[Homenet-babel-sec] What's up with HNCP security?

Juliusz Chroboczek <jch@irif.fr> Sun, 28 May 2017 21:18 UTC

Return-Path: <jch@irif.fr>
X-Original-To: homenet-babel-sec@ietfa.amsl.com
Delivered-To: homenet-babel-sec@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 1A832129413; Sun, 28 May 2017 14:18:49 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: 0.799
X-Spam-Level:
X-Spam-Status: No, score=0.799 tagged_above=-999 required=5 tests=[BAYES_50=0.8, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id cAl9cVY7INdQ; Sun, 28 May 2017 14:18:47 -0700 (PDT)
Received: from korolev.univ-paris7.fr (korolev.univ-paris7.fr [IPv6:2001:660:3301:8000::1:2]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A138C1200CF; Sun, 28 May 2017 14:18:46 -0700 (PDT)
Received: from potemkin.univ-paris7.fr (potemkin.univ-paris7.fr [IPv6:2001:660:3301:8000::1:1]) by korolev.univ-paris7.fr (8.14.4/8.14.4/relay1/56228) with ESMTP id v4SLIh5F024905 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-GCM-SHA384 bits=256 verify=NO); Sun, 28 May 2017 23:18:44 +0200
Received: from mailhub.math.univ-paris-diderot.fr (mailhub.math.univ-paris-diderot.fr [81.194.30.253]) by potemkin.univ-paris7.fr (8.14.4/8.14.4/relay2/56228) with ESMTP id v4SLIhNe006645; Sun, 28 May 2017 23:18:43 +0200
Received: from mailhub.math.univ-paris-diderot.fr (localhost [127.0.0.1]) by mailhub.math.univ-paris-diderot.fr (Postfix) with ESMTP id 89CB6EB200; Sun, 28 May 2017 23:18:43 +0200 (CEST)
X-Virus-Scanned: amavisd-new at math.univ-paris-diderot.fr
Received: from mailhub.math.univ-paris-diderot.fr ([127.0.0.1]) by mailhub.math.univ-paris-diderot.fr (mailhub.math.univ-paris-diderot.fr [127.0.0.1]) (amavisd-new, port 10023) with ESMTP id Z_1ZdCkQrqP1; Sun, 28 May 2017 23:18:42 +0200 (CEST)
Received: from trurl.irif.fr (unknown [78.194.40.74]) (Authenticated sender: jch) by mailhub.math.univ-paris-diderot.fr (Postfix) with ESMTPSA id 90174EB204; Sun, 28 May 2017 23:18:42 +0200 (CEST)
Date: Sun, 28 May 2017 23:18:42 +0200
Message-ID: <87d1ask7d9.wl-jch@irif.fr>
From: Juliusz Chroboczek <jch@irif.fr>
To: homenet-babel-sec@ietf.org
CC: babel@ietf.org
User-Agent: Wanderlust/2.15.9
MIME-Version: 1.0 (generated by SEMI-EPG 1.14.7 - "Harue")
Content-Type: text/plain; charset=US-ASCII
X-Greylist: Sender IP whitelisted, not delayed by milter-greylist-4.2.7 (korolev.univ-paris7.fr [IPv6:2001:660:3301:8000::1:2]); Sun, 28 May 2017 23:18:44 +0200 (CEST)
X-Greylist: Sender IP whitelisted, not delayed by milter-greylist-4.2.7 (potemkin.univ-paris7.fr [194.254.61.141]); Sun, 28 May 2017 23:18:43 +0200 (CEST)
X-Miltered: at korolev with ID 592B3EB3.000 by Joe's j-chkmail (http : // j-chkmail dot ensmp dot fr)!
X-Miltered: at potemkin with ID 592B3EB3.001 by Joe's j-chkmail (http : // j-chkmail dot ensmp dot fr)!
X-j-chkmail-Enveloppe: 592B3EB3.000 from potemkin.univ-paris7.fr/potemkin.univ-paris7.fr/null/potemkin.univ-paris7.fr/<jch@irif.fr>
X-j-chkmail-Enveloppe: 592B3EB3.001 from mailhub.math.univ-paris-diderot.fr/mailhub.math.univ-paris-diderot.fr/null/mailhub.math.univ-paris-diderot.fr/<jch@irif.fr>
X-j-chkmail-Score: MSGID : 592B3EB3.000 on korolev.univ-paris7.fr : j-chkmail score : . : R=. U=. O=. B=0.000 -> S=0.000
X-j-chkmail-Score: MSGID : 592B3EB3.001 on potemkin.univ-paris7.fr : j-chkmail score : . : R=. U=. O=. B=0.000 -> S=0.000
X-j-chkmail-Status: Ham
X-j-chkmail-Status: Ham
Archived-At: <https://mailarchive.ietf.org/arch/msg/homenet-babel-sec/3Lla6hqHNOMUbnnJ8f4GrEY2WTo>
Subject: [Homenet-babel-sec] What's up with HNCP security?
X-BeenThere: homenet-babel-sec@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: Homenet Babel Security <homenet-babel-sec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/homenet-babel-sec>, <mailto:homenet-babel-sec-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/homenet-babel-sec/>
List-Post: <mailto:homenet-babel-sec@ietf.org>
List-Help: <mailto:homenet-babel-sec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/homenet-babel-sec>, <mailto:homenet-babel-sec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 28 May 2017 21:18:49 -0000

Dear Ted, dear list,

(Babel list in copy of this mail.)

There are two facets to Homenet security: HNCP and Babel.  We, at Babel
towers, are planning to implement Stenberg-style security for Babel during
the month of July (earlier is not possible due to my prospective interns
having to sit their exams).  When we're done, we can compare this aproach
to the existing HMAC security, and see which of the two approaches is more
suitable for Homenet.

For the Babel work to be useful for Homenet security, HNCP needs to be
extended with two features:

  - the ability to signal other HNCP nodes that a given link requires
    authentication and/or encryption, and to securely signal any private
    keys;
  - the ability to protect HNCP traffic over an untrusted link.

Pierre has mentioned that HNCP already supports all or most of that, but
somebody needs to write down the relevant protocol bits and check whether
everything is implemented.

I'd much prefer that this work be done before we start extending Babel,
since having the HNCP bits ready would help us ensure that we're meeting
all of the Homenet requirements.

I'm leaving for a short holiday tomorrow, so please don't worry if I'm not
very responsive during the next week.  I've got exams the week after, so
please don't worry if I'm not very responsive the week after that.  Pleae
expect me to be my usual annoyingly chatty and opinionated self in two
weeks' time.

Regards,

-- Juliusz