IETF Logo Mail Archive

Re: [Emu] Review of draft-ietf-emu-eap-gpsk-08 (1st roundof comments)

"Joseph Salowey (jsalowey)" <jsalowey@cisco.com> Tue, 05 August 2008 19:35 UTC

Return-Path: <emu-bounces@ietf.org>
X-Original-To: emu-archive@megatron.ietf.org
Delivered-To: ietfarch-emu-archive@core3.amsl.com
Received: from [127.0.0.1] (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 65D923A6AC0; Tue, 5 Aug 2008 12:35:30 -0700 (PDT)
X-Original-To: emu@core3.amsl.com
Delivered-To: emu@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 9D3403A6A9B for <emu@core3.amsl.com>; Tue, 5 Aug 2008 12:35:28 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.599
X-Spam-Level:
X-Spam-Status: No, score=-6.599 tagged_above=-999 required=5 tests=[AWL=0.000, BAYES_00=-2.599, RCVD_IN_DNSWL_MED=-4]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id uxCdUM-FKsYR for <emu@core3.amsl.com>; Tue, 5 Aug 2008 12:35:27 -0700 (PDT)
Received: from sj-iport-2.cisco.com (sj-iport-2.cisco.com [171.71.176.71]) by core3.amsl.com (Postfix) with ESMTP id 6B8AB3A6A7D for <emu@ietf.org>; Tue, 5 Aug 2008 12:35:27 -0700 (PDT)
X-IronPort-AV: E=Sophos;i="4.31,312,1215388800"; d="scan'208";a="72410190"
Received: from sj-dkim-3.cisco.com ([171.71.179.195]) by sj-iport-2.cisco.com with ESMTP; 05 Aug 2008 19:35:58 +0000
Received: from sj-core-4.cisco.com (sj-core-4.cisco.com [171.68.223.138]) by sj-dkim-3.cisco.com (8.12.11/8.12.11) with ESMTP id m75JZudO008287; Tue, 5 Aug 2008 12:35:56 -0700
Received: from xbh-sjc-211.amer.cisco.com (xbh-sjc-211.cisco.com [171.70.151.144]) by sj-core-4.cisco.com (8.13.8/8.13.8) with ESMTP id m75JZuO8001914; Tue, 5 Aug 2008 19:35:56 GMT
Received: from xmb-sjc-225.amer.cisco.com ([128.107.191.38]) by xbh-sjc-211.amer.cisco.com with Microsoft SMTPSVC(6.0.3790.1830); Tue, 5 Aug 2008 12:35:47 -0700
X-MimeOLE: Produced By Microsoft Exchange V6.5
Content-class: urn:content-classes:message
MIME-Version: 1.0
Date: Tue, 05 Aug 2008 12:36:21 -0700
Message-ID: <AC1CFD94F59A264488DC2BEC3E890DE506469045@xmb-sjc-225.amer.cisco.com>
In-Reply-To: <20080802075359.GA5504@jm.kir.nu>
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
Thread-Topic: [Emu] Review of draft-ietf-emu-eap-gpsk-08 (1st roundof comments)
thread-index: Acj0dWj2OxOIiCrmSGiVhAuQcxU6mgCsbnUA
References: <47E95784.8060407@cs.umd.edu> <486501B9.1060601@cs.umd.edu><1696498986EFEC4D9153717DA325CB720112AAB1@vaebe104.NOE.Nokia.com><486F8C8E.5030207@gmx.net><1696498986EFEC4D9153717DA325CB72012C1584@vaebe104.NOE.Nokia.com><488F020D.9090801@umd.edu><1696498986EFEC4D9153717DA325CB72013BAB71@vaebe104.NOE.Nokia.com><488F4512.7040706@cs.umd.edu> <20080802075359.GA5504@jm.kir.nu>
From: "Joseph Salowey (jsalowey)" <jsalowey@cisco.com>
To: Jouni Malinen <j@w1.fi>, Charles Clancy <clancy@cs.umd.edu>
X-OriginalArrivalTime: 05 Aug 2008 19:35:47.0197 (UTC) FILETIME=[75827AD0:01C8F732]
DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; l=1533; t=1217964956; x=1218828956; c=relaxed/simple; s=sjdkim3002; h=Content-Type:From:Subject:Content-Transfer-Encoding:MIME-Version; d=cisco.com; i=jsalowey@cisco.com; z=From:=20=22Joseph=20Salowey=20(jsalowey)=22=20<jsalowey@ci sco.com> |Subject:=20RE=3A=20[Emu]=20Review=20of=20draft-ietf-emu-ea p-gpsk-08=20(1st=20roundof=09comments) |Sender:=20; bh=L1Ou0qup5k9oJxkraE4/txaOfcWMPqhBgS61tDebN48=; b=iNMgwV9MAqPpeGVeKVihsZE7S+iUGP0UrA5Q+D44cfDpf12UZjalJX155A BsUJFDpbhoVNS7aQJBAaBj3ouiIQ0WleZ9riu03Khz2k0O5BjzdVZr9r1P0C dRDI/V5mLt;
Authentication-Results: sj-dkim-3; header.From=jsalowey@cisco.com; dkim=pass ( sig from cisco.com/sjdkim3002 verified; );
Cc: Pasi.Eronen@nokia.com, emu@ietf.org
Subject: Re: [Emu] Review of draft-ietf-emu-eap-gpsk-08 (1st roundof comments)
X-BeenThere: emu@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: "EAP Methods Update \(EMU\)" <emu.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/emu>, <mailto:emu-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/pipermail/emu>
List-Post: <mailto:emu@ietf.org>
List-Help: <mailto:emu-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/emu>, <mailto:emu-request@ietf.org?subject=subscribe>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Sender: emu-bounces@ietf.org
Errors-To: emu-bounces@ietf.org

If we make the change below then we also have to change section 12.9.  I
think this is a bit problematic since at one point we had consensus to
address the issues on client state avoidance raised by folks at
Stanford.  The goal was that the peer could store its nonce on a
per-server basis rather than on a per-message basis.  Since the peer is
only going to have shared secrets for a limited number of servers this
could reduce the amount of state that needed to be kept. 

I don't see the value of matching the RAND_Server on the peer so I would
modify Jouni's text as follows:

   "For GPSK-3, a peer MUST silently discard messages where the
   RAND_Peer or the CSuite_Sel fields do not match
   those transmitted in GPSK-2.  An EAP peer MUST silently discard any
   packet whose MAC fails."

The text for section 12.9 the third paragraph needs to be clarified:

   "The client has to keep state information after receiving the GPSK-1
   message.  To prevent a replay attack, all the client needs to do is
   to ensure that the value of RAND_Peer is consistent between GPSK-2
   and GPSK-3.  Message GPSK-3 contains all the material required to re-
   compute the keying material.  Thus, if a client chooses to implement
   this client-side DoS protection mechanism it may manage RAND_Peer and

   Csuite_Sel on a per-server basis for servers it knows instead of on a
   per-message basis."  

Does this help?  Is there a reason the peer would need to track
RAND_Server?  

Thanks,

Joe 
_______________________________________________
Emu mailing list
Emu@ietf.org
https://www.ietf.org/mailman/listinfo/emu

v2.23.0 | Report a Bug | By Email