[dtn-security] BSP ciphersuites

Sebastian Domancich <sebasdoman@gmail.com> Wed, 17 March 2010 13:46 UTC

Received: from mail-ew0-f211.google.com (mail-ew0-f211.google.com [209.85.219.211]) by maillists.intel-research.net (8.13.8/8.13.8) with ESMTP id o2HDkGxS018079 for <dtn-security@maillists.intel-research.net>; Wed, 17 Mar 2010 06:46:16 -0700
Received: by ewy3 with SMTP id 3so402861ewy.6 for <dtn-security@maillists.intel-research.net>; Wed, 17 Mar 2010 06:46:15 -0700 (PDT)
MIME-Version: 1.0
Received: by 10.216.89.84 with SMTP id b62mr272664wef.226.1268833574942; Wed, 17 Mar 2010 06:46:14 -0700 (PDT)
Date: Wed, 17 Mar 2010 14:46:14 +0100
Message-ID: <8b1d0f5e1003170646w612258aclf68d723eb390c26e@mail.gmail.com>
From: Sebastian Domancich <sebasdoman@gmail.com>
To: dtn-security@maillists.intel-research.net
Content-Type: multipart/alternative; boundary=0016e6d9710283797d0481ff5646
Subject: [dtn-security] BSP ciphersuites
X-BeenThere: dtn-security@maillists.intel-research.net
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: DTN Security Discussion <dtn-security.maillists.intel-research.net>
List-Unsubscribe: <http://maillists.intel-research.net/mailman/listinfo/dtn-security>, <mailto:dtn-security-request@maillists.intel-research.net?subject=unsubscribe>
List-Archive: <http://maillists.intel-research.net/pipermail/dtn-security>
List-Post: <mailto:dtn-security@maillists.intel-research.net>
List-Help: <mailto:dtn-security-request@maillists.intel-research.net?subject=help>
List-Subscribe: <http://maillists.intel-research.net/mailman/listinfo/dtn-security>, <mailto:dtn-security-request@maillists.intel-research.net?subject=subscribe>
X-List-Received-Date: Wed, 17 Mar 2010 13:46:17 -0000

Dear all,

I am working on security in DTN2, to send and receive security protected
bundles. I would like to ask for a piece of help.

By setting the 20-byte symmetric key, I could send and receive hop-by-hop
integrity protected bundles, using the BAB-HMAC ciphersuite and the
"security setkey" command.

In order to use the PSB (end-to-end integrity protection) and CB
(confidentiality) ciphersuites, I read in a previous post in this list that
we need to manage the keys using the KeySteward class. I have used OpenSSL
to create the RSA public-private pairs. However, I could not figure out how
to make use of the implemented functionality. I would like to ask you:

*Is there any available code snippet where we make use of the KeySteward
class to send and receive bundles with the PSB and the CB ciphersuites?

Thank you in advance for your help!

Regards,

Sebastian Domancich

Royal Institute of Technology

Helsinki University of Technology