IETF Logo Mail Archive

[core] Need for random OSCORE Sender IDs?

Göran Selander <goran.selander@ericsson.com> Wed, 14 March 2018 08:08 UTC

Return-Path: <goran.selander@ericsson.com>
X-Original-To: core@ietfa.amsl.com
Delivered-To: core@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E00A412025C for <core@ietfa.amsl.com>; Wed, 14 Mar 2018 01:08:34 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.321
X-Spam-Level:
X-Spam-Status: No, score=-4.321 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_MED=-2.3, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ericsson.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 8hRU5gD2ghSa for <core@ietfa.amsl.com>; Wed, 14 Mar 2018 01:08:33 -0700 (PDT)
Received: from sesbmg22.ericsson.net (sesbmg22.ericsson.net [193.180.251.48]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 5D60E1200C5 for <core@ietf.org>; Wed, 14 Mar 2018 01:08:33 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; d=ericsson.com; s=mailgw201801; c=relaxed/simple; q=dns/txt; i=@ericsson.com; t=1521014909; h=From:Sender:Reply-To:Subject:Date:Message-ID:To:Cc:MIME-Version:Content-Type: Content-Transfer-Encoding:Content-ID:Content-Description:Resent-Date:Resent-From: Resent-Sender:Resent-To:Resent-Cc:Resent-Message-ID:In-Reply-To:References:List-Id: List-Help:List-Unsubscribe:List-Subscribe:List-Post:List-Owner:List-Archive; bh=1ZdkQedAUFylBAx5E6ZiHfBA8AXjKZ5+nLSX1eByvQ8=; b=bfc7EGXh4mVJY9X5Avci4S7GlOch5UIickaALUK7hQS/ZuWS+01AsmJ3XYvCw7a8 rrtzFX+1/pstoPBaHNBNwfToh0iUD28+X2o43vumNh2jxPg4r4BlXJQ13HmB9s8t GmjpnnhkfBAppQvHP0F7rNfrPtNE9qnpJ1P8fNb3wVY=;
X-AuditID: c1b4fb30-6ebff7000000095a-1e-5aa8d87dce2c
Received: from ESESSHC019.ericsson.se (Unknown_Domain [153.88.183.75]) by sesbmg22.ericsson.net (Symantec Mail Security) with SMTP id 47.CC.02394.D78D8AA5; Wed, 14 Mar 2018 09:08:29 +0100 (CET)
Received: from ESESSMB107.ericsson.se ([169.254.7.151]) by ESESSHC019.ericsson.se ([153.88.183.75]) with mapi id 14.03.0382.000; Wed, 14 Mar 2018 09:07:19 +0100
From: Göran Selander <goran.selander@ericsson.com>
To: "core@ietf.org" <core@ietf.org>
Thread-Topic: Need for random OSCORE Sender IDs?
Thread-Index: AQHTu2t50GyYRARGo0+FjCNvNmdxzg==
Date: Wed, 14 Mar 2018 08:07:20 +0000
Message-ID: <D6CE96CA.A1F4D%goran.selander@ericsson.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/14.7.3.170325
x-originating-ip: [83.252.126.178]
Content-Type: text/plain; charset="utf-8"
Content-ID: <5EC4D872EE5BB64AB09758D227D57CA6@ericsson.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFnrPLMWRmVeSWpSXmKPExsUyM2K7t27tjRVRBnen6Fnse7ue2YHRY8mS n0wBjFFcNimpOZllqUX6dglcGeePvGIq+MFW8e3+FPYGxgdsXYycHBICJhJrz/1lBrGFBA4z StxdmARhL2GU2L2eH8RmE3CReNDwiAnEFhFQlth85jUjiC0soC1x5uRkRoi4gcSqBR+hbD2J KfOfgs1kEVCVWHB4NwuIzStgIfFzwyKwOKOAmMT3U2vAZjILiEvcejKfCeIeAYkle84zQ9ii Ei8f/2MFsUWBZu7taYe6WUni9uYG9i5GDqBeTYn1u/QhxlhLbOvpZYGwFSWmdD9kh1grKHFy 5hOWCYwis5Bsm4XQPQtJ9ywk3bOQdC9gZF3FKFqcWpyUm25kpJdalJlcXJyfp5eXWrKJERgN B7f8NtjB+PK54yFGAQ5GJR7eyxdWRAmxJpYVV+YeYpTgYFYS4d0qAxTiTUmsrEotyo8vKs1J LT7EKM3BoiTOe9KTN0pIID2xJDU7NbUgtQgmy8TBKdXAOPtG1z6jk09XXH6d/05k5aIfO+O1 ri70/vnOrJyHfdaxY3w25pqNjWu4JzJlPWe2f5HOOs0t/5rKEjvxmz535t0yb912/eAss8/M UnHL99Yk3p4z1adia9yrtQbndvvm2LDs04tMEvZqSzmc37rORD7xS6rmnkdy9bveK2g2Hn/8 csGv9afmPFJiKc5INNRiLipOBAATFKXUggIAAA==
Archived-At: <https://mailarchive.ietf.org/arch/msg/core/1k_WI0a3qKgZTwlh6V_40hlpDnI>
Subject: [core] Need for random OSCORE Sender IDs?
X-BeenThere: core@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "Constrained RESTful Environments \(CoRE\) Working Group list" <core.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/core>, <mailto:core-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/core/>
List-Post: <mailto:core@ietf.org>
List-Help: <mailto:core-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/core>, <mailto:core-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 14 Mar 2018 08:08:35 -0000

All,

One IESG review comment on OSCORE related to the use of random Sender IDs.

As a remnant from previous versions the draft speaks about "uniformly
random distributed byte strings if the probability of collisions is
negligible”. With the default AEAD algorithm the current available size of
Sender ID is 7 bytes.

Question: Is anyone interested in deployments which must have large random
Sender IDs, or can we assume that unique Sender IDs are available or
assigned/agreed, e.g. at the same time when the Master Secret is?

Unless someone objects we will remove the formulation about random Sender
IDs.


Regards
Göran

v2.23.0 | Report a Bug | By Email