[Hipsec] rfc5201-bis issue 35: limiting ECC cofactor to 1
"Henderson, Thomas R" <thomas.r.henderson@boeing.com> Wed, 27 June 2012 05:19 UTC
Return-Path: <thomas.r.henderson@boeing.com>
X-Original-To: hipsec@ietfa.amsl.com
Delivered-To: hipsec@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B572611E8108 for <hipsec@ietfa.amsl.com>; Tue, 26 Jun 2012 22:19:56 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -102.536
X-Spam-Level:
X-Spam-Status: No, score=-102.536 tagged_above=-999 required=5 tests=[AWL=0.063, BAYES_00=-2.599, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id UHc1I3CY0yQg for <hipsec@ietfa.amsl.com>; Tue, 26 Jun 2012 22:19:55 -0700 (PDT)
Received: from stl-mbsout-01.boeing.com (stl-mbsout-01.boeing.com [130.76.96.169]) by ietfa.amsl.com (Postfix) with ESMTP id 9208711E810C for <hipsec@ietf.org>; Tue, 26 Jun 2012 22:19:54 -0700 (PDT)
Received: from stl-mbsout-01.boeing.com (localhost.localdomain [127.0.0.1]) by stl-mbsout-01.boeing.com (8.14.4/8.14.4/DOWNSTREAM_MBSOUT) with ESMTP id q5R5Jr7x011200 for <hipsec@ietf.org>; Wed, 27 Jun 2012 00:19:53 -0500
Received: from blv-av-01.boeing.com (blv-av-01.boeing.com [130.247.16.37]) by stl-mbsout-01.boeing.com (8.14.4/8.14.4/UPSTREAM_MBSOUT) with ESMTP id q5R5JqBE011193 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=FAIL) for <hipsec@ietf.org>; Wed, 27 Jun 2012 00:19:53 -0500
Received: from blv-av-01.boeing.com (localhost.localdomain [127.0.0.1]) by blv-av-01.boeing.com (8.14.4/8.14.4/DOWNSTREAM_RELAY) with ESMTP id q5R5JqEl016351 for <hipsec@ietf.org>; Tue, 26 Jun 2012 22:19:52 -0700
Received: from XCH-NWHT-10.nw.nos.boeing.com (xch-nwht-10.nw.nos.boeing.com [130.247.25.113]) by blv-av-01.boeing.com (8.14.4/8.14.4/UPSTREAM_RELAY) with ESMTP id q5R5JqZw016348 (version=TLSv1/SSLv3 cipher=RC4-MD5 bits=128 verify=OK) for <hipsec@ietf.org>; Tue, 26 Jun 2012 22:19:52 -0700
Received: from XCH-NW-16V.nw.nos.boeing.com ([130.247.25.238]) by XCH-NWHT-10.nw.nos.boeing.com ([130.247.25.113]) with mapi; Tue, 26 Jun 2012 22:19:52 -0700
From: "Henderson, Thomas R" <thomas.r.henderson@boeing.com>
To: HIP <hipsec@ietf.org>
Date: Tue, 26 Jun 2012 22:19:51 -0700
Thread-Topic: rfc5201-bis issue 35: limiting ECC cofactor to 1
Thread-Index: Ac1UJHnN+lenZjoJRWibWaFpgdeduw==
Message-ID: <758141CC3D829043A8C3164DD3D593EA1BD324E11D@XCH-NW-16V.nw.nos.boeing.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
acceptlanguage: en-US
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-TM-AS-MML: No
Subject: [Hipsec] rfc5201-bis issue 35: limiting ECC cofactor to 1
X-BeenThere: hipsec@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: "This is the official IETF Mailing List for the HIP Working Group." <hipsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/hipsec>, <mailto:hipsec-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/hipsec>
List-Post: <mailto:hipsec@ietf.org>
List-Help: <mailto:hipsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/hipsec>, <mailto:hipsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 27 Jun 2012 05:19:56 -0000
This was already proposed to the list a while back: http://www.ietf.org/mail-archive/web/hipsec/current/msg03462.html so I'd like to close this issue by adopting the proposed text; specifically: 1) Section 5.2.7 (Diffie Hellman) OLD TEXT: The MODP Diffie-Hellman groups are defined in [RFC3526]. The ECDH groups 8 - 10 are defined in [RFC5903] and [RFC6090]. ECDH group 7 is covered in Appendix D. NEW TEXT: The MODP Diffie-Hellman groups are defined in [RFC3526]. The ECDH groups 7 - 9 are defined in [RFC5903] and [RFC6090]. ECDH group 10 is covered in Appendix D. Any ECDH used with HIP MUST have a co-factor of 1. 2) Section 5.2.9 (HOST ID) OLD TEXT: ... For ECC we distinguish two different profiles: ECDSA and ECDSA_LOW. ECC contains curves approved by NIST and defined in RFC 4754 [RFC4754]. ECDSA_LOW is defined for devices with low computational capabilities and uses shorter curves from SECG [SECG]. ... For ECC we distinguish two different profiles: ECDSA and ECDSA_LOW. ECC contains curves approved by NIST and defined in RFC 4754 [RFC4754]. ECDSA_LOW is defined for devices with low computational capabilities and uses shorter curves from SECG [SECG]. Any ECDSA used with HIP MUST have a co-factor of 1.
- [Hipsec] rfc5201-bis issue 35: limiting ECC cofac… Henderson, Thomas R
- Re: [Hipsec] rfc5201-bis issue 35: limiting ECC c… Robert Moskowitz