-eap-eke-0… Steven M. Bellovin
- Re: [Cfrg] I-D Action:draft-sheffer-emu-eap-eke-0… Hannes Tschofenig
- Re: [Cfrg] I-D Action:draft-sheffer-emu-eap-eke-0… Scott Fluhrer
- Re: [Cfrg] I-D Action:draft-sheffer-emu-eap-eke-0… Scott Fluhrer
- Re: [Cfrg] I-D Action:draft-sheffer-emu-eap-eke-0… Steven M. Bellovin
- Re: [Cfrg] I-D Action:draft-sheffer-emu-eap-eke-0… Greg Rose
- Re: [Cfrg] I-D Action:draft-sheffer-emu-eap-eke-0… Scott Fluhrer
- Re: [Cfrg] I-D Action:draft-sheffer-emu-eap-eke-0… Greg Rose
- Re: [Cfrg] I-D Action:draft-sheffer-emu-eap-eke-0… Steven M. Bellovin
- Re: [Cfrg] I-D Action:draft-sheffer-emu-eap-eke-0… Dan Harkins
- Re: [Cfrg] I-D Action:draft-sheffer-emu-eap-eke-0… Scott Fluhrer
- Re: [Cfrg] I-D Action:draft-sheffer-emu-eap-eke-0… Paul Hoffman