IETF Logo Mail Archive

[icnrg] FLIC encryption and COSE WG

Marc Mosko <mmosko@parc.com> Tue, 08 November 2022 15:32 UTC

Return-Path: <mmosko@parc.com>
X-Original-To: icnrg@ietfa.amsl.com
Delivered-To: icnrg@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8EBCEC152597 for <icnrg@ietfa.amsl.com>; Tue, 8 Nov 2022 07:32:09 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.907
X-Spam-Level:
X-Spam-Status: No, score=-6.907 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=parc.onmicrosoft.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id JSMr4nuCcGZE for <icnrg@ietfa.amsl.com>; Tue, 8 Nov 2022 07:32:05 -0800 (PST)
Received: from NAM04-BN8-obe.outbound.protection.outlook.com (mail-bn8nam04on2074.outbound.protection.outlook.com [40.107.100.74]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 9FA09C2D398D for <icnrg@irtf.org>; Tue, 8 Nov 2022 07:29:03 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=JNXWu2JB7Xgrv4CEsqt9InqfgSqxbF7ORPfw/7th4p3FCrfAcaXYzu4LVV5UHJaLX0m3yi8BihN4pUA6nyLAaKWTubV5byS/+COhocWkT0d+MxBAzOxBINQov8SJsnd15hZx1Iw34E53gz8UBkvajMwnZRyggYU6F7hkZ+1fcJor50Wp4yAV3wVNkveBGpaVqpED5eYMy3j2V4FawA4slodeyFNZbXQS24zMrln+bYzf1541mzKaqTkAvNPUhg6ux58aHk/9EgK+bK1MfPRSGrp9CC7aHxSRWWxAcdRAJFPFFGGfee+uP95MEIZkb6X83jXQV2NK53u3n1oG3tNHmw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=D1Sb5J5xOX6eHVdv+fMKxgBQW4hQokT3T4O/rQYhgw8=; b=CgCjOrIv5KDGqFDwVA2pRumRu4xqE/id0EHNpRrnIACI5/3wkGJ3Ht6W8ybhYP7x/8RCO68dVDhei2FKyW3pAtJYms8chRGs8x0ycJck2RE9hCggJznG1Cujdgco+pdW2ERS1K19B75T/5+xaGG2AzYFbupo9DkTRtxx1HnJFA75CWC4pRxq0GnYs7o2DQMEI+8PaB4bKld3RGzd2d5aqVRNlnebg5Pyhx9fqrSjdVf5duZFsKnQ2fme//0rBI+wbWSgWJ2UH7vRUzR1UrHUk+waTToqP9Noo2cDBHS64/cRE2AIxxSYmT4eVadLDuzSbajxZQ0LktHZIGkpRjozYQ==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=parc.com; dmarc=pass action=none header.from=parc.com; dkim=pass header.d=parc.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=parc.onmicrosoft.com; s=selector2-parc-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=D1Sb5J5xOX6eHVdv+fMKxgBQW4hQokT3T4O/rQYhgw8=; b=4b5MOqQr3D/6KspZz6DvTSQLP+XolFM0YKIb8/US4/W2QFeuNw14OJC+ChMFyr8UO0pSSSxiBvGmSWMsb1Y94J63wPkbXoZGmig8tDJlWznWuCoSPk8b3zVlsUOzTa2WFCoAoHo1INQdhH3XDUlq6cGnLvyCLF7w41+ES3kOyEo=
Received: from BY3PR15MB4977.namprd15.prod.outlook.com (2603:10b6:a03:3c4::10) by DM6PR15MB2268.namprd15.prod.outlook.com (2603:10b6:5:89::18) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.5791.25; Tue, 8 Nov 2022 15:29:00 +0000
Received: from BY3PR15MB4977.namprd15.prod.outlook.com ([fe80::c477:e33c:4ba7:aa60]) by BY3PR15MB4977.namprd15.prod.outlook.com ([fe80::c477:e33c:4ba7:aa60%7]) with mapi id 15.20.5791.027; Tue, 8 Nov 2022 15:28:59 +0000
From: Marc Mosko <mmosko@parc.com>
To: icnrg <icnrg@irtf.org>
Thread-Topic: FLIC encryption and COSE WG
Thread-Index: AQHY84XAdp0YyhnhM0+D05TgcV+KvQ==
Date: Tue, 08 Nov 2022 15:28:59 +0000
Message-ID: <BY3PR15MB49772712D3DDF93D27588D13AD3F9@BY3PR15MB4977.namprd15.prod.outlook.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=parc.com;
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: BY3PR15MB4977:EE_|DM6PR15MB2268:EE_
x-ms-office365-filtering-correlation-id: d6ba7e6e-e542-465b-3826-08dac19df538
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: FOTzCnxyrbDcemkNO06+E0vIFnVb+it8VgOIEzuCG0kDjxT0/ZyKReknk4gogiL8uzwjRH+5RDHwXJFa/KAEN9RDWh9lJSDVb7k+hmYdK0Izrh/8hEx3/nnsX+56n3JlVWnCv5CeDFZbhb7k6TGBzBAKwgVA/4clwgy8nNIg62eSxPFy0KN1pY99kXvhEqOHsu/xcPE38ftIbKl6Ai+gujNt5rBpVwx5MyRWI2r83BWl/OJL2Ucq58zi5PfT9FHamiQ9niM0ukz6Z4A6FJULnVb8BeUmM2VcV9IUwxxSiSjDHKX6JjTupH7chyxjP1n3cYofGEfhRAMiqVtky2n/q0aOPg61aRSQ+TFenf2DtK/atursv53hL98n6YnlnrQ0GX/ziXuRhOtTboB1oaMMRaflcFxaFWRNbjuBZR0fdrH5r+PFQbFTwLQwsSwDtxaToH8xw54XpkD6mAmje4EeA2ogrb6PqtR5YnpxNs97rzpPFgdR2u0+iD9W2r8Ip0xba2svSIJajBdxZj0O9NXPIkKa3UDRD5/VMsVmHiVkzFdXYDeSYeOxlZ4QpWNTr2gAUv9RpigiP0ZqTbFxduGilFl7lAtqLTmJwUpEv0NyAMAdPBO4aK+fHqkPJvf+qL10SPwUrCwJkfzI7uS01O9tVUQTI/4pt5mRJWp841SUOZx/XhxEs50FkRUeOYA6k7/kdD4ms5ZJbmDttnD9hD/CZzzdplrhNamsFmGWM+nopO3MtH0FD3Sd0B9Eoghpbtn03X98v2D4Fto0CPvKnT6CGXrsQQrIRCJsW71KbYMkIY8=
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:BY3PR15MB4977.namprd15.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230022)(4636009)(396003)(376002)(366004)(136003)(346002)(39840400004)(451199015)(38100700002)(86362001)(122000001)(38070700005)(66446008)(55016003)(166002)(478600001)(26005)(966005)(8936002)(71200400001)(66946007)(66476007)(66556008)(76116006)(6916009)(9686003)(2906002)(316002)(6506007)(5660300002)(52536014)(186003)(41300700001)(64756008)(7696005)(8676002)(4744005)(33656002); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: YfslF9kKpsb7+lq3f7dGTkKVJJ5neTDq4W+ih+HUlxvclvxnHilTieOwnB75MyB7RP5XNHNIOtwV6BoU8eoyBlQa9E8YKNodz9LpbAC+AVrGTpUe1ORUjLDOtzKfGie4RSY8u0aN3MKGqpq+M7/0agROYX3yakxrAMTcGPVed0LcONXkd/GxEPgRMvuz8ggZVHhXsmxbhLMCoU9gFbra7Glt5j8QHLwrJ74C2WA9k8eZKrFTOhxHOJ7NlctJoH9cQamWR2wIIsE3w0yBbFxrnybtmf2mJSmm5mRPdYw07ba7B33R31NjszgFByYXedoK6Vct9vyuN/PasnqGCCVJUbFW2Z1vebsTJamnFhilF5GwFp77Pxm4gt0ByXQ/UxjMYXwkWcYXmdsgiygUpZcYg9WhhS5Wesjr6hbFoHQWNNsS29edqnOOPdVtw4JvV0b1JrifkLcJWNFkT3l98ZdVFpkVWF20HA0u4rQ/+CeK9+PUuZPXR9cicXL7k++B+9c1sTX2kd2BmepNnu0aSdyA/TlJAXASSUnr6zq6nL+MzTcsQpF7xrK6wj4W8UwZ3XGq5wAcphHftvACA77kY/cJPkO/oyUnDbyQda/yDrKrROu6QPtvWOFk+R8q+X9tF+X3yJ1+SbzSVyQuaY+oNT3LBaxCv8Sw2n7NqLUNlPogNma4xaLZVxc71W1SiOBye16OoIAsUkGiY8cMYtKH40obDY7D1TPrBaBs3/j8J5YH2WmxnuEz87el6TSSsEQtVfp2zuk2lBp5d+4+0iltiMd/iDPp8clNvDcXkEIy37wU2KJyMVULOvjVRU5cB5DJPcBSfrcUNqd5vVIlQF14yt10HqOaGypyjWLtYCPuHK2R8w0hWjjRPVQT+ohfubHldipdaDwmkI2jw4BS3jDHf8m1j/5P9ZYP00OX7X7/8Fydgs9743kIZ5o39RThh1X7/Ji+ZU+SWVkogPZ4Efn2lmUhzIZIsi9Q+c57Jsdw4qE4ZxPPhviGvfd5OQweibJswE2L0QwOwoiYb1rW0zEFqB+6lpFEpjf4NAOHZzVFOqzipA4yS8FppUQeedsxfbcw2/fTnJzJFlNSQWfZKfWeMv3BJki92lUxGOnQzsZeZJKfvM3/9ImxpVJYsGSaT59F/t40yIpiKOKnBoBzYdYx6MeyvGJhUj0+Sexflv9NSj7UKET2C9/KCm+Rmo0MqW70c4oBgy9V9YrowBAz1AVnY+CGzHBiih9wAW1qs/SYoBYycpuKacwy6rexOHAAVcqjecsk8OlDch74w6zI2yMVmLVwp48Z27UsjApVr9xfLIT1TqnpFicY38045sIhLChtLX86SktsHs1c6Obz4s6CgKLXJOMs7JcP7w5+EIJHlekpbZefz9xA4zso+5t8JJw9Xo2GxohXGItHqRfTZ/ujahAiUaXfs0zrHjNF3Pt6d3MhUFmrHAWNW9rHVoun4sei47MyvZjlKf/6JP1f+6Ho8TVS8yvDOcbwHCT0lkk4VKfqzqVBkPPim5dYgjxVxiVfr9hmIRcj7vGCBJiWnhTsPEJGFf/bvtlTU+YkHq/58zfzQazgHmYkJFRuDKPtxMST8dTHyDiwzEoCr39ZT7qxODV65g==
Content-Type: multipart/alternative; boundary="_000_BY3PR15MB49772712D3DDF93D27588D13AD3F9BY3PR15MB4977namp_"
MIME-Version: 1.0
X-OriginatorOrg: parc.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: BY3PR15MB4977.namprd15.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: d6ba7e6e-e542-465b-3826-08dac19df538
X-MS-Exchange-CrossTenant-originalarrivaltime: 08 Nov 2022 15:28:59.4318 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 733d6903-c9f1-4a0f-b05b-d75eddb52d0d
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: qwUedl1oxATMcwxxQc0UgRvIVFTrvtKer/n8afXB+VQJpisKevGlXeMGUIfGtQOk
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DM6PR15MB2268
Archived-At: <https://mailarchive.ietf.org/arch/msg/icnrg/a5D-ZTmGJgR38dQP9ggCOmbAKAQ>
Subject: [icnrg] FLIC encryption and COSE WG
X-BeenThere: icnrg@irtf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Information-Centric Networking research group discussion list <icnrg.irtf.org>
List-Unsubscribe: <https://www.irtf.org/mailman/options/icnrg>, <mailto:icnrg-request@irtf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/icnrg/>
List-Post: <mailto:icnrg@irtf.org>
List-Help: <mailto:icnrg-request@irtf.org?subject=help>
List-Subscribe: <https://www.irtf.org/mailman/listinfo/icnrg>, <mailto:icnrg-request@irtf.org?subject=subscribe>
X-List-Received-Date: Tue, 08 Nov 2022 15:32:09 -0000

The COSE WG [1] addresses a similar problem to FLIC encryption.  In regards to a nonce, they use two options: a complete IV in the encrypted object header or a partial IV, where the receiver has the other part.

They also broke the problem into “direct” (like our preshared key) and “wrapped” (like our RSA key transport mode).  My proposal for -05 was to move to what COSE calls “Direct Key with KDF” [2].

They also have a section on ECDH usage.

[1] https://www.rfc-editor.org/rfc/rfc9052.html#name-common-cose-header-paramete
[2] https://www.rfc-editor.org/rfc/rfc9053#name-direct-key-with-kdf


Marc

v2.23.0 | Report a Bug | By Email