Re: [Hipsec] Network-bound puzzles for HIP?
Miika Komu <mkomu@cs.hut.fi> Wed, 28 November 2012 15:56 UTC
Return-Path: <mkomu@cs.hut.fi>
X-Original-To: hipsec@ietfa.amsl.com
Delivered-To: hipsec@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 04E0121F8825 for <hipsec@ietfa.amsl.com>; Wed, 28 Nov 2012 07:56:31 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.599
X-Spam-Level:
X-Spam-Status: No, score=-6.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, RCVD_IN_DNSWL_MED=-4]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id VWsWcVyZW2Ix for <hipsec@ietfa.amsl.com>; Wed, 28 Nov 2012 07:56:30 -0800 (PST)
Received: from mail.cs.hut.fi (mail.cs.hut.fi [130.233.192.7]) by ietfa.amsl.com (Postfix) with ESMTP id 13DA721F855A for <hipsec@ietf.org>; Wed, 28 Nov 2012 07:56:29 -0800 (PST)
Received: from [127.0.0.1] (hutcs.cs.hut.fi [130.233.192.10]) by mail.cs.hut.fi (Postfix) with ESMTP id 50B173089B0; Wed, 28 Nov 2012 17:56:27 +0200 (EET)
Message-ID: <50B6342B.6030702@cs.hut.fi>
Date: Wed, 28 Nov 2012 17:56:27 +0200
From: Miika Komu <mkomu@cs.hut.fi>
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:17.0) Gecko/17.0 Thunderbird/17.0
MIME-Version: 1.0
To: Thierry Moreau <thierry.moreau@connotech.com>, hip WG <hipsec@ietf.org>
References: <50B449B1.5010205@connotech.com>
In-Reply-To: <50B449B1.5010205@connotech.com>
Content-Type: text/plain; charset="ISO-8859-1"; format="flowed"
Content-Transfer-Encoding: 7bit
Subject: Re: [Hipsec] Network-bound puzzles for HIP?
X-BeenThere: hipsec@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: "This is the official IETF Mailing List for the HIP Working Group." <hipsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/hipsec>, <mailto:hipsec-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/hipsec>
List-Post: <mailto:hipsec@ietf.org>
List-Help: <mailto:hipsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/hipsec>, <mailto:hipsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 28 Nov 2012 15:56:31 -0000
Hi Thierry, how do you register the network puzzle to the URI? Unlike the current HIP puzzle, your solution requires a third party? And it couples HIP control plane with e.g. CoAP (since you're talking about URIs)? A decoupled and more standards-compliant solution with a HIP-specific third party could to assume a rendezvous or relay server, which drops messages until some time period. This "some" could be defined when a host registers to rendezvous or relay server or updates its registration. The drawback here is that the initiator will not receive any time value for waiting (unless the rendezvous sends NOTIFY). I am not an expert, I believe current wireless sensor networks communicate through sink or gateway, so DoS protection is not really necessary for the sensors. However, the IoT vision is to have end-to-end connectivity for the sensors, so this may change in the future. Any thoughts on this? P.S. Are you aware of any patents related to network puzzles? On 11/27/2012 07:03 AM, Thierry Moreau wrote: > Hi, > > I find quite interesting the active development of HIPv2 drafts. From an > applied cryptography perspective, I appreciate this state-of-the-art > secure protocol development. > > Nonetheless, I am very novice in the design of puzzles for DOS attack > mitigation. But I have this idea of network-bound puzzle so that the > battery life of sensor devices is preserved. > > Very roughly ... > > The network-bound puzzle is a pair <URI,time0,time1> > If time0>=time1 the solution is zero > Otherwise, the solution is obtained from the "URI server" (using an > plain UDP query) at a time no earlier than time1 (which the HIP > initiator may guesstimate as now+(time1-time0) > (I use absolute times such that the URI server need not be synchronized > with the responder). > > UDP queries to the URI server simply carry some value timeX (discrete > resolution) > The URI server simply answers UDP queries with either > a) solutX (for timeX>=now), else > b) delayed UDP response solutX (if timeX in near future and the URI > server is not currently under heavy load), or else > c) some "REQUEST TOO EARLY" negative response. > > In practice, some secret pseudo-random sequence defines the successive > solutions. I would guess a timeX resolution of 0.1 second would allow > DOS attacks mitigation in low to medium throughput HIP responder hosts, > but this is only from intuition. > > The HIP responder may need a special arrangement with the URI server to > learn the responses in advance (or on a priority basis during a DOS > attack). I guess the two could be the same system (the URI server needs > not be "trusted"). > > ... end of rough idea. > > Was this ever envisioned? Were the practicalities ever looked at? > > Anyway, just my little suggestion. > > > Yes, I did look at > http://www.ietf.org/mail-archive/web/hipsec/current/msg03122.html > (Memory-bound puzzles in BEX) > and the reference by Rivest et al. (which does not address the DOS > mitigation as it is understood nowadays but has something along the URI > server idea for "timed-released crypto"). > > and > http://www.ietf.org/mail-archive/web/hipsec/current/msg03565.html > (New Version Notification for draft-hummen-hip-middle-puzzle-00.txt) > > > Regards, >
- [Hipsec] Network-bound puzzles for HIP? Thierry Moreau
- Re: [Hipsec] Network-bound puzzles for HIP? Miika Komu
- Re: [Hipsec] Network-bound puzzles for HIP? Thierry Moreau
- Re: [Hipsec] Network-bound puzzles for HIP? Thierry Moreau