[icnrg] Some initial comments on draft-li-icnrg-km-reqs
"David R. Oran" <daveoran@orandom.net> Sat, 17 March 2018 14:10 UTC
Return-Path: <daveoran@orandom.net>
X-Original-To: icnrg@ietfa.amsl.com
Delivered-To: icnrg@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9FF46126BF7 for <icnrg@ietfa.amsl.com>; Sat, 17 Mar 2018 07:10:26 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id e6aSjBh10Ul9 for <icnrg@ietfa.amsl.com>; Sat, 17 Mar 2018 07:10:25 -0700 (PDT)
Received: from spark.crystalorb.net (spark.crystalorb.net [IPv6:2607:fca8:1530::c]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 622701241F3 for <icnrg@irtf.org>; Sat, 17 Mar 2018 07:10:25 -0700 (PDT)
Received: from [18.101.8.112] ([IPv6:2603:4011:800::41]) (authenticated bits=0) by spark.crystalorb.net (8.14.4/8.14.4/Debian-4+deb7u1) with ESMTP id w2HEAIHb011666 (version=TLSv1/SSLv3 cipher=AES256-GCM-SHA384 bits=256 verify=NO) for <icnrg@irtf.org>; Sat, 17 Mar 2018 07:10:20 -0700
From: "David R. Oran" <daveoran@orandom.net>
To: icnrg <icnrg@irtf.org>
Date: Sat, 17 Mar 2018 14:10:16 +0000
X-Mailer: MailMate (1.11r5465)
Message-ID: <04972CBD-241C-4833-AAE9-9DCBA9E4E54F@orandom.net>
MIME-Version: 1.0
Content-Type: multipart/alternative; boundary="=_MailMate_DAD99386-F51E-4928-8198-1F169759294A_="
Content-Transfer-Encoding: 8bit
Archived-At: <https://mailarchive.ietf.org/arch/msg/icnrg/VukiluAH9GRWnp5FXv1CI9dL6Gw>
Subject: [icnrg] Some initial comments on draft-li-icnrg-km-reqs
X-BeenThere: icnrg@irtf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: Information-Centric Networking research group discussion list <icnrg.irtf.org>
List-Unsubscribe: <https://www.irtf.org/mailman/options/icnrg>, <mailto:icnrg-request@irtf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/icnrg/>
List-Post: <mailto:icnrg@irtf.org>
List-Help: <mailto:icnrg-request@irtf.org?subject=help>
List-Subscribe: <https://www.irtf.org/mailman/listinfo/icnrg>, <mailto:icnrg-request@irtf.org?subject=subscribe>
X-List-Received-Date: Sat, 17 Mar 2018 14:10:26 -0000
<Chair hat off> It is likely useful to have some formal compendium of requirements we can measure proposed key management schemes for ICN against, so thanks for starting this off by writing a draft. Many of the requirements are generic to any key management system, so it might be helpful to try to tease out what might be specific to ICN and spend more time on those (you do this to some extent but it’s mixed together with the generic requirements). I had a few doubts and questions while reading the draft; perhaps we can discuss these as part of the presentation at the meeting, or if you want defer to a draft update or email discussion on the list. - It’s not clear quite what you are getting at when you say in the introduction that signatures on data objects are insufficient to protect against “unpredictable data retrievals in CCN/NDN” I get that signatures in the absence of some kind of trust schema are insufficient, but you seem to be suggesting some deeper problems. Is this around cache pollution/poisoning? It might help to either defer this to later or be more specific up front. - It’s not clear why authentication “among routers” is needed. Is this to secure the routing protocols? - the “secure registration” requirement is a bit strange, since as far as I know there is no way through purely cryptographic “inside the system” techniques to accomplish secure binding between a name and a real world identity. - The efficient revocation requirement is easy to state, but really hard to achieve in practice. Might we consider something weaker, like revocation to work on the timescale of data liveness or better? - The requirement on key update is stated in a generic kind of way, which is not terribly useful in a world where long-lived data objects and ephemeral keys don’t co-exist well. I think it would be useful to tease this apart a bit and try to come up with something specifically targeted at ICN named objects where you don’t have to necessarily re-issue data (or possibly not re-encrypt it) when keys roll over. - This may just be my lack of knowledge, but I didn’t get a firm grasp of either requirement R11 or requirement R12. Thanks and looking forward to a robust discussion of your draft! DaveO
- [icnrg] Some initial comments on draft-li-icnrg-k… David R. Oran