Re: [dtn-security] BSP ciphersuites

Sebastian Domancich <sebasdoman@gmail.com> Mon, 22 March 2010 08:22 UTC

Received: from mail-bw0-f210.google.com (mail-bw0-f210.google.com [209.85.218.210]) by maillists.intel-research.net (8.13.8/8.13.8) with ESMTP id o2M8MTfW019837 for <dtn-security@maillists.intel-research.net>; Mon, 22 Mar 2010 01:22:30 -0700
Received: by bwz2 with SMTP id 2so1919254bwz.30 for <dtn-security@maillists.intel-research.net>; Mon, 22 Mar 2010 01:22:28 -0700 (PDT)
MIME-Version: 1.0
Received: by 10.204.8.5 with SMTP id f5mr3770437bkf.59.1269246148383; Mon, 22 Mar 2010 01:22:28 -0700 (PDT)
In-Reply-To: <4BA3CD9F.4000901@cs.tcd.ie>
References: <8b1d0f5e1003170646w612258aclf68d723eb390c26e@mail.gmail.com> <8b1d0f5e1003180630w2fa43438se67dfd68600faac0@mail.gmail.com> <4BA3CD9F.4000901@cs.tcd.ie>
Date: Mon, 22 Mar 2010 09:22:28 +0100
Message-ID: <8b1d0f5e1003220122t76000177l3c23904dd892347a@mail.gmail.com>
From: Sebastian Domancich <sebasdoman@gmail.com>
To: Stephen Farrell <stephen.farrell@cs.tcd.ie>
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 8bit
X-MIME-Autoconverted: from quoted-printable to 8bit by maillists.intel-research.net id o2M8MTfW019837
Cc: dtn-security@maillists.intel-research.net
Subject: Re: [dtn-security] BSP ciphersuites
X-BeenThere: dtn-security@maillists.intel-research.net
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: DTN Security Discussion <dtn-security.maillists.intel-research.net>
List-Unsubscribe: <http://maillists.intel-research.net/mailman/listinfo/dtn-security>, <mailto:dtn-security-request@maillists.intel-research.net?subject=unsubscribe>
List-Archive: <http://maillists.intel-research.net/pipermail/dtn-security>
List-Post: <mailto:dtn-security@maillists.intel-research.net>
List-Help: <mailto:dtn-security-request@maillists.intel-research.net?subject=help>
List-Subscribe: <http://maillists.intel-research.net/mailman/listinfo/dtn-security>, <mailto:dtn-security-request@maillists.intel-research.net?subject=subscribe>
X-List-Received-Date: Mon, 22 Mar 2010 08:22:36 -0000

Hey! Thanks for answering. Peter has kindly contacted me, and now I am
analyzing how to follow with the task.

Regards,
Sebastian.

On Fri, Mar 19, 2010 at 8:16 PM, Stephen Farrell
<stephen.farrell@cs.tcd.ie> wrote:
>
> Hi Sebastian,
>
> I think right now, the only person that can answer that
> from experience is probably Peter Lovell who I think is
> unavailable for a few days, so just wait a little and I
> suspect you'll get an answer from him.
>
> If I were to guess, I'd say its probably a matter of
> putting the openssl generated key files in the right
> place with the right file names and the right format
> and I'd look in the code for hints about that.
>
> But if you hear nothing for a week or so ping the list
> again and I'll try get you an answer.
>
> S.
>
> On 03/18/2010 01:30 PM, Sebastian Domancich wrote:
>> Hey! Perhaps it would help if I add some context to my previous
>> question about using security in DTN2.
>>
>> I belong to the Bytewalla project, which aims at providing DTN
>> connectivity to rural areas of Africa, by means of an Android
>> implementation of the Bundle Protocol.  Our project would fit under
>> the category of "Extending the Internet: Predetermined Mobility Paths
>> but No Hard Schedule", according to the terminology used by N4C to
>> specify usage scenarios for DTN.
>>
>> In January 2010 our group published an Android Implementation of the
>> Bundle Protocol, being interoperable with the Reference Implementation
>> (DTN2). Our previous work can be found here:
>> http://www.tslab.ssvl.kth.se/csd/projects/092106/
>>
>> Right now I am working on the security aspects of the project, and our
>> plan is to port the security mechanisms from DTN2 to our Android
>> implementation to provide confidentiality and privacy to the
>> communication.
>>
>> I was wondering if anyone with experience on sending PSB and CB
>> protected bundles, could point me into the right direction.
>>
>> Thank you in advance for your help.
>>
>> Regards,
>> Sebastian Domancich.
>>
>> On Wed, Mar 17, 2010 at 2:46 PM, Sebastian Domancich
>> <sebasdoman@gmail.com> wrote:
>>> Dear all,
>>>
>>> I am working on security in DTN2, to send and receive security protected
>>> bundles. I would like to ask for a piece of help.
>>>
>>> By setting the 20-byte symmetric key, I could send and receive hop-by-hop
>>> integrity protected bundles, using the BAB-HMAC ciphersuite and the
>>> "security setkey" command.
>>>
>>> In order to use the PSB (end-to-end integrity protection) and CB
>>> (confidentiality) ciphersuites, I read in a previous post in this list that
>>> we need to manage the keys using the KeySteward class. I have used OpenSSL
>>> to create the RSA public-private pairs. However, I could not figure out how
>>> to make use of the implemented functionality. I would like to ask you:
>>>
>>> *Is there any available code snippet where we make use of the KeySteward
>>> class to send and receive bundles with the PSB and the CB ciphersuites?
>>>
>>> Thank you in advance for your help!
>>>
>>> Regards,
>>>
>>> Sebastian Domancich
>>>
>>> Royal Institute of Technology
>>>
>>> Helsinki University of Technology
>>>
>> _______________________________________________
>> dtn-security mailing list
>> dtn-security@maillists.intel-research.net
>> http://maillists.intel-research.net/mailman/listinfo/dtn-security
>>
>