Re: [core] Request for registrations in the "OSCORE Flag Bits" registry (from draft-ietf-core-oscore-groupcomm; now off IANA tracker)

Marco Tiloca <marco.tiloca@ri.se> Mon, 08 August 2022 14:57 UTC

Return-Path: <marco.tiloca@ri.se>
X-Original-To: core@ietfa.amsl.com
Delivered-To: core@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 32AF3C14F744; Mon, 8 Aug 2022 07:57:01 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.111
X-Spam-Level:
X-Spam-Status: No, score=-2.111 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, NICE_REPLY_A=-0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ri.se
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 69kiW9pE7y6i; Mon, 8 Aug 2022 07:56:56 -0700 (PDT)
Received: from emea01-obe.outbound.protection.outlook.com (mail-swedensouthazon11011003.outbound.protection.outlook.com [52.101.76.3]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 56E94C14F719; Mon, 8 Aug 2022 07:56:55 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=SN65ZQfSpqXAGwteFqM2EApuGLqf0vPYH11Kpk30P6d/OI7RVDMv6eI5xbUyYnU5DsbyQlRwPK4m27n+r8iuroZFQtgVMl61dNb6CHgZtvoYFo/ng2lTkmC+dXhCeQUAOpuUZrBRUe/gop1GpwYVrf28kUXjo0OClMcWGBtitoJmrxYKXrJJhyTp901WC3DcoPi+bF0xTHSbkMszHU3GPjO2Q6doW+lZGQqH8VB6mnm/8TAbljNHm1dHChJf8LZks60ZUfKs3lt5w2LQRdHIoyV+psVeN1LPiVRC51Mdq+OhrC+5epigjlE1MVlSSop4HrkWoz5feMixfq1EyMC5HA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=bdgGnS1iOepf43aRV23MWTIAxRX8WSIOfxpGj11RYK8=; b=g2MhwJ++d4ZJN893YYy7DWojZF3qSE/OoKDHMJJD9fvamV2U4ACmxwrTWdPmPr5HEmLbo9NfOlKvRo7rRbyjoSuryz0JUIxtaswnF0MHraX5l5pvJm45oePBYcajR51NuLX0584RnHXU4kDsuxjbOWh+oix0zdD5ez3KsT2OqgSIxoDKQ18HPtCVvBMBieKihyqXsrKn4/vSdGtuV/D5PXcp0LhwAAV98+l5PbWPNIHZMEBS+qRNtZxOnV/oIbvRoYjBykxPi9V5qwA3jyvri0XZPVNWcycEXOmrw1jgU8q2XgtO5lYVaAJcrC41N3TKEUmqWPSYgJ1DfbzFUlq7DQ==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=ri.se; dmarc=pass action=none header.from=ri.se; dkim=pass header.d=ri.se; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ri.se; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=bdgGnS1iOepf43aRV23MWTIAxRX8WSIOfxpGj11RYK8=; b=W9Q080L1LulYS6VfL7VrfOYkJYyZJhlESjT5t3nwwvuORYY84Ccokz1k/TWfIP8oYSKB0xF390BUXajH8ilUo01xQABQxCWyVOdzim2TkToh97dVHeIuvYcP7Rsw20tFMcZLrBbAoDZWVn8VpDYquWmn0SZYkDMsNY4qjyhztSo=
Authentication-Results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=ri.se;
Received: from GVYP280MB0464.SWEP280.PROD.OUTLOOK.COM (2603:10a6:150:37::17) by GVYP280MB0256.SWEP280.PROD.OUTLOOK.COM (2603:10a6:150:1a::6) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.5504.14; Mon, 8 Aug 2022 14:56:31 +0000
Received: from GVYP280MB0464.SWEP280.PROD.OUTLOOK.COM ([fe80::8db3:9c84:949b:b1fc]) by GVYP280MB0464.SWEP280.PROD.OUTLOOK.COM ([fe80::8db3:9c84:949b:b1fc%9]) with mapi id 15.20.5504.020; Mon, 8 Aug 2022 14:56:31 +0000
Message-ID: <74bf37fb-0aff-55a0-0b20-9995e8c4233b@ri.se>
Date: Mon, 08 Aug 2022 16:56:30 +0200
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:91.0) Gecko/20100101 Thunderbird/91.11.0
Content-Language: en-US
To: Christian Amsüss <christian@amsuess.com>, core@ietf.org, draft-ietf-core-oscore-key-update@ietf.org
References: <YvECa3mOqMjz0RKD@hephaistos.amsuess.com>
From: Marco Tiloca <marco.tiloca@ri.se>
In-Reply-To: <YvECa3mOqMjz0RKD@hephaistos.amsuess.com>
Content-Type: multipart/signed; micalg="pgp-sha256"; protocol="application/pgp-signature"; boundary="------------2BOpJEzWZulX0KaOeElkflR1"
X-ClientProxiedBy: GV3P280CA0067.SWEP280.PROD.OUTLOOK.COM (2603:10a6:150:a::32) To GVYP280MB0464.SWEP280.PROD.OUTLOOK.COM (2603:10a6:150:37::17)
MIME-Version: 1.0
X-MS-PublicTrafficType: Email
X-MS-Office365-Filtering-Correlation-Id: 9a91c550-ac7a-4ad5-2eb6-08da794e2dbd
X-MS-TrafficTypeDiagnostic: GVYP280MB0256:EE_
X-LD-Processed: 5a9809cf-0bcb-413a-838a-09ecc40cc9e8,ExtAddr
X-MS-Exchange-SenderADCheck: 1
X-MS-Exchange-AntiSpam-Relay: 0
X-Microsoft-Antispam: BCL:0;
X-Microsoft-Antispam-Message-Info: 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
X-Forefront-Antispam-Report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:GVYP280MB0464.SWEP280.PROD.OUTLOOK.COM; PTR:; CAT:NONE; SFS:(13230016)(4636009)(366004)(136003)(39860400002)(376002)(396003)(346002)(86362001)(2616005)(66574015)(186003)(6506007)(31696002)(33964004)(53546011)(2906002)(478600001)(6512007)(21480400003)(26005)(38100700002)(83380400001)(44832011)(316002)(4326008)(8936002)(8676002)(36756003)(31686004)(66476007)(66946007)(66556008)(41300700001)(6486002)(235185007)(5660300002)(966005)(43740500002)(45980500001); DIR:OUT; SFP:1101;
X-MS-Exchange-AntiSpam-MessageData-ChunkCount: 1
X-MS-Exchange-AntiSpam-MessageData-0: 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
X-OriginatorOrg: ri.se
X-MS-Exchange-CrossTenant-Network-Message-Id: 9a91c550-ac7a-4ad5-2eb6-08da794e2dbd
X-MS-Exchange-CrossTenant-AuthSource: GVYP280MB0464.SWEP280.PROD.OUTLOOK.COM
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 08 Aug 2022 14:56:30.9223 (UTC)
X-MS-Exchange-CrossTenant-FromEntityHeader: Hosted
X-MS-Exchange-CrossTenant-Id: 5a9809cf-0bcb-413a-838a-09ecc40cc9e8
X-MS-Exchange-CrossTenant-MailboxType: HOSTED
X-MS-Exchange-CrossTenant-UserPrincipalName: gHaUdq1bnBdYQTMTeAsmDvmFuTwNKhs3J4WziphE3ogevEj60tTV505cW84zmS8JbZd0HB1YVURTgoMXt7Aj+w==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: GVYP280MB0256
Archived-At: <https://mailarchive.ietf.org/arch/msg/core/hsUFbrxGEqzcoqyRX6qktejfhac>
Subject: Re: [core] Request for registrations in the "OSCORE Flag Bits" registry (from draft-ietf-core-oscore-groupcomm; now off IANA tracker)
X-BeenThere: core@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "Constrained RESTful Environments \(CoRE\) Working Group list" <core.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/core>, <mailto:core-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/core/>
List-Post: <mailto:core@ietf.org>
List-Help: <mailto:core-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/core>, <mailto:core-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 08 Aug 2022 14:57:01 -0000

Hi all,

(with chair hat off)

On 2022-08-08 14:32, Christian Amsüss wrote:
> Hello KUDOS authors,
> hello CoRE,
>
> On Fri, Aug 05, 2022 at 06:16:19PM +0000, Amanda Baber via RT wrote:
>> draft-ietf-core-oscore-key-update's value 1 has been left out [...].
>> If we receive an early allocation request for that value, we will ask
>> you to confirm that it's OK.
> while the flags Group OSCORE and KUDOS need are on their way to
> allocation, the two bits reserved for value extension in RFC8613 will
> need early allocation, and thus an assessment of whether they're stable
> enough.
>
> In 8613, two bits 0 and 1 were reserved, with the vague expectation that
> bit 1 would be used to indicate further bytes; no use for bit 0 is
> indicated in the text. Thus, bit 0 would stay reserved.
>
> Does that expectation still align with our current understanding of how
> to extend this? Is there a plan for bit 0? If not, we could consider
> unreserving bit 1 (making it available for one more OSCORE extension),
> and using bit 0 (like, presumably, bits 8, 16, 24, 32, 40, 48 and 56) to
> indicate one more byte to come for consistentcy.

==>MT
So far, -core-oscore-key-update has always considered bit 1 for two reasons.

* Overall, we have been building on the allocation pattern used so far, 
i.e., allocating the rightmost available bit first. Note that bit 2 was 
already "taken" by -core-oscore-groupcomm.

* I can't say there is a "plan" about bit 0, but I have a memory of old 
discussions about the possible use of bit 0 to signal an uncompressed 
COSE Object transported in the OSCORE-protected message.

Except for these points, I think either bit would work fine for 
-core-oscore-key-update. Admittedly, if bit 0 could be used instead, I 
think that signaling the next Flag byte by means of bits (0, 8, 16, ...) 
would be nicer and more consistent.

Best,
/Marco
<==

>
> BR
> c

-- 
Marco Tiloca
Ph.D., Senior Researcher

Phone: +46 (0)70 60 46 501

RISE Research Institutes of Sweden AB
Box 1263
164 29 Kista (Sweden)

Division: Digital Systems
Department: Computer Science
Unit: Cybersecurity

https://www.ri.se