Re: [Hipsec] Network-bound puzzles for HIP?
Thierry Moreau <thierry.moreau@connotech.com> Wed, 19 December 2012 18:49 UTC
Return-Path: <thierry.moreau@connotech.com>
X-Original-To: hipsec@ietfa.amsl.com
Delivered-To: hipsec@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9F91B21F87B2 for <hipsec@ietfa.amsl.com>; Wed, 19 Dec 2012 10:49:59 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.227
X-Spam-Level:
X-Spam-Status: No, score=-2.227 tagged_above=-999 required=5 tests=[AWL=0.372, BAYES_00=-2.599]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id sc-BCp5KZFLg for <hipsec@ietfa.amsl.com>; Wed, 19 Dec 2012 10:49:59 -0800 (PST)
Received: from mail.connotech.com (connotech.com [76.10.176.241]) by ietfa.amsl.com (Postfix) with ESMTP id ECE0521F87B1 for <Hipsec@ietf.org>; Wed, 19 Dec 2012 10:49:58 -0800 (PST)
Received: from [192.168.1.200] (unknown [192.168.1.200]) by mail.connotech.com (Postfix) with ESMTPA id 90C8130ACE for <Hipsec@ietf.org>; Wed, 19 Dec 2012 18:20:15 -0500 (EST)
Message-ID: <50D20FCA.60602@connotech.com>
Date: Wed, 19 Dec 2012 14:04:42 -0500
From: Thierry Moreau <thierry.moreau@connotech.com>
User-Agent: Thunderbird 2.0.0.17 (X11/20090608)
MIME-Version: 1.0
To: Hipsec@ietf.org
References: <50B449B1.5010205@connotech.com>
In-Reply-To: <50B449B1.5010205@connotech.com>
Content-Type: text/plain; charset="us-ascii"; format="flowed"
Content-Transfer-Encoding: 7bit
Subject: Re: [Hipsec] Network-bound puzzles for HIP?
X-BeenThere: hipsec@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: "This is the official IETF Mailing List for the HIP Working Group." <hipsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/hipsec>, <mailto:hipsec-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/hipsec>
List-Post: <mailto:hipsec@ietf.org>
List-Help: <mailto:hipsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/hipsec>, <mailto:hipsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 19 Dec 2012 18:49:59 -0000
Hi! An update ... no clear solution benefit for HIP denial-of-service mitigation. The main point being that artificial latency introduced by network-bound puzzles may be hard to control given the kind of "acceptable" delays for a legitimate HIP connection. (in case someone wants to investigate further, I advanced these ideas for a different problem statement: http://www.connotech.com/time_ticket_sub_prot.html title "Internet Public Service Abuse Mitigation with a Time Ticket Sub-Protocol") Regards, - Thierry Thierry Moreau wrote: > Hi, > > I find quite interesting the active development of HIPv2 drafts. From an > applied cryptography perspective, I appreciate this state-of-the-art > secure protocol development. > > Nonetheless, I am very novice in the design of puzzles for DOS attack > mitigation. But I have this idea of network-bound puzzle so that the > battery life of sensor devices is preserved. > > Very roughly ... > > The network-bound puzzle is a pair <URI,time0,time1> > If time0>=time1 the solution is zero > Otherwise, the solution is obtained from the "URI server" (using an > plain UDP query) at a time no earlier than time1 (which the HIP > initiator may guesstimate as now+(time1-time0) > (I use absolute times such that the URI server need not be synchronized > with the responder). > > UDP queries to the URI server simply carry some value timeX (discrete > resolution) > The URI server simply answers UDP queries with either > a) solutX (for timeX>=now), else > b) delayed UDP response solutX (if timeX in near future and the URI > server is not currently under heavy load), or else > c) some "REQUEST TOO EARLY" negative response. > > In practice, some secret pseudo-random sequence defines the successive > solutions. I would guess a timeX resolution of 0.1 second would allow > DOS attacks mitigation in low to medium throughput HIP responder hosts, > but this is only from intuition. > > The HIP responder may need a special arrangement with the URI server to > learn the responses in advance (or on a priority basis during a DOS > attack). I guess the two could be the same system (the URI server needs > not be "trusted"). > > ... end of rough idea. > > Was this ever envisioned? Were the practicalities ever looked at? > > Anyway, just my little suggestion. > > > Yes, I did look at > http://www.ietf.org/mail-archive/web/hipsec/current/msg03122.html > (Memory-bound puzzles in BEX) > and the reference by Rivest et al. (which does not address the DOS > mitigation as it is understood nowadays but has something along the URI > server idea for "timed-released crypto"). > > and > http://www.ietf.org/mail-archive/web/hipsec/current/msg03565.html > (New Version Notification for draft-hummen-hip-middle-puzzle-00.txt) > > > Regards, >
- [Hipsec] Network-bound puzzles for HIP? Thierry Moreau
- Re: [Hipsec] Network-bound puzzles for HIP? Miika Komu
- Re: [Hipsec] Network-bound puzzles for HIP? Thierry Moreau
- Re: [Hipsec] Network-bound puzzles for HIP? Thierry Moreau