Re: [dtn-security] BSP ciphersuites

Sebastian Domancich <> Mon, 22 March 2010 08:22 UTC

Received: from ( []) by (8.13.8/8.13.8) with ESMTP id o2M8MTfW019837 for <>; Mon, 22 Mar 2010 01:22:30 -0700
Received: by bwz2 with SMTP id 2so1919254bwz.30 for <>; Mon, 22 Mar 2010 01:22:28 -0700 (PDT)
MIME-Version: 1.0
Received: by with SMTP id f5mr3770437bkf.59.1269246148383; Mon, 22 Mar 2010 01:22:28 -0700 (PDT)
In-Reply-To: <>
References: <> <> <>
Date: Mon, 22 Mar 2010 09:22:28 +0100
Message-ID: <>
From: Sebastian Domancich <>
To: Stephen Farrell <>
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 8bit
X-MIME-Autoconverted: from quoted-printable to 8bit by id o2M8MTfW019837
Subject: Re: [dtn-security] BSP ciphersuites
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: DTN Security Discussion <>
List-Unsubscribe: <>, <>
List-Archive: <>
List-Post: <>
List-Help: <>
List-Subscribe: <>, <>
X-List-Received-Date: Mon, 22 Mar 2010 08:22:36 -0000

Hey! Thanks for answering. Peter has kindly contacted me, and now I am
analyzing how to follow with the task.


On Fri, Mar 19, 2010 at 8:16 PM, Stephen Farrell
<> wrote:
> Hi Sebastian,
> I think right now, the only person that can answer that
> from experience is probably Peter Lovell who I think is
> unavailable for a few days, so just wait a little and I
> suspect you'll get an answer from him.
> If I were to guess, I'd say its probably a matter of
> putting the openssl generated key files in the right
> place with the right file names and the right format
> and I'd look in the code for hints about that.
> But if you hear nothing for a week or so ping the list
> again and I'll try get you an answer.
> S.
> On 03/18/2010 01:30 PM, Sebastian Domancich wrote:
>> Hey! Perhaps it would help if I add some context to my previous
>> question about using security in DTN2.
>> I belong to the Bytewalla project, which aims at providing DTN
>> connectivity to rural areas of Africa, by means of an Android
>> implementation of the Bundle Protocol.  Our project would fit under
>> the category of "Extending the Internet: Predetermined Mobility Paths
>> but No Hard Schedule", according to the terminology used by N4C to
>> specify usage scenarios for DTN.
>> In January 2010 our group published an Android Implementation of the
>> Bundle Protocol, being interoperable with the Reference Implementation
>> (DTN2). Our previous work can be found here:
>> Right now I am working on the security aspects of the project, and our
>> plan is to port the security mechanisms from DTN2 to our Android
>> implementation to provide confidentiality and privacy to the
>> communication.
>> I was wondering if anyone with experience on sending PSB and CB
>> protected bundles, could point me into the right direction.
>> Thank you in advance for your help.
>> Regards,
>> Sebastian Domancich.
>> On Wed, Mar 17, 2010 at 2:46 PM, Sebastian Domancich
>> <> wrote:
>>> Dear all,
>>> I am working on security in DTN2, to send and receive security protected
>>> bundles. I would like to ask for a piece of help.
>>> By setting the 20-byte symmetric key, I could send and receive hop-by-hop
>>> integrity protected bundles, using the BAB-HMAC ciphersuite and the
>>> "security setkey" command.
>>> In order to use the PSB (end-to-end integrity protection) and CB
>>> (confidentiality) ciphersuites, I read in a previous post in this list that
>>> we need to manage the keys using the KeySteward class. I have used OpenSSL
>>> to create the RSA public-private pairs. However, I could not figure out how
>>> to make use of the implemented functionality. I would like to ask you:
>>> *Is there any available code snippet where we make use of the KeySteward
>>> class to send and receive bundles with the PSB and the CB ciphersuites?
>>> Thank you in advance for your help!
>>> Regards,
>>> Sebastian Domancich
>>> Royal Institute of Technology
>>> Helsinki University of Technology
>> _______________________________________________
>> dtn-security mailing list