Re: [Cfrg] Dynamic Key Changes on Encrypted Sessions. - Draft I-D Attached

Станислав Смышляев <> Mon, 06 November 2017 11:17 UTC

Return-Path: <>
Received: from localhost (localhost []) by (Postfix) with ESMTP id 50DE513FB31 for <>; Mon, 6 Nov 2017 03:17:39 -0800 (PST)
X-Virus-Scanned: amavisd-new at
X-Spam-Flag: NO
X-Spam-Score: -2.7
X-Spam-Status: No, score=-2.7 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: (amavisd-new); dkim=pass (2048-bit key)
Received: from ([]) by localhost ( []) (amavisd-new, port 10024) with ESMTP id jzf1T8O3StqZ for <>; Mon, 6 Nov 2017 03:17:37 -0800 (PST)
Received: from ( [IPv6:2a00:1450:4010:c07::235]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by (Postfix) with ESMTPS id 598FF13FB56 for <>; Mon, 6 Nov 2017 03:17:37 -0800 (PST)
Received: by with SMTP id a2so10035859lfh.11 for <>; Mon, 06 Nov 2017 03:17:37 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;; s=20161025; h=mime-version:content-transfer-encoding:message-id:date:subject:from :in-reply-to:references:to:cc; bh=llUBdbDW14HW7XL9/PW5t61nf/sCHlw8KDYtRU/yCJU=; b=clH5v1N00lTNOn+ivzKZUzr5FUv7alBDe7blVl4Ly+xhOP9rdSx4tp8yPIpRlH4tiy MlfMxzPQKKjk9EVYE4LhIfK1iWS8jlA+aEsixL6TusD8GPUMC0HlRV8sO8UbqqIN1To0 LHqwpRzWR9IMD8I8hDdwE2hM0aEgfgQIOoUyc+jfzs94wA3lGdndOd/Fq33pb8t2OS9+ 7e2JaIt1BBoggLHwR3ZPU8up3o8FAsJ9fnoom4Nfic2+koRPgPglawVe4XdWxR+1sz9R t+cx6oSvgSgZP72c7DyV5cp27pTnSHZ8UrzyQKxhC/Wu4DOIz5prtHzlRZccbFfYtZtf GANg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;; s=20161025; h=x-gm-message-state:mime-version:content-transfer-encoding :message-id:date:subject:from:in-reply-to:references:to:cc; bh=llUBdbDW14HW7XL9/PW5t61nf/sCHlw8KDYtRU/yCJU=; b=ejUWZahXM4Wyb+JBr/3jlEif5qabS6vzCRcvaEdl7qpWAgCti/In/zbcD4vK8I83yW 2jnKkWfu9pTOz9s3xOwGYqxpTTis9egv7Ha4ppRQz9V11jJ4AZ399PwJdVywXugCEUWJ 9/24wliT28rIEOdvsrCuFhf/c+gJ6VevAJMZ94pZFXYwBUY29RahjmDnJ2Qn7csABtqF tNTib4OTM6DqjcTrF57pTmU+7Y/UjwLDtc6J7boQ5bi18BzSWncmiecO3+d2LrKv/bQn rZak+DLpAcbegzx4YseJkkSY/cab4mompR3s0OJQB5J3aA8SUXHG5hj1tKovOE2O4POI BZdw==
X-Gm-Message-State: AMCzsaVKllmNGw5u5w2vElGdTkyzCw9e+0PedZib+deyJmUdiz7OuG68 r5alIQ2kMeGMYRSW1HWSmPk=
X-Google-Smtp-Source: ABhQp+T1PhwmCTx2WM4ASvKgZdyWBBkiIJ5HSi4CtDWFysRW4XAEtnVlwgUjAD32gFzg9tnBSEbAyQ==
X-Received: by with SMTP id 2mr6579938ljt.188.1509967055275; Mon, 06 Nov 2017 03:17:35 -0800 (PST)
Received: from [] ([]) by with ESMTPSA id k37sm2352371lfi.27.2017. (version=TLS1 cipher=ECDHE-RSA-AES128-SHA bits=128/128); Mon, 06 Nov 2017 03:17:34 -0800 (PST)
Content-Type: text/plain; charset="utf-8"
MIME-Version: 1.0
Content-Transfer-Encoding: quoted-printable
X-Mailer: BlackBerry Email (
Message-ID: <>
Date: Mon, 06 Nov 2017 14:17:34 +0300
From: Станислав Смышляев <>
In-Reply-To: <>
References: <> <> <>
To: "Paterson, Kenny" <>, Peter Alexander <>
Archived-At: <>
Subject: Re: [Cfrg] Dynamic Key Changes on Encrypted Sessions. - Draft I-D Attached
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: Crypto Forum Research Group <>
List-Unsubscribe: <>, <>
List-Archive: <>
List-Post: <>
List-Help: <>
List-Subscribe: <>, <>
X-List-Received-Date: Mon, 06 Nov 2017 11:17:39 -0000

Dear Kenny, dear colleagues,

Definitely, I'll do this. But, if you don't mind, I'd prefer to wait a few days for the Crypto Review Panel reviews to ‎be posted, because the issues related to the scope of the Peter's document ("when to re-key and how to control the process")‎ could be also mentioned in the reviews - so it would be better to take those considerations into account before further discussions. 

Best regards,
  Исходное сообщение  
От: Paterson, Kenny
Отправлено: понедельник, 6 ноября 2017 г., 13:53
Кому: Stanislav V. Smyshlyaev; Peter Alexander
Тема: Re: [Cfrg] Dynamic Key Changes on Encrypted Sessions. - Draft I-D Attached

Dear Stanislav,

This sounds like a reasonable way of proceeding.

Please would you initiate a discussion here on the list of the relevant
principles from Peter's document?



On 04/11/2017 15:29, "Cfrg on behalf of Stanislav V. Smyshlyaev"
< on behalf of> wrote:

>Dear colleagues,
>The overall scope is close, but draft-irtf-cfrg-re-keying is about "why
> how to re-key", and the proposed draft is about "when to re-key and how
>to control the process".
>As a possible way, we could discuss in CFRG, which general principles of
>Peter's document (overall principles of how to control the re-keying
>process) would be reasonble to add to draft-irtf-cfrg-re-keying.
>And questions related to the particular protocols (e.g., IPsec, as in the
>provided Peter Alexander's draft) seem to be more convenient to be
>discussed within corresponding working groups - such as ipsecme WG.
>Best regards,
>2017-11-04 17:36 GMT+03:00 Peter Alexander
>Good morning everyone,
>I am attaching my first go at a proper I-D for submission. This is the
>same invention that I had mentioned previously, and is quite similar in
>scope to what Stanislav is working on (draft-irtf-cfrg-re-keying-08).
>Right now I am still working through the Doxygen documentation to
>translate the control messages into a cleaner I-D format.
>Kindly review this when you are able to do so, and share your comments.
>Peter Alexander
>Cfrg mailing list