[hiprg] First HIP DEX draft -- draft-moskowitz-hip-rg-dex-00

Robert Moskowitz <rgm@htt-consult.com> Tue, 29 June 2010 17:20 UTC

Return-Path: <rgm@htt-consult.com>
X-Original-To: hiprg@core3.amsl.com
Delivered-To: hiprg@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 2BC583A6A71 for <hiprg@core3.amsl.com>; Tue, 29 Jun 2010 10:20:06 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.836
X-Spam-Level:
X-Spam-Status: No, score=-0.836 tagged_above=-999 required=5 tests=[AWL=0.274, BAYES_05=-1.11]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id muxMYcMsuW8b for <hiprg@core3.amsl.com>; Tue, 29 Jun 2010 10:20:04 -0700 (PDT)
Received: from klovia.htt-consult.com (klovia.htt-consult.com [208.83.67.149]) by core3.amsl.com (Postfix) with ESMTP id 5753E3A6880 for <hiprg@irtf.org>; Tue, 29 Jun 2010 10:20:03 -0700 (PDT)
Received: from localhost (unknown [127.0.0.1]) by klovia.htt-consult.com (Postfix) with ESMTP id 00D6768B5E; Tue, 29 Jun 2010 17:12:11 +0000 (UTC)
Received: from klovia.htt-consult.com ([127.0.0.1]) by localhost (klovia.htt-consult.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ofW11GHS+-je; Tue, 29 Jun 2010 13:12:02 -0400 (EDT)
Received: from nc2400.htt-consult.com (h155.home.htt [208.83.67.155]) (Authenticated sender: rgm@htt-consult.com) by klovia.htt-consult.com (Postfix) with ESMTPSA id B697B68A8B; Tue, 29 Jun 2010 13:12:02 -0400 (EDT)
Message-ID: <4C2A2B41.4040106@htt-consult.com>
Date: Tue, 29 Jun 2010 13:20:01 -0400
From: Robert Moskowitz <rgm@htt-consult.com>
User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.9.1.9) Gecko/20100430 Fedora/3.0.4-2.fc12 Thunderbird/3.0.4
MIME-Version: 1.0
To: hipsec@ietf.org, hiprg@irtf.org
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
Subject: [hiprg] First HIP DEX draft -- draft-moskowitz-hip-rg-dex-00
X-BeenThere: hiprg@irtf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: "Host Identity Protocol \(HIP\) Research Group" <hiprg.irtf.org>
List-Unsubscribe: <https://www.irtf.org/mailman/listinfo/hiprg>, <mailto:hiprg-request@irtf.org?subject=unsubscribe>
List-Archive: <http://www.irtf.org/mail-archive/web/hiprg>
List-Post: <mailto:hiprg@irtf.org>
List-Help: <mailto:hiprg-request@irtf.org?subject=help>
List-Subscribe: <https://www.irtf.org/mailman/listinfo/hiprg>, <mailto:hiprg-request@irtf.org?subject=subscribe>
X-List-Received-Date: Tue, 29 Jun 2010 17:20:06 -0000

I have just uploaded the first cut of the ID for HIP DEX.

This now gives me until July 12 to post updates based on early reviews.

Thus I ask that people give this a read.  It DOES require having read 
5201.  I DON'T think there is anything in DEX that really requires 
reading 5201-bis (not yet pubished, Tobias is hard at work).

Of note are:

Section 5 on the new R1, I2, and R2.  I1 is how it will be in 5201-bis.
How the HIT is formed.
The puzzle is changed to use CMAC.
KEYMAT using CMAC (pretty much lifted from RFC 5869)

One thing to note about DEX is the HI is a static ECDH key.

-----Original Message-----
From: IETF I-D Submission Tool [mailto:idsubmission@ietf.org]
Sent: Tuesday, June 29, 2010 1:07 PM


A new version of I-D, draft-moskowitz-hip-rg-dex-00.txt has been
successfully submitted by Robert Moskowitz and posted to the IETF
repository.

Filename:	 draft-moskowitz-hip-rg-dex
Revision:	 00
Title:		 HIP Diet EXchange (DEX)
Creation_date:	 2010-06-29
WG ID:		 Independent Submission
Number_of_pages: 33

Abstract:
This document specifies the details of the Host Identity Protocol
Diet EXchange (HIP DEX).  HIP DEX is a variant of the HIP Base
EXchange (HIP BEX) [RFC5201-bis] specifically designed to use as few
crypto primatives as possible yet still deliver the same class of of
security features as HIP BEX.

The design goal of HIP DEX is to be usable by sensor devices that are
code and processor constrained.  Like HIP BEX it is expected to be
used together with another suitable security protocol, such as the
Encapsulated Security Payload (ESP).  HIP DEX can also be used
directly as a keying mechanism for a MAC layer security protocol as
is supported by IEEE 802.15.4




The IETF Secretariat.