IETF Logo Mail Archive

[Emu] EDHOC rekey

Rafa Marin-Lopez <rafa@um.es> Sun, 22 January 2023 18:08 UTC

Return-Path: <rafa@um.es>
X-Original-To: emu@ietfa.amsl.com
Delivered-To: emu@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 07641C14CE45; Sun, 22 Jan 2023 10:08:00 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.113
X-Spam-Level:
X-Spam-Status: No, score=-1.113 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, PDS_RDNS_DYNAMIC_FP=0.001, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, RDNS_DYNAMIC=0.982, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=no autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=um.es
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id yfxmgDe5g77M; Sun, 22 Jan 2023 10:07:54 -0800 (PST)
Received: from mx08-006a4e02.pphosted.com (mx08-006a4e02.pphosted.com [143.55.148.243]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 73D5DC14CE24; Sun, 22 Jan 2023 10:07:53 -0800 (PST)
Received: from pps.filterd (m0316698.ppops.net [127.0.0.1]) by mx08-006a4e02.pphosted.com (8.17.1.19/8.17.1.19) with ESMTP id 30MHur0S026784; Sun, 22 Jan 2023 19:07:52 +0100
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=um.es; h=from : content-type : mime-version : subject : message-id : date : cc : to; s=dkim3; bh=l9eUCmaeFJ7mpFaYfh+JXsZlJVOm3h5BSOaCK3ixpHo=; b=azzj3tzAWH+xZNkcmRr8OuJXFLDHEgk+xkHCO+NW09f/oWyo3igbmjBjmb3KYz/vJS9j UTJmCsP94aClRIG8npq2haJTAPuxpOLZiWion2vFKDvy4JAEk55UGXEVlLbEuHp+wsyK Ny0QpckkrQVMgVktmZV9m0yiw0wDY2h3nhNH3Igp9X92JGpP4PuhCI5U+ms1s9Ui27fP THaN99VLjX1nfGtPUlzrrfUXPHYpv552GmLttQ3wnwlymXXAIzfVZ9chNeaINjUqkd7a ET5OOTndl0nwMTHS9Jjw8OTuPvQpzePeNDFXm67Kogk95/J3QJ+HG3W9S3OKwzLyoL2L 0Q==
Received: from xenon41.um.es (xenon41.um.es [155.54.212.167]) by mx08-006a4e02.pphosted.com (PPS) with ESMTP id 3n8sf0xa6y-1; Sun, 22 Jan 2023 19:07:52 +0100
Received: from localhost (localhost [127.0.0.1]) by xenon41.um.es (Postfix) with ESMTP id A0B2920968; Sun, 22 Jan 2023 19:07:51 +0100 (CET)
X-Virus-Scanned: by antispam in UMU at xenon41.um.es
Received: from xenon41.um.es ([127.0.0.1]) by localhost (xenon41.um.es [127.0.0.1]) (amavisd-new, port 10024) with LMTP id Z1rFigB9SwwK; Sun, 22 Jan 2023 19:07:51 +0100 (CET)
Received: from smtpclient.apple (unknown [31.221.146.56]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) (Authenticated sender: rafa@um.es) by xenon41.um.es (Postfix) with ESMTPSA id 18FBB20909; Sun, 22 Jan 2023 19:07:50 +0100 (CET)
From: Rafa Marin-Lopez <rafa@um.es>
Content-Type: multipart/alternative; boundary="Apple-Mail=_F9FDFAD3-878E-4A1A-BED0-39216F3BBF61"
Mime-Version: 1.0 (Mac OS X Mail 16.0 \(3696.120.41.1.1\))
Message-Id: <4C655655-89F2-4274-81BC-BCF8C159136B@um.es>
Date: Sun, 22 Jan 2023 19:07:50 +0100
To: lake@ietf.org, EMU WG <emu@ietf.org>
X-Mailer: Apple Mail (2.3696.120.41.1.1)
X-Proofpoint-GUID: nDpxeFLYDkHjjpSD9mgV9UK7loNSMWBk
X-Proofpoint-ORIG-GUID: nDpxeFLYDkHjjpSD9mgV9UK7loNSMWBk
X-Proofpoint-Virus-Version: vendor=baseguard engine=ICAP:2.0.219,Aquarius:18.0.930,Hydra:6.0.562,FMLib:17.11.122.1 definitions=2023-01-22_14,2023-01-20_01,2022-06-22_01
X-Proofpoint-Spam-Details: rule=outbounddefault_notspam policy=outbounddefault score=0 suspectscore=0 phishscore=0 lowpriorityscore=0 priorityscore=1501 spamscore=0 mlxlogscore=605 mlxscore=0 clxscore=1011 impostorscore=0 adultscore=0 malwarescore=0 bulkscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.12.0-2212070000 definitions=main-2301220176
Archived-At: <https://mailarchive.ietf.org/arch/msg/emu/ymSr0nFt183n7HbBfjHJl6sGJZw>
Subject: [Emu] EDHOC rekey
X-BeenThere: emu@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "EAP Methods Update \(EMU\)" <emu.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/emu>, <mailto:emu-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/emu/>
List-Post: <mailto:emu@ietf.org>
List-Help: <mailto:emu-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/emu>, <mailto:emu-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 22 Jan 2023 18:08:00 -0000

Dear LAKE WG, EMU WG members:

We are in the process of updating EAP-EDHOC I-D, which uses EDHOC inside an EAP authentication.

https://datatracker.ietf.org/doc/draft-ingles-eap-edhoc/

We have been discussing internally about a resumption mechanism. A simple way to define this is doing it in the context of EAP-EDHOC by using Appendix J EDHOC-KeyUpdate. Having said this, I think it would be worth considering an EDHOC rekey exchange (i.e. involving 1 RTT), as something similar as, for example, IKEv2 does. This has the advantage that can be used in contexts different than EAP-EDHOC.

Thus, it is not clear whether we should design this in the context of EAP-EDHOC or, on the contrary, LAKE WG could discuss this in the future. In my humble opinion, discussing this in LAKE WG could allow defining this EDHOC rekey protocol in such a way that could be used in different uses cases as a generic contribution, not just in EAP-EDHOC.  

I would be willing to discuss (and contribute) if LAKE WG is in favor of considering this in the future.

Best Regards.
-------------------------------------------------------
Rafa Marin-Lopez, PhD
Dept. Information and Communications Engineering (DIIC)
Faculty of Computer Science-University of Murcia
30100 Murcia - Spain
Telf: +34868888501 Fax: +34868884151 e-mail: rafa@um.es
-------------------------------------------------------

v2.23.0 | Report a Bug | By Email