Re: [core] CoRE WG Virtual Interim 2021-04-28

John Mattsson <john.mattsson@ericsson.com> Thu, 29 April 2021 09:57 UTC

Return-Path: <john.mattsson@ericsson.com>
X-Original-To: core@ietfa.amsl.com
Delivered-To: core@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 000133A3843 for <core@ietfa.amsl.com>; Thu, 29 Apr 2021 02:57:53 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.102
X-Spam-Level:
X-Spam-Status: No, score=-2.102 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ericsson.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id StTY6T5XkJfR for <core@ietfa.amsl.com>; Thu, 29 Apr 2021 02:57:48 -0700 (PDT)
Received: from EUR01-HE1-obe.outbound.protection.outlook.com (mail-eopbgr130048.outbound.protection.outlook.com [40.107.13.48]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A8D9F3A3844 for <core@ietf.org>; Thu, 29 Apr 2021 02:57:48 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=hROtHY9/49Fzhzx9wDqs1nB3wk3gCOW01ULqCvENeapDel9ni7W2Dl1d4RbhCxobg7IQui0v8BN/m+p4di6q1/S1GgBK0bwfWtLA/mbW8381IVVwtHT9YfUXcIVBHfYRVyJORKdmKzzxc0SI9swXJgcFSCriIJQADGWWfFvODTaoYUfSVgnV8AvZcmpgs4RnQ+t6d/VRPRCxySI3MjzZNI89O3M++kweeIhqZjv0CvnM0AhXsuf3GEQeLM1GbPV0SvDXlruDC8oC0+n0yc5UcU3KrxZwnAa04qdZfD94iaEhuyqGO5MjY5EMFL98H16dT+qgelk04kXv3DvpxU9ASQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=ppHMs5YqpUcIEzECSNkRsaoD0Qi6OrmVcr1piHOa3Dw=; b=VIANas2Xhjd/EJcSjfNCYZ0kxQy/k8mv/NduDgIfgbgCoQ2Uwslre6zsUwYplJZo8kVEd7g6PsyIWetOpdl6xMIylhhQjPlAE9r0WcsadLyohyGSlex1TpVnzpg8UhNs0OXK3QtWKFu2MHkc9oSxBh27xqRlJw/2bbE1tkCNxlS6omBrNIMp4RewAYfA70jTVG/7M1Yr3NNMe/vL7QHiv1npO8PUiYB3ryRswnMFEeMVLhX9+SFL5CYOOPDeLvlsCaImV83PDYsTsinM2Vf3j/v1e4qj7T4o3i1fpuNdKvY0rOu+mjMzzO/Hrgb7J4wxglavQO9xLgA3+wOW8mv+zw==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=ericsson.com; dmarc=pass action=none header.from=ericsson.com; dkim=pass header.d=ericsson.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ericsson.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=ppHMs5YqpUcIEzECSNkRsaoD0Qi6OrmVcr1piHOa3Dw=; b=tHaN+Mh4RPEKgNbMkc/X/xThqGEeL/WmB6yzqQnGM+4ahmb8f9q0BLTTwLQIbdUasI8VEbHSDF8DdSxMAJ/iKevgd1Pyqe7uJaElojTJ+YGM43Xn+g7ZhTD7Y543Pe6pVIASBkBlkT305+xsZy3Pes/JIPqYwnKqcyjp3KJvXfc=
Received: from HE1PR0701MB3050.eurprd07.prod.outlook.com (2603:10a6:3:4b::8) by HE1PR07MB3193.eurprd07.prod.outlook.com (2603:10a6:7:35::33) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.4087.19; Thu, 29 Apr 2021 09:57:45 +0000
Received: from HE1PR0701MB3050.eurprd07.prod.outlook.com ([fe80::b071:a4a:817d:2d3]) by HE1PR0701MB3050.eurprd07.prod.outlook.com ([fe80::b071:a4a:817d:2d3%11]) with mapi id 15.20.4087.025; Thu, 29 Apr 2021 09:57:45 +0000
From: John Mattsson <john.mattsson@ericsson.com>
To: Marco Tiloca <marco.tiloca@ri.se>, "core@ietf.org WG (core@ietf.org)" <core@ietf.org>
Thread-Topic: [core] CoRE WG Virtual Interim 2021-04-28
Thread-Index: AQHXNsiCCFaD/+DjsUKQH1vRAF1Q/qrJ35qAgAGQjwA=
Date: Thu, 29 Apr 2021 09:57:45 +0000
Message-ID: <008617DF-D15B-4597-A7B4-F13E3B06C95F@ericsson.com>
References: <9c14ea30-3f76-f840-7e7b-901dcb1c8678@ri.se> <69df215a-b7de-c837-75ee-d118af8b9304@ri.se>
In-Reply-To: <69df215a-b7de-c837-75ee-d118af8b9304@ri.se>
Accept-Language: en-US
Content-Language: en-GB
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/16.48.21041102
authentication-results: ri.se; dkim=none (message not signed) header.d=none;ri.se; dmarc=none action=none header.from=ericsson.com;
x-originating-ip: [81.225.97.222]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: bf564412-cb53-4f20-461e-08d90af53cd8
x-ms-traffictypediagnostic: HE1PR07MB3193:
x-microsoft-antispam-prvs: <HE1PR07MB31935289A21ADF98BA94E29A895F9@HE1PR07MB3193.eurprd07.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:4502;
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:HE1PR0701MB3050.eurprd07.prod.outlook.com; PTR:; CAT:NONE; SFS:(4636009)(136003)(366004)(39860400002)(396003)(346002)(376002)(6486002)(2906002)(71200400001)(478600001)(33656002)(5660300002)(8676002)(966005)(66946007)(6506007)(2616005)(66574015)(66556008)(64756008)(66476007)(76116006)(6512007)(66446008)(110136005)(316002)(36756003)(44832011)(122000001)(26005)(83380400001)(38100700002)(16799955002)(186003)(86362001)(53546011)(8936002)(45980500001); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata: =?utf-8?B?QUZGcmp1UkF5Kzk2OWpmVk9BOGJmNklueE1qS3ZreWVYUTVHYUJuQURlK1N0?= =?utf-8?B?ZDhrYlEyT1ZTSTlFUHdGcjZqM01vaHU5aHJPTm1TSDVwZVBQUk5SYS9xVGZq?= =?utf-8?B?MzRNWnFoeHAweU4wSU5Cb1NEWm03V1FTYlpSZFZhQ2d4T0NRUnZlQlM1T2pQ?= =?utf-8?B?RjMweFR1Sk0xNUhQVTF5bXFBMTdSTmtBNkhlbFFBRm14Ym01Y2lWTjhKVkNH?= =?utf-8?B?UkEvSm5CVWtTNmJJcU1pRG5UalNSbEVWb0kyRDU5aE92MGRIelJ5Mm9qZDhV?= =?utf-8?B?SHlycXpoRzBGWW0rUkNDMEZNOHloSzVGM1ZxckhydzgyMnRya2RDM3E3NUhJ?= =?utf-8?B?dEtXZ1ZaWGtVVkI2ZVJ3U3FkT1d4dUdQNGdyMTNxUWJuSkRzNWM4Wm5YeGh1?= =?utf-8?B?eWJLQkpDYjFCTmluSnhpWklBL0ZZZ2pMMXE5Z2hteTNDVnpEbFRZL04rOWxX?= =?utf-8?B?U1NiTDY4RXdFT2h2WmM1R1g0Y1pFYm1wdW5LWjhHQzNialhOZ0hkTnJtaFFa?= =?utf-8?B?NTlzeklZRTdmbWFFRmNvMmVhenRxUERiY09XWnJheTNMc2lVRE9qM2FOQjJE?= =?utf-8?B?Q2N2NW9EcndqM3kyTlV5aDVEMzZnMytOMU8xamt3NER6ckRFeWNSZ0VLRzV3?= =?utf-8?B?cjRuWXpmTVIxQVY3RzJoY2ZLckMxNThQVjlERkdHNkpCa0hnUUJWT2tibEZ6?= =?utf-8?B?RC9vbnVTc1pGcEE5ZVNUcmRsd0JVZ2JHdFZqMVVhQ1ZJMHZQcmh3bFJmQTBr?= =?utf-8?B?M1JFcGN1d0lSSVJ5MDJ6RUc3MkM3K0pCYjlLUkNPUTNTMXlsQkphRklzaFZG?= =?utf-8?B?cDBCOWl0Sk1YT0xvaG5QakNvcy9nUW5yY1kyNFNaZHNjcjBkWVR3TFdIZk16?= =?utf-8?B?TkRwaWdNbm1sRzFEejRLanREOHh0dzBxZHhueUNvRHpJT2tlQ1NvNXdBVXE0?= =?utf-8?B?UXdXOWcxZTdIaEIyNUNVcENlaXZlUkN6TkdwcGY2U1VoVk5FQWZYVGp2UC9o?= =?utf-8?B?RXA5SW83VVRlT1p1NVVCd2FrRTErTXNNZ0VyL1pNZmd1S2piUWZHYWNZUStj?= =?utf-8?B?R3Z1VEtPd2tjMmhVdTBwOTRiUkZUdXdBV0FuRWdodjAvakZLZlpCaEJHR1oy?= =?utf-8?B?YVJzSE5VZFY3SzhPTTFQK0hXRHdTRW9vUjFwRE5BTkh1K3NidXRxVmlBRUZs?= =?utf-8?B?Mkh5Y0czQVptQ2ZSUXl2MStFd1k3QnQ5N0p1alJPemFUV0ZTUkR1NGJFdUtF?= =?utf-8?B?TWF5ZjBYUVFVQ0pCOHNMenI5azFiMDJzNkxmdE9qUVAxK3lmZUd3c05PVXUw?= =?utf-8?B?VDh4NW0yL1lSM05nM1R6QVFOelBPeVRGNys5d2N4REhFMUhFbTZDUHBXOEc0?= =?utf-8?B?SmlVU0pBR0xpMGN4K2JwZlppZnNuREFxMFFESWV5UjltKy92UDlRcC9lRjNN?= =?utf-8?B?cjYyZytaS0loMWZxV3RPeG9JWjE1VmhoOEFJV0ZPeGZrRmFOSm1CZlpnOWY2?= =?utf-8?B?YmJxRWdWUDNwRmFkVzVhTG5wdGV2RWM0T3FRN1hZR0gwR1k4UmRKQ1k3eVZE?= =?utf-8?B?dlQzb1hSY3haSjVDQ1YrWUc2TnJudFJ3VE9mRks2WGxSYysvblZtakhaRmxn?= =?utf-8?B?cUl2cEJ1NElHQ2xLN3prdjhpM1VTNVFWMVdiUlJuQ3orTlpOU0NTY1RTMmJC?= =?utf-8?B?R1RhSGJDN0FydlpDZWI3dVpybmdEM2hVaUxJWkx0cWJUd0dzVllwaC92aEIz?= =?utf-8?Q?rIYs/TZvkZ9CPRrOl1884dSUeV92H/g/aJ4G5Yo?=
x-ms-exchange-transport-forked: True
Content-Type: text/plain; charset="utf-8"
Content-ID: <FA9BE4152AFF984D997630497FA6BF16@eurprd07.prod.outlook.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: ericsson.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: HE1PR0701MB3050.eurprd07.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: bf564412-cb53-4f20-461e-08d90af53cd8
X-MS-Exchange-CrossTenant-originalarrivaltime: 29 Apr 2021 09:57:45.2668 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 92e84ceb-fbfd-47ab-be52-080c6b87953f
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: x2TH568e9YN9HfcOqCSAlOq+G4/0ggpooFlHncsFmd6cN6ZV3zDwvSBM7wJOft9rlXpQ/BmYTRhb/+PCJV4qzArOkuXHH3geEXTRjh64n5Y=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: HE1PR07MB3193
Archived-At: <https://mailarchive.ietf.org/arch/msg/core/kRwdiI25ROW1dIzO2o1b0OwsJLk>
Subject: Re: [core] CoRE WG Virtual Interim 2021-04-28
X-BeenThere: core@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Constrained RESTful Environments \(CoRE\) Working Group list" <core.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/core>, <mailto:core-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/core/>
List-Post: <mailto:core@ietf.org>
List-Help: <mailto:core-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/core>, <mailto:core-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 29 Apr 2021 09:57:54 -0000

Hi,

Below are my thoughts after the interim yesterday:

- Two equally important reasons to rekey, AEAD limits and forward secrecy. A document
  updating OSCORE should treat both with equal weight.
- Frequent rekeying require efficient rekeying, should be published together.
- Other questions like error messages etc., needs to be specified at the same time.
- The limit setting process used in TLS is flawed and should probably not be used at all.
- The limits in TLS are secure, any limits equal or lower does not need motivation.
- Poly1305 v, GCM v, ChaCha20 q does not need any AEAD limits at all.
- CCM v, CCM q, GCM q should be rekeyed around 2^23 - 2^24.5 like in TLS
- CCM_8 v could be used much longer, maybe 2^35 
- Should consider lowering l and CCM q compared to TLS to make CCM_8 behave even more like perfect MAC (right now the attacker can look at 2^23 messages and then send a single forgery attempt). This single forgery attempt succeds with probability 2^60.
- Might be easier to set simple limit of q, v = 2^20 or 2^23 for all algorithms.
- The limit l = 2^10 is measured in blocks (worst case), In bytes the limit is
  2^10 * 2^4 = 2^14 bytes = 16 kB.
- Can be discussed which limits should be MUST or SHOULD.
- Focus on discussion needs to be on how q,v,l limits and rekeying affect applications.

Cheers,
John

-----Original Message-----
From: core <core-bounces@ietf.org> on behalf of Marco Tiloca <marco.tiloca@ri.se>
Date: Wednesday, 28 April 2021 at 14:04
To: "core@ietf.org WG (core@ietf.org)" <core@ietf.org>
Subject: Re: [core] CoRE WG Virtual Interim 2021-04-28

Dear all,

Just a reminder that we are having our virtual interim meeting in 
slightly less than 2 hours [1].

Please find below the information to join.

Best,
Marco and Jaime

[1] https://datatracker.ietf.org/meeting/interim-2021-core-04/session/core


=== Meeting Information ===

Jabber: core@jabber.ietf.org

Etherpad: https://codimd.ietf.org/notes-ietf-interim-2021-core-04-core

Meeting link: 
https://ietf.webex.com/ietf/j.php?MTID=m888a990760425271a1327f53c6714b07

Meeting number: 185 248 9231
Password: constrained


More ways to join

Join by video system
Dial 1852489231@ietf.webex.com
You can also dial 173.243.2.68 and enter your meeting number.

Join by phone
1-650-479-3208 Call-in number (US/Canada)
Access code: 185 248 9231


On 2021-04-21 18:07, Marco Tiloca wrote:
> Dear all,
>
> Just a reminder that we'll have a virtual interim meeting on 
> Wednesday, April 28th at 14:00 UTC. The agenda is available at [1].
>
> Best,
> Marco and Jaime
>
> [1] 
> https://datatracker.ietf.org/meeting/interim-2021-core-04/session/core
>

-- 
Marco Tiloca
Ph.D., Senior Researcher

Division: Digital System
Department: Computer Science
Unit: Cybersecurity

RISE Research Institutes of Sweden
https://protect2.fireeye.com/v1/url?k=4c4a5987-13d16165-4c4a191c-86073b36ea28-2adec21f03723771&q=1&e=dc609331-6b2f-490c-b545-f937c703f065&u=https%3A%2F%2Fwww.ri.se%2F

Phone: +46 (0)70 60 46 501
Isafjordsgatan 22 / Kistagången 16
SE-164 40 Kista (Sweden)