Re: [Hipsec] RFC5201-bis: Stephen Farrell's DISCUSS questions

Tom Henderson <tomh@tomh.org> Thu, 04 September 2014 04:57 UTC

Return-Path: <tomh@tomh.org>
X-Original-To: hipsec@ietfa.amsl.com
Delivered-To: hipsec@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9CD2D1A0322 for <hipsec@ietfa.amsl.com>; Wed, 3 Sep 2014 21:57:04 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: 0.232
X-Spam-Level:
X-Spam-Status: No, score=0.232 tagged_above=-999 required=5 tests=[BAYES_40=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, IP_NOT_FRIENDLY=0.334, SPF_PASS=-0.001] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id VZBmteee0KPz for <hipsec@ietfa.amsl.com>; Wed, 3 Sep 2014 21:57:03 -0700 (PDT)
Received: from gproxy5-pub.mail.unifiedlayer.com (gproxy5-pub.mail.unifiedlayer.com [67.222.38.55]) by ietfa.amsl.com (Postfix) with SMTP id 2D0931A030A for <hipsec@ietf.org>; Wed, 3 Sep 2014 21:57:02 -0700 (PDT)
Received: (qmail 8183 invoked by uid 0); 4 Sep 2014 04:57:01 -0000
Received: from unknown (HELO CMOut01) (10.0.90.82) by gproxy5.mail.unifiedlayer.com with SMTP; 4 Sep 2014 04:57:01 -0000
Received: from box528.bluehost.com ([74.220.219.128]) by CMOut01 with id mswq1o00m2molgS01swtBj; Wed, 03 Sep 2014 22:57:00 -0600
X-Authority-Analysis: v=2.1 cv=LbyvtFvi c=1 sm=1 tr=0 a=K/474su/0lCI2gKrDs9DLw==:117 a=K/474su/0lCI2gKrDs9DLw==:17 a=cNaOj0WVAAAA:8 a=f5113yIGAAAA:8 a=ZSdzdHkL1-cA:10 a=53-2lCgHTR4A:10 a=dE5a-coJAxUA:10 a=q7J0aIbBmN8A:10 a=8nJEP1OIZ-IA:10 a=HYWc1YUsAAAA:8 a=IA_2sfgTpx8A:10 a=rREcAdlOb-AA:10 a=WDlp8lUfAAAA:8 a=48vgC7mUAAAA:8 a=XIis5B3UILJaaoxktYcA:9 a=wPNLvfGTeEIA:10 a=KieMgrAKCg8A:10 a=-FfqplK4AEMA:10
DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=tomh.org; s=default; h=Content-Transfer-Encoding:Content-Type:In-Reply-To:References:Subject:CC:To:MIME-Version:From:Date:Message-ID; bh=Ktpbw2GeG3l5SE5fVZrElogW5myGZ+FG5nTODGXbg54=; b=gtmS3dYRCiNfpLvXHSvmkBsMLRBx2cFo2/WqbSKdZ5dHuZYvEanLAZ7NE5xjtntjyVxLxQTRo1GmMZ8CyHUa+tJgz/922bFFY3AdKzJua3u6NHh/y7V3O240ESQ1CxPO;
Received: from [71.231.123.189] (port=36574 helo=[192.168.168.42]) by box528.bluehost.com with esmtpsa (TLSv1:DHE-RSA-AES128-SHA:128) (Exim 4.82) (envelope-from <tomh@tomh.org>) id 1XPP6J-0005OO-Vw; Wed, 03 Sep 2014 22:56:52 -0600
Message-ID: <5407F111.3050802@tomh.org>
Date: Wed, 03 Sep 2014 21:56:49 -0700
From: Tom Henderson <tomh@tomh.org>
User-Agent: Mozilla/5.0 (X11; Linux i686; rv:24.0) Gecko/20100101 Thunderbird/24.6.0
MIME-Version: 1.0
To: Tobias.Heer@Belden.com, stephen.farrell@cs.tcd.ie
References: <OFE663CEC5.35AA808D-ONC1257D47.005B2906-C1257D47.005F754B@belden.com>
In-Reply-To: <OFE663CEC5.35AA808D-ONC1257D47.005B2906-C1257D47.005F754B@belden.com>
Content-Type: text/plain; charset="ISO-8859-1"; format="flowed"
Content-Transfer-Encoding: 7bit
X-Identified-User: {3122:box528.bluehost.com:tomhorg:tomh.org} {sentby:smtp auth 71.231.123.189 authed with tomh@tomh.org}
Archived-At: http://mailarchive.ietf.org/arch/msg/hipsec/ot2MqmCe8QbCJAAYWFn47tekSzI
Cc: hipsec@ietf.org
Subject: Re: [Hipsec] RFC5201-bis: Stephen Farrell's DISCUSS questions
X-BeenThere: hipsec@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "This is the official IETF Mailing List for the HIP Working Group." <hipsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/hipsec>, <mailto:hipsec-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/hipsec/>
List-Post: <mailto:hipsec@ietf.org>
List-Help: <mailto:hipsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/hipsec>, <mailto:hipsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 04 Sep 2014 04:57:04 -0000

On 09/02/2014 10:22 AM, Tobias.Heer@Belden.com wrote:
> Hello,
>
> I am sorry for the late response...
>
>  >>
>  >>> (3) Continuing to support the 1536 MODP DHE group but not
>  >>> supporting the 2048 equivalent seems a bit odd, as does not having
>  >>> a code point for the 4096 but group. Similarly, making the 1536 bit
>  >>> group the MTI (in 5.2.7) is odd as is the assertion that "web
>  >>> surfing" can use a lower security level.
>  >>
>  >> I am not aware of the criteria that were used for choosing the DHE
>  >> groups. Can someone else comment on this?
>  >
>  > I don't recall offhand, other than that we went through a round of
>  > review with CFRG back in 2012 and we ended up modifying our crypto
>  > selections based on the feedback received.  Bob and Tobias have been the
>  > caretakers of the crypto selections in HIPv2 in general, so I defer to
>  > them.
>
> Ok, so let's wait to hear from Bob/Tobias on this one.
>
> I tried to reconstruct the approach that we took from the mailing list
> archives. This dates back to 2010 so I don't remember every detail. We
> use established algorithms that similar protocols used and discussed the
> choices here on the list. Here is the discussion thread:
>
> http://www.ietf.org/mail-archive/web/hipsec/current/msg03327.html
>
> There was some counseling from CFRG as well if I am not mistaken.
> However, if there is the need for a different set of algorithms or if
> there is consensus that more algorithms are required, there is no reason
> not to add another one.

How could we move this issue forward?  Stephen, would you advocate 
putting in 2048-bit and 4096-bit groups (perhaps with values 11 and 12 
respectively)?  Or is there not enough support for this proposal?

>
> The sentence with the web-surfing is a carry over from RFC5201. I think
> we should change it to a more generic statement along the lines of the
> mailing list post from 2010:

> Group 10 is meant for devices with low computation capabilities and
> should be used only if long-term
> confidentiality is not required.

I'll plan to put the above into the next revision, as it seems 
non-controversial.

- Tom