Re: [hiprg] HIP DEX suggestion

Ed Beroset <beroset@mindspring.com> Thu, 04 August 2011 13:20 UTC

Return-Path: <beroset@mindspring.com>
X-Original-To: hiprg@ietfa.amsl.com
Delivered-To: hiprg@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8BAC221F8B39 for <hiprg@ietfa.amsl.com>; Thu, 4 Aug 2011 06:20:43 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.599
X-Spam-Level:
X-Spam-Status: No, score=-2.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id lUZDJbc+dPBQ for <hiprg@ietfa.amsl.com>; Thu, 4 Aug 2011 06:20:43 -0700 (PDT)
Received: from elasmtp-banded.atl.sa.earthlink.net (elasmtp-banded.atl.sa.earthlink.net [209.86.89.70]) by ietfa.amsl.com (Postfix) with ESMTP id DD05921F8B30 for <hiprg@irtf.org>; Thu, 4 Aug 2011 06:20:42 -0700 (PDT)
DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=dk20050327; d=mindspring.com; b=allHjAt5EhiTH6e/7INOrLrrvlH0svJ9C0GKP6jNnIdJKq2Zpb3tQj6PDb04iLxR; h=Message-ID:Date:From:Reply-To:To:Subject:Mime-Version:Content-Type:Content-Transfer-Encoding:X-Mailer:X-ELNK-Trace:X-Originating-IP;
Received: from [209.86.224.50] (helo=mswamui-swiss.atl.sa.earthlink.net) by elasmtp-banded.atl.sa.earthlink.net with esmtpa (Exim 4.67) (envelope-from <beroset@mindspring.com>) id 1Qoxr5-0002ec-BN; Thu, 04 Aug 2011 09:20:55 -0400
Received: from 72.237.119.67 by webmail.earthlink.net with HTTP; Thu, 4 Aug 2011 09:20:54 -0400
Message-ID: <25658028.1312464055269.JavaMail.root@mswamui-swiss.atl.sa.earthlink.net>
Date: Thu, 4 Aug 2011 09:20:54 -0400 (GMT-04:00)
From: Ed Beroset <beroset@mindspring.com>
To: "hiprg@irtf.org" <hiprg@irtf.org>, Robert Moskowitz <rgm@htt-consult.com>
Mime-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 7bit
X-Mailer: EarthLink Zoo Mail 1.0
X-ELNK-Trace: 105d402e9ac1c2b99649176a89d694c0f43c108795ac45075c064a56a61f5415a2b093023014c642350badd9bab72f9c350badd9bab72f9c350badd9bab72f9c
X-Originating-IP: 209.86.224.50
Subject: Re: [hiprg] HIP DEX suggestion
X-BeenThere: hiprg@irtf.org
X-Mailman-Version: 2.1.12
Precedence: list
Reply-To: Ed Beroset <beroset@mindspring.com>
List-Id: "Host Identity Protocol \(HIP\) Research Group" <hiprg.irtf.org>
List-Unsubscribe: <https://www.irtf.org/mailman/options/hiprg>, <mailto:hiprg-request@irtf.org?subject=unsubscribe>
List-Archive: <http://www.irtf.org/mail-archive/web/hiprg>
List-Post: <mailto:hiprg@irtf.org>
List-Help: <mailto:hiprg-request@irtf.org?subject=help>
List-Subscribe: <https://www.irtf.org/mailman/listinfo/hiprg>, <mailto:hiprg-request@irtf.org?subject=subscribe>
X-List-Received-Date: Thu, 04 Aug 2011 13:20:45 -0000

Speaking of implementations, I have a suggestion about HIP DEX. Right now it specifies the use of AES-CBC but I would like to see if we could change that to either AES-CFB or AES-CTR.  The reason is that for CBC, one must implement both the AES encrypt and decrypt functions.  With CFB and CTR, one only need implement AES encrypt.  This saves about 1.5k of code space on a typical small microprocessor for which HIP DEX is intended and has at least equivalent (and some say better) security properties.

Ed Beroset