RE: [saag] [Cfrg] Re: TCP-AO MAC algorithms
Sean Shuo Shen <sshen@huawei.com> Fri, 04 January 2008 01:59 UTC
Return-path: <cfrg-bounces@ietf.org>
Received: from [127.0.0.1] (helo=stiedprmman1.va.neustar.com) by megatron.ietf.org with esmtp (Exim 4.43) id 1JAbqd-00070I-DN; Thu, 03 Jan 2008 20:59:47 -0500
Received: from [10.91.34.44] (helo=ietf-mx.ietf.org) by megatron.ietf.org with esmtp (Exim 4.43) id 1JAbqc-0006tu-4M for cfrg@ietf.org; Thu, 03 Jan 2008 20:59:46 -0500
Received: from szxga04-in.huawei.com ([61.144.161.7]) by ietf-mx.ietf.org with esmtp (Exim 4.43) id 1JAbqZ-0004aP-Vb for cfrg@ietf.org; Thu, 03 Jan 2008 20:59:46 -0500
Received: from huawei.com (szxga04-in [172.24.2.12]) by szxga04-in.huawei.com (iPlanet Messaging Server 5.2 HotFix 2.14 (built Aug 8 2006)) with ESMTP id <0JU300M7OK6IVB@szxga04-in.huawei.com> for cfrg@ietf.org; Fri, 04 Jan 2008 09:59:06 +0800 (CST)
Received: from huawei.com ([172.24.1.18]) by szxga04-in.huawei.com (iPlanet Messaging Server 5.2 HotFix 2.14 (built Aug 8 2006)) with ESMTP id <0JU300AQ0K6IZK@szxga04-in.huawei.com> for cfrg@ietf.org; Fri, 04 Jan 2008 09:59:06 +0800 (CST)
Received: from s102542 ([10.111.12.53]) by szxml03-in.huawei.com (iPlanet Messaging Server 5.2 HotFix 2.14 (built Aug 8 2006)) with ESMTPA id <0JU300FA5K6EFO@szxml03-in.huawei.com> for cfrg@ietf.org; Fri, 04 Jan 2008 09:59:06 +0800 (CST)
Date: Fri, 04 Jan 2008 09:59:02 +0800
From: Sean Shuo Shen <sshen@huawei.com>
Subject: RE: [saag] [Cfrg] Re: TCP-AO MAC algorithms
In-reply-to: <477BBB71.8020906@isi.edu>
To: 'Joe Touch' <touch@isi.edu>
Message-id: <002201c84e75$613c48a0$350c6f0a@china.huawei.com>
MIME-version: 1.0
X-MIMEOLE: Produced By Microsoft MimeOLE V6.00.2900.3198
X-Mailer: Microsoft Office Outlook 11
Content-type: text/plain; charset="us-ascii"
Content-transfer-encoding: 7bit
Thread-index: AchNXNXWqhAputGBQOeV4aMCJw0xJQBFO4pA
X-Spam-Score: 0.0 (/)
X-Scan-Signature: b19722fc8d3865b147c75ae2495625f2
Cc: saag@mit.edu, cfrg@ietf.org
X-BeenThere: cfrg@ietf.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Crypto Forum Research Group <cfrg.ietf.org>
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/cfrg>, <mailto:cfrg-request@ietf.org?subject=unsubscribe>
List-Post: <mailto:cfrg@ietf.org>
List-Help: <mailto:cfrg-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/cfrg>, <mailto:cfrg-request@ietf.org?subject=subscribe>
Errors-To: cfrg-bounces@ietf.org
Hi Joe, >> I presume you're looking for a nonce that would be unique per unique >> segment. It would be preferable to insert either that nonce or an index >> thereto in the MAC itself, than to make assumptions of the uniqueness of >> any fields of the TCP segment or a hash that would be derived from them. Yes, I am discussing the possibility that unique nonce are generated by both sides without carrying extra info in MAC. Inserting an index (like a counter) or even the nonce itself certainly can make life easier, if we don't care the extra bytes together with the MAC. >FWIW, it might be possible for TCP to retransmit a segment with the same >offset and size but with different options. In particular, if the user >sets an option between a segment's initial transmission and subsequent >retransmission, this could occur. I'm checking to see if this could also >occur with TCP flags (e.g., FIN if a user closes a connection while data >is outstanding). >For these reasons, and because of the potential to constrain the >evolution of TCP, I would urge the MAC computation to treat the >non-zeroed TCP header and pseudoheader fields as opaque. I also believe some other bits in TCP header might be different even if the TCP is retransmitting the same segment. But all of these changes can easily be included in the PRF input when the nonce is calculated (it won't be heavy work compared with the calculation of MAC) to make sure different nonces are used when the authenticated content changes. Regards Sean _______________________________________________ Cfrg mailing list Cfrg@ietf.org https://www1.ietf.org/mailman/listinfo/cfrg
- [Cfrg] Re: [saag] TCP-AO MAC algorithms mcgrew
- RE: [Cfrg] Re: [saag] TCP-AO MAC algorithms Sean Shuo Shen
- RE: [saag] [Cfrg] Re: TCP-AO MAC algorithms Sean Shuo Shen
- RE: [saag] [Cfrg] Re: TCP-AO MAC algorithms Sean Shuo Shen
- Re: [Cfrg] Re: [saag] TCP-AO MAC algorithms mcgrew
- Re: [saag] [Cfrg] Re: TCP-AO MAC algorithms Stephen Kent
- RE: [Cfrg] Re: [saag] TCP-AO MAC algorithms Sean Shuo Shen
- RE: [saag] [Cfrg] Re: TCP-AO MAC algorithms Sean Shuo Shen
- RE: [saag] [Cfrg] Re: TCP-AO MAC algorithms Sean Shuo Shen
- Re: [saag] [Cfrg] Re: TCP-AO MAC algorithms Steven M. Bellovin
- RE: [saag] [Cfrg] Re: TCP-AO MAC algorithms Sean Shuo Shen
- Re: [saag] [Cfrg] Re: TCP-AO MAC algorithms Steven M. Bellovin
- RE: [saag] [Cfrg] Re: TCP-AO MAC algorithms Sean Shuo Shen
- RE: [saag] [Cfrg] Re: TCP-AO MAC algorithms Stephen Kent
- RE: [saag] [Cfrg] Re: TCP-AO MAC algorithms Sean Shuo Shen
- RE: [saag] [Cfrg] Re: TCP-AO MAC algorithms Sean Shuo Shen
- RE: [saag] [Cfrg] Re: TCP-AO MAC algorithms Sean Shuo Shen
- RE: [saag] [Cfrg] Re: TCP-AO MAC algorithms Sean Shuo Shen