Re: [dtn-security] Authentication and Authorization in DTN

Stephen Farrell <stephen.farrell@cs.tcd.ie> Tue, 04 November 2008 15:33 UTC

Received: from mail.newbay.com (87-198-172-198.ptr.magnet.ie [87.198.172.198]) by maillists.intel-research.net (8.13.8/8.13.8) with ESMTP id mA4FXcKq011206 for <dtn-security@maillists.intel-research.net>; Tue, 4 Nov 2008 07:33:39 -0800
Received: from localhost (localhost.localdomain [127.0.0.1]) by mail.newbay.com (Postfix) with ESMTP id BC6AB10040740; Tue, 4 Nov 2008 15:20:27 +0000 (GMT)
X-Virus-Scanned: amavisd-new at newbay.com
Received: from mail.newbay.com ([127.0.0.1]) by localhost (mail.newbay.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id SDsUBuZ7H379; Tue, 4 Nov 2008 15:20:27 +0000 (GMT)
Received: from [192.168.3.126] (unknown [192.168.3.126]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by mail.newbay.com (Postfix) with ESMTP id A772F1004073D; Tue, 4 Nov 2008 15:20:26 +0000 (GMT)
Message-ID: <491068AA.7050509@cs.tcd.ie>
Date: Tue, 04 Nov 2008 15:22:18 +0000
From: Stephen Farrell <stephen.farrell@cs.tcd.ie>
User-Agent: Thunderbird 2.0.0.16 (X11/20080707)
MIME-Version: 1.0
To: "Scott, Keith L." <kscott@mitre.org>
References: <CF86AD7CB914184B9DE2AB3061F43FB0013E9305@EVS-EC1-NODE2.surrey.ac.uk> <EAD5C58F27640B429D87C4663AFE353502619D91@IMCSRV1.MITRE.ORG>
In-Reply-To: <EAD5C58F27640B429D87C4663AFE353502619D91@IMCSRV1.MITRE.ORG>
X-Enigmail-Version: 0.95.7
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit
Cc: dtn-security@maillists.intel-research.net, E.Johnson@surrey.ac.uk
Subject: Re: [dtn-security] Authentication and Authorization in DTN
X-BeenThere: dtn-security@maillists.intel-research.net
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: DTN Security Discussion <dtn-security.maillists.intel-research.net>
List-Unsubscribe: <http://maillists.intel-research.net/mailman/listinfo/dtn-security>, <mailto:dtn-security-request@maillists.intel-research.net?subject=unsubscribe>
List-Archive: <http://maillists.intel-research.net/pipermail/dtn-security>
List-Post: <mailto:dtn-security@maillists.intel-research.net>
List-Help: <mailto:dtn-security-request@maillists.intel-research.net?subject=help>
List-Subscribe: <http://maillists.intel-research.net/mailman/listinfo/dtn-security>, <mailto:dtn-security-request@maillists.intel-research.net?subject=subscribe>
X-List-Received-Date: Tue, 04 Nov 2008 15:33:39 -0000

Well, I'd love to see someone try to tackle key mgmt anyway
(there's an expired I-D with some requirements there).

As Keith also said fragmentation mixed with security is also
crying out for some better solution.

There's also some (possibly easier) work that could be done
on authorization, e.g. looking at how one might do something
analagous to RADIUS in DTNs. (In particular, answering the
question: "why should I take your bundles into custody?")

S.

Scott, Keith L. wrote:
> The DTN architecture document (RFC4838) discusses DTN security, and
> there are a couple of internet drafts (draft-irtf-dtnrg-sec-overview-05
> and draft-irtf-dtnrg-bundle-security-06).
> 
>  
> 
> There’s not been a lot of work done in how to do key management in
> DTNs.  Perhaps someone more knowledgeable than I could reply with a
> concise description of the problem and issues.
> 
>  
> 
> There’s also no satisfactory (IMHO) resolution between the Bundle
> Authentication Block processing and reactive fragmentation.
> 
>  
> 
>                                 --keith
> 
>  
> 
> *From:* dtn-security-bounces@maillists.intel-research.net
> [mailto:dtn-security-bounces@maillists.intel-research.net] *On Behalf Of
> *E.Johnson@surrey.ac.uk
> *Sent:* Tuesday, November 04, 2008 8:55 AM
> *To:* dtn-security@maillists.intel-research.net
> *Subject:* [dtn-security] Authentication and Authorization in DTN
> 
>  
> 
> Hi All,
> I am new to the mailing list and will first of all like to say hi to
> everybody. I am at presenting carrying out a research in DTN Security
> with emphasis on Authentication and Authorization. I will like to know
> if anybody has done anything research area. Imput and advice will be
> appreciated
> 
> Thank you
> 
> EH Johnson
> 
> 
> ------------------------------------------------------------------------
> 
> _______________________________________________
> dtn-security mailing list
> dtn-security@maillists.intel-research.net
> http://maillists.intel-research.net/mailman/listinfo/dtn-security