[core] Update to external_aad in OSCORE
Francesca Palombini <francesca.palombini@ericsson.com> Thu, 31 January 2019 14:00 UTC
Return-Path: <francesca.palombini@ericsson.com>
X-Original-To: core@ietfa.amsl.com
Delivered-To: core@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 658C3129508 for <core@ietfa.amsl.com>; Thu, 31 Jan 2019 06:00:53 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -8.853
X-Spam-Level:
X-Spam-Status: No, score=-8.853 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-4.553, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_MED=-2.3, SPF_PASS=-0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ericsson.com header.b=Z/N7Ym3B; dkim=pass (1024-bit key) header.d=ericsson.com header.b=LxLvxDUv
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id SiG4PEhKhLTX for <core@ietfa.amsl.com>; Thu, 31 Jan 2019 06:00:51 -0800 (PST)
Received: from sessmg22.ericsson.net (sessmg22.ericsson.net [193.180.251.58]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C2DEB1295D8 for <core@ietf.org>; Thu, 31 Jan 2019 06:00:50 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; d=ericsson.com; s=mailgw201801; c=relaxed/relaxed; q=dns/txt; i=@ericsson.com; t=1548943247; x=1551535247; h=From:Sender:Reply-To:Subject:Date:Message-ID:To:CC:MIME-Version:Content-Type: Content-Transfer-Encoding:Content-ID:Content-Description:Resent-Date:Resent-From: Resent-Sender:Resent-To:Resent-Cc:Resent-Message-ID:In-Reply-To:References:List-Id: List-Help:List-Unsubscribe:List-Subscribe:List-Post:List-Owner:List-Archive; bh=euWbCrwgR8ZLiaB+mwkltMTc28vLUMz8XFyMPn0KBZY=; b=Z/N7Ym3B5j2pErCpV54WZd0nCmAqBy8USbMYHw83BZ6DiowCewqj+YYruMcSKnJi u59eSsLbcOvZbqgkMOxAXy4pEIN2fFZ5OMpGSG1OnTsy/XWaLxuiEvWtOEbZY6VS mG2yqXh2Msxf2zH/0teIiSKAXJOT2tcNkB+/H+gybNs=;
X-AuditID: c1b4fb3a-5c9c29e00000672c-ee-5c52ff8f3b2b
Received: from ESESSMB505.ericsson.se (Unknown_Domain [153.88.183.123]) by sessmg22.ericsson.net (Symantec Mail Security) with SMTP id D9.9B.26412.F8FF25C5; Thu, 31 Jan 2019 15:00:47 +0100 (CET)
Received: from ESESSMR504.ericsson.se (153.88.183.126) by ESESSMB505.ericsson.se (153.88.183.166) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256_P256) id 15.1.1466.3; Thu, 31 Jan 2019 15:00:47 +0100
Received: from ESESBMB502.ericsson.se (153.88.183.169) by ESESSMR504.ericsson.se (153.88.183.126) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256_P256) id 15.1.1466.3; Thu, 31 Jan 2019 15:00:45 +0100
Received: from EUR03-AM5-obe.outbound.protection.outlook.com (153.88.183.157) by ESESBMB502.ericsson.se (153.88.183.169) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256_P256) id 15.1.1466.3 via Frontend Transport; Thu, 31 Jan 2019 15:00:45 +0100
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ericsson.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=euWbCrwgR8ZLiaB+mwkltMTc28vLUMz8XFyMPn0KBZY=; b=LxLvxDUv0/mQHK6DML2fJbeZk481ieiRq0SI8gONNWFfdgyhL0MkxVikAgjYxoG2nq0O56DxfsZ8VHiBptVDKxIGhQQPq+e3KsncfBv8SSGmktSDLzC+UoTeSvR1PeTr7r0N0Tbe/2Pzu1kryc9SSl1lOeMnMZ5QhLQlefP5NY4=
Received: from HE1PR0701MB2746.eurprd07.prod.outlook.com (10.168.188.140) by HE1PR0701MB2204.eurprd07.prod.outlook.com (10.168.36.135) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.1580.7; Thu, 31 Jan 2019 14:00:43 +0000
Received: from HE1PR0701MB2746.eurprd07.prod.outlook.com ([fe80::1f9:b4c9:ef3d:32c9]) by HE1PR0701MB2746.eurprd07.prod.outlook.com ([fe80::1f9:b4c9:ef3d:32c9%4]) with mapi id 15.20.1580.014; Thu, 31 Jan 2019 14:00:43 +0000
From: Francesca Palombini <francesca.palombini@ericsson.com>
To: "core@ietf.org" <core@ietf.org>
CC: "draft-ietf-core-object-security.authors@ietf.org" <draft-ietf-core-object-security.authors@ietf.org>
Thread-Topic: Update to external_aad in OSCORE
Thread-Index: AQHUuW1b2WMCrH/cjEumiyV7ZFHczg==
Date: Thu, 31 Jan 2019 14:00:43 +0000
Message-ID: <45C7EBE3-E716-4E02-A5A4-075E0B9EE99B@ericsson.com>
Accept-Language: en-GB, en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: spf=none (sender IP is ) smtp.mailfrom=francesca.palombini@ericsson.com;
x-originating-ip: [192.176.1.88]
x-ms-publictraffictype: Email
x-microsoft-exchange-diagnostics: 1; HE1PR0701MB2204; 6:WNSxz874UkrLsErbqd3iCALOX8qXW4fTeA0e0TmKkPzlGfnY4OWj8pc1qE+cpdnAwCy+bMIbs1t8PT++j5XzabKfXIbLs5/OPZK1w32KgCg1cOIU5z2bDpmwOT+7bkz5jpXO1ffrL/I21L46QfrxbuZy5rXyHWy4oOFdRts1zjDCeno7mpQxSe0ahryEPo4z9o8sioBiscSCsaVWhmqyoNI4Itg4W5MX7rgyZHILLrI1oFp0OEGMlrNu0kNQULvzDSiQPlVtt7BGoXOfcxz7YZ1M/kXXFheGTN5TwaNDdW+twWFr4r+IuGgiPaROv+Sl3plBI27aTnmhPaRalQ0SReW9lkw2xfNUKjpBCKMr6a4HbOWAyaM2BGahkdRa5YX+QugfO0O2aYCn7osvMGaFy3iDx5/tPxXNCHtrDp0l+Uf3PNtvmn1MyZ8V7IqMFOua5PKQG9ULxXcZ05aW5RuFdg==; 5:sO26ecf/dGX/3JNJcZw/01ZA6upd/WjCcAQBY3Y9zPvR5TDfnlHXUwnvNPk7tLrV52fYiQGwjONDETsOUx3m0Md43BBqUW+p6V2XXGLrbrnpdsU/l/mUFoMEjyaIEYt1d1eSCv+Phim38nfOSCRxKWTCQQt6iIgBQFeO+LkSoC69uEJ1FaKsMiV90aLdVOUFnK4OUFkoX+6d+3W3tB8G5g==; 7:HEY2oLwRdDFdeG7zvQmV/a2YtgA6eEdRgNrHtmcCbHKD8897A7MUQlNsoUKKhZhC9N0LVS6o53pSsyUMqaLSpph4h+LHHf2EVZNl/OJIqsHfSf54bkpSWSDkstAJm63W52dolinoqy7wonqiyD0i0g==
x-ms-office365-filtering-correlation-id: efcb1b7b-3223-4f1e-6c70-08d687847dd3
x-microsoft-antispam: BCL:0; PCL:0; RULEID:(2390118)(7020095)(4652040)(8989299)(4534185)(4627221)(201703031133081)(201702281549075)(8990200)(5600110)(711020)(4605077)(2017052603328)(7153060)(7193020); SRVR:HE1PR0701MB2204;
x-ms-traffictypediagnostic: HE1PR0701MB2204:
x-microsoft-antispam-prvs: <HE1PR0701MB22040E609E1F8B85940C0F2298910@HE1PR0701MB2204.eurprd07.prod.outlook.com>
x-forefront-prvs: 09347618C4
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(39860400002)(366004)(396003)(136003)(346002)(376002)(199004)(189003)(26005)(561944003)(6506007)(81166006)(81156014)(476003)(2616005)(102836004)(86362001)(6486002)(2501003)(5640700003)(6436002)(82746002)(186003)(1730700003)(6916009)(2906002)(10710500007)(7736002)(606006)(106356001)(8676002)(105586002)(8936002)(2351001)(9326002)(36756003)(450100002)(236005)(6116002)(99286004)(68736007)(53936002)(3846002)(14444005)(6512007)(54896002)(6306002)(486006)(7110500001)(25786009)(316002)(44832011)(966005)(97736004)(33656002)(71200400001)(14454004)(478600001)(66066001)(15650500001)(71190400001)(256004)(4326008)(2420400007)(83716004); DIR:OUT; SFP:1101; SCL:1; SRVR:HE1PR0701MB2204; H:HE1PR0701MB2746.eurprd07.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; A:1; MX:1;
received-spf: None (protection.outlook.com: ericsson.com does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam-message-info: YkFDLneuIN8rzN2pmDC+yDZH29QR85KZY2vvZhasSgLL5kNB+XDX9KYRSTclSathhBymnMtIVYm0g8bvHrsz0scRdoD3eXJ4+mHdpRKhZ1SKHeBZGlDLPrRkilq6kRDq4nwq9U4b4Fa9BTLXwzgOtjsgEcKQBcmObWCBamOtwq9YQiUEqVDTq6dTDy1mGoVMreO1Fdn6bm2YAxgrrWr+A5vEIxDJd+W+nVHh2i1qoSrsT0XFuGBzOzC2kMNl8nrj4aYW4A2NMluwgMg9ZX90Fr0zBOz9Jn9W9aWhs7Om7ouf3/vZq3PVqGC9y5P5tYtKtxpOar3fkfzwqGjzKq49WxBnpzZm/uPo9oNmvGlAmAuqzbg8UZShxwxoa6INmppBeHL994EHPTopkRRQbzIPrPcB5aEDiZ/hue94AaLF/Ag=
Content-Type: multipart/alternative; boundary="_000_45C7EBE3E7164E02A5A4075E0B9EE99Bericssoncom_"
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-Network-Message-Id: efcb1b7b-3223-4f1e-6c70-08d687847dd3
X-MS-Exchange-CrossTenant-originalarrivaltime: 31 Jan 2019 14:00:43.4543 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 92e84ceb-fbfd-47ab-be52-080c6b87953f
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-Transport-CrossTenantHeadersStamped: HE1PR0701MB2204
X-OriginatorOrg: ericsson.com
X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFlrHKsWRmVeSWpSXmKPExsUyM2J7tW7//6AYg9df9S32vV3PbLH52VdW ByaPJUt+MgUwRnHZpKTmZJalFunbJXBl7J4RW3CqvOLfvw7WBsbVJV2MHBwSAiYSX/ZGdzFy cQgJHGGUWHdrBxuE841RYumcVcxwTtPmaSwQzhImiT9bXjB2MXJysAhMYJb4f0ETIjGdSeL2 9PtQ/U8YJY59fM4OUsUmYCNx4eF7VhBbREBZYvOZ12DdzALZEpN2/QarERbQlFjY/5kJokZP 4s+7eYww9ssv81kgtqlKPD/8GCzOK2AvsenUTrB6RgFZiS+Nq5khZopL3HoyHywuISAgsWTP eWYIW1Ti5eN/rBD1yRJXbvexQ8QVJN7NPc0GYctKXJrfzQjygIRAC7vEhTM7WCESvhIvOo5D 2bcZJV49CICwdSQ6f3ZDDcqXuP97FSOELSPR9/Yz1KDNbBJH2n+ANQsJpEosX9sKVSQnsar3 IcsERu1ZSA6fBYwVZqADn8/kmQX2p6DEyZlPWCDCmhLrd+lDVCtKTOl+yA5ha0i0zpkLZXtI /D3zlBlZzQJGjlWMosWpxcW56UZGeqlFmcnFxfl5enmpJZsYgano4JbfVjsYDz53PMQowMGo xMN753ZQjBBrYllxZe4hRgkOZiURXqkHQCHelMTKqtSi/Pii0pzU4kOM0hwsSuK8f4QEY4QE 0hNLUrNTUwtSi2CyTBycUg2M8b6uCTe7yn2kpCQ2h83mvS2cV/aufXmN9bTUI1EMAj69O7+8 fRxi1LpF5UX8hcxkrZU68SURUmm1pVEh2m67YhdGWM+4+/h8rQ/XKwXZZTPevTg+/c70omTW W17Rat/ctH5pmyxqTLr9/Hz1+rTrwl/1W53WHPhQYDvRadmd8NccbVVfnY8psRRnJBpqMRcV JwIACzkYikEDAAA=
Archived-At: <https://mailarchive.ietf.org/arch/msg/core/FjBkiZI9w0FTL8AOqeY3aK_51As>
Subject: [core] Update to external_aad in OSCORE
X-BeenThere: core@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Constrained RESTful Environments \(CoRE\) Working Group list" <core.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/core>, <mailto:core-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/core/>
List-Post: <mailto:core@ietf.org>
List-Help: <mailto:core-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/core>, <mailto:core-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 31 Jan 2019 14:00:53 -0000
Hi, After receiving some review comments from Jim about Group OSCORE ( https://mailarchive.ietf.org/arch/msg/core/kx3ePNG3RbxtoFC9pZnYKggccew ), and following off-list discussion, we have a proposal to update the external_aad in OSCORE to add the ID Context. More precisely, the external_aad would be modified from: external_aad = bstr .cbor aad_array aad_array = [ oscore_version : uint, algorithms : [ alg_aead : int / tstr ], request_kid : bstr, request_piv : bstr, options : bstr, ] to: external_aad = bstr .cbor aad_array aad_array = [ oscore_version : uint, algorithms : [ alg_aead : int / tstr ], request_kid : bstr, request_piv : bstr, kid_context : bstr / nil, options : bstr, ] where the kid_context is the ID Context (or nil if not present). We have not identified any issues with ID Context not being part of the external_aad in OSCORE (unicast), as it is linked to the keying material via the security context key derivation. However, the same external_aad structure is used both in unicast and group settings, both for AEAD and for signing. As it could be helpful to have ID Context in the external_aad for the signature, we propose to do this change in unicast OSCORE to keep OSCORE and group OSCORE aligned. This change means that the ID Context (which in Group OSCORE contains the group identifier) would be integrity protected (and signed in group OSCORE) in each message, rather than just part of the key derivation. This change does not add any overhead to the message as external_aad is not sent, and is a very little modification implementation-wise. The biggest consequence would be draft-wise to re-create and update the test vectors in appendix C. We have had discussions with some implementers, and they don’t see an issue with this change. If anybody sees a problem with it, please let us know. Thanks, Francesca
- [core] Update to external_aad in OSCORE Francesca Palombini
- Re: [core] Update to external_aad in OSCORE Francesca Palombini