IETF Logo Mail Archive

[Hipsec] Fwd: New Version Notification for draft-ietf-hip-dex-12.txt

Robert Moskowitz <rgm@htt-consult.com> Mon, 10 February 2020 13:31 UTC

Return-Path: <rgm@htt-consult.com>
X-Original-To: hipsec@ietfa.amsl.com
Delivered-To: hipsec@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 842821200FB for <hipsec@ietfa.amsl.com>; Mon, 10 Feb 2020 05:31:10 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.598
X-Spam-Level:
X-Spam-Status: No, score=-2.598 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id mTpzbxuW67Gk for <hipsec@ietfa.amsl.com>; Mon, 10 Feb 2020 05:31:07 -0800 (PST)
Received: from z9m9z.htt-consult.com (z9m9z.htt-consult.com [23.123.122.147]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 807A21200A4 for <hipsec@ietf.org>; Mon, 10 Feb 2020 05:31:07 -0800 (PST)
Received: from localhost (localhost [127.0.0.1]) by z9m9z.htt-consult.com (Postfix) with ESMTP id 0498162133 for <hipsec@ietf.org>; Mon, 10 Feb 2020 08:31:05 -0500 (EST)
X-Virus-Scanned: amavisd-new at htt-consult.com
Received: from z9m9z.htt-consult.com ([127.0.0.1]) by localhost (z9m9z.htt-consult.com [127.0.0.1]) (amavisd-new, port 10024) with LMTP id fK-tsPS5nFfN for <hipsec@ietf.org>; Mon, 10 Feb 2020 08:30:57 -0500 (EST)
Received: from lx140e.htt-consult.com (unknown [192.168.160.12]) (using TLSv1.2 with cipher DHE-RSA-AES128-SHA (128/128 bits)) (No client certificate requested) by z9m9z.htt-consult.com (Postfix) with ESMTPSA id 71E1960029 for <hipsec@ietf.org>; Mon, 10 Feb 2020 08:30:57 -0500 (EST)
References: <158131871520.13534.9437394233256375155.idtracker@ietfa.amsl.com>
To: HIP <hipsec@ietf.org>
From: Robert Moskowitz <rgm@htt-consult.com>
X-Forwarded-Message-Id: <158131871520.13534.9437394233256375155.idtracker@ietfa.amsl.com>
Message-ID: <29372f3d-0a9e-949d-ce64-338be8561500@htt-consult.com>
Date: Mon, 10 Feb 2020 08:30:48 -0500
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:68.0) Gecko/20100101 Thunderbird/68.4.1
MIME-Version: 1.0
In-Reply-To: <158131871520.13534.9437394233256375155.idtracker@ietfa.amsl.com>
Content-Type: multipart/alternative; boundary="------------FF525251594710F64BEA8E79"
Content-Language: en-US
Archived-At: <https://mailarchive.ietf.org/arch/msg/hipsec/T5kaAAM7dnn2BF-5E40WQ9XzyQ8>
Subject: [Hipsec] Fwd: New Version Notification for draft-ietf-hip-dex-12.txt
X-BeenThere: hipsec@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "This is the official IETF Mailing List for the HIP Working Group." <hipsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/hipsec>, <mailto:hipsec-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/hipsec/>
List-Post: <mailto:hipsec@ietf.org>
List-Help: <mailto:hipsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/hipsec>, <mailto:hipsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 10 Feb 2020 13:31:10 -0000

I believe this version answers all the IESG issues.

Please review, there are some important additions.

EKR had a number of security concerns.  Some I feel don't apply to HIP, 
like use an AEAD for HIP packet security.

But there are a number of added sections, particularly in Security 
Considerations that are worth the group's review that I have things 
stated properly.

Also there is a new parameter, I_NONCE to add Initiator randomness into 
the Master Key generation.  There is some cleanup in the KEYMAT section 
to reflect this.

So please take a read through.

Thank you


-------- Forwarded Message --------
Subject: 	New Version Notification for draft-ietf-hip-dex-12.txt
Date: 	Sun, 09 Feb 2020 23:11:55 -0800
From: 	internet-drafts@ietf.org
To: 	Robert Moskowitz <rgm@htt-consult.com>, Rene Hummen 
<rene.hummen@belden.com>, Miika Komu <miika.komu@ericsson.com>




A new version of I-D, draft-ietf-hip-dex-12.txt
has been successfully submitted by Miika Komu and posted to the
IETF repository.

Name: draft-ietf-hip-dex
Revision: 12
Title: HIP Diet EXchange (DEX)
Document date: 2020-02-09
Group: hip
Pages: 57
URL: https://www.ietf.org/internet-drafts/draft-ietf-hip-dex-12.txt
Status: https://datatracker.ietf.org/doc/draft-ietf-hip-dex/
Htmlized: https://tools.ietf.org/html/draft-ietf-hip-dex-12
Htmlized: https://datatracker.ietf.org/doc/html/draft-ietf-hip-dex
Diff: https://www.ietf.org/rfcdiff?url2=draft-ietf-hip-dex-12

Abstract:
This document specifies the Host Identity Protocol Diet EXchange (HIP
DEX), a variant of the Host Identity Protocol Version 2 (HIPv2). The
HIP DEX protocol design aims at reducing the overhead of the employed
cryptographic primitives by omitting public-key signatures and hash
functions.

The HIP DEX protocol is primarily designed for computation or memory-
constrained sensor/actuator devices. Like HIPv2, it is expected to
be used together with a suitable security protocol such as the
Encapsulated Security Payload (ESP) for the protection of upper layer
protocol data. Unlike HIPv2, HIP DEX does not support Perfect
Forward Secrecy (PFS), and MUST only be used on devices where PFS is
prohibitively expensive. In addition, HIP DEX can also be used as a
keying mechanism for security primitives at the MAC layer, e.g., for
IEEE 802.15.4 networks.



Please note that it may take a couple of minutes from the time of submission
until the htmlized version and diff are available at tools.ietf.org.

The IETF Secretariat

v2.23.0 | Report a Bug | By Email