Re: [IPsec] I-D Action: draft-ietf-ipsecme-implicit-iv-03.txt
David Schinazi <dschinazi@apple.com> Wed, 09 May 2018 22:35 UTC
Return-Path: <dschinazi@apple.com>
X-Original-To: ipsec@ietfa.amsl.com
Delivered-To: ipsec@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id DE0E312D7E2 for <ipsec@ietfa.amsl.com>; Wed, 9 May 2018 15:35:09 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.311
X-Spam-Level:
X-Spam-Status: No, score=-4.311 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_MED=-2.3, SPF_PASS=-0.001, T_DKIMWL_WL_HIGH=-0.01] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=apple.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id mVnYuUW1StOh for <ipsec@ietfa.amsl.com>; Wed, 9 May 2018 15:35:07 -0700 (PDT)
Received: from mail-in24.apple.com (mail-out24.apple.com [17.171.2.34]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id B6FAA129C5D for <ipsec@ietf.org>; Wed, 9 May 2018 15:35:07 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; d=apple.com; s=mailout2048s; c=relaxed/simple; q=dns/txt; i=@apple.com; t=1525905307; x=2389818907; h=From:Sender:Reply-To:Subject:Date:Message-id:To:Cc:MIME-version:Content-type: Content-transfer-encoding:Content-ID:Content-Description:Resent-Date:Resent-From: Resent-Sender:Resent-To:Resent-Cc:Resent-Message-ID:In-reply-to:References:List-Id: List-Help:List-Unsubscribe:List-Subscribe:List-Post:List-Owner:List-Archive; bh=vx782/qpJZC53RHha+88VtcmLPWX2IlT2QDeisep6Sk=; b=Fb0FhylUcOtu1x9IEAuif7uxw2UVQDspGSVJbndDLeC6bZOTDKL0lf+b/LWdnh82 N/M+mVkvhUXtuVGcCQMRakKmQIMJY+aP75jkgP7mVTyuzxSytRJk5PhiIlVcC/DK WYUwXFAl6OvbrAJ7Yx/OxKH+W7cTU90CInASP9OXr2wIhVvDeFA0Eopb9u7jdnh6 FhVmXIhdB1AMRpt5UZ8/SpMhtuXlSkuc96cJ0pLlmZTrgoNHC0qDYqxf/MXbwzO/ 78xavPoDRuXlRu5/ec/VH7HmDEFlXE//T8WFvOxv6LTjw3rnedtODgNBaP4gW4+F rsBCZ/Wf3eX4fCi+kcY+SQ==;
Received: from relay3.apple.com (relay3.apple.com [17.128.113.83]) (using TLS with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mail-in24.apple.com (Apple Secure Mail Relay) with SMTP id CF.C9.10828.A9773FA5; Wed, 9 May 2018 15:35:07 -0700 (PDT)
X-AuditID: 11ab0218-260a89e000002a4c-c8-5af3779ab39b
Received: from nwk-mmpp-sz11.apple.com (nwk-mmpp-sz11.apple.com [17.128.115.155]) (using TLS with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (Client did not present a certificate) by relay3.apple.com (Apple SCV relay) with SMTP id E4.07.18185.A9773FA5; Wed, 9 May 2018 15:35:06 -0700 (PDT)
MIME-version: 1.0
Content-transfer-encoding: 7bit
Content-type: text/plain; CHARSET="US-ASCII"
Received: from [17.234.2.147] by nwk-mmpp-sz11.apple.com (Oracle Communications Messaging Server 8.0.2.2.20180403 64bit (built Apr 3 2018)) with ESMTPSA id <0P8H00HJ2G2HPA10@nwk-mmpp-sz11.apple.com> for ipsec@ietf.org; Wed, 09 May 2018 15:35:06 -0700 (PDT)
Sender: dschinazi@apple.com
From: David Schinazi <dschinazi@apple.com>
Date: Wed, 09 May 2018 15:35:04 -0700
References: <152589659854.3921.2410806894660111145@ietfa.amsl.com>
To: "ipsec@ietf.org WG" <ipsec@ietf.org>
In-reply-to: <152589659854.3921.2410806894660111145@ietfa.amsl.com>
Message-id: <108C7E85-C321-4946-8C17-A59FB443C4C6@apple.com>
X-Mailer: Apple Mail (2.3445.5.20)
X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFlrCLMWRmVeSWpSXmKPExsUi2FAYrDu7/HOUwcHVTBb7t7xgc2D0WLLk J1MAYxSXTUpqTmZZapG+XQJXxsf9DYwFpwUrVm28xNjAeJ63i5GTQ0LAROJd/zKmLkYuDiGB NUwSTfdmMMEknq6Zyw6R2MAk0dc4mxEkwSsgKPFj8j2WLkYODmYBeYmD52VBwswCWhLfH7Wy QNS3M0m8PbgdrF5YQFqi68JdVpB6NqCiA2uMIMJuEk2n97KA2CwCqhI/f20A2ysk4CSxad45 sFYRAQ2JcwtvsoG0cgo4S2w+kgZxgY3EmZtLWCDOVJKY/v02G8haCYGnrBJLe/tYJzAKzUJy 6SyES2chuXQBI/MqRuHcxMwc3cw8IxO9xIKCnFS95PzcTYygYF3NJLGD8ctrw0OMAhyMSjy8 H3g+RwmxJpYVV+YeYpTmYFES5/3M9ihKSCA9sSQ1OzW1ILUovqg0J7X4ECMTB6dUA+NySft9 B4odLRK67oVsWbfd9mG/b9uFK9r/0xK7c99+P3r4oOM3tSK/B2dSItlftnXGGz+LDBCOdJHQ c/W+wsuYdelm03E3w7fTZe97PQmIqr/Y2z5X5XP0qRiRjVPZbiTtV7D5vqPv82thSROmTb8P 7FMKlmXtezGt2vKT1qH7BbMFt6zyVVdiKc5INNRiLipOBACum8y3NwIAAA==
X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFprGLMWRmVeSWpSXmKPExsUi2FA8W3dW+ecog787DCz2b3nB5sDosWTJ T6YAxigum5TUnMyy1CJ9uwSujI/7GxgLTgtWrNp4ibGB8TxvFyMnh4SAicTTNXPZuxi5OIQE NjBJ9DXOZgRJ8AoISvyYfI+li5GDg1lAXuLgeVmQMLOAlsT3R60sEPXtTBJvD24HqxcWkJbo unCXFaSeDajowBojiLCbRNPpvSwgNouAqsTPXxuYQGwhASeJTfPOgbWKCGhInFt4kw2klVPA WWLzkTSIC2wkztxcwgJxppLE9O+32SYw8s9CctwshONmITluASPzKkaBotScxEpjvcSCgpxU veT83E2M4NAqDN7B+GeZ1SFGAQ5GJR7eGVyfo4RYE8uKK3MPMUpwMCuJ8D6OBwrxpiRWVqUW 5ccXleakFh9ilOZgURLn1b/7IUpIID2xJDU7NbUgtQgmy8TBKdXAqG/5qdeP0ev6Y+Ei2w/p HPOP6xRfzN/eKnQj7oSjR5yu1Hu/y3+2WyaHnVTs37IveD7r0c1mVR1bUs4v/rHvtXBW2dx5 n3WdTn70UYosXXFGRfUDr+U50X2CXF49B+1qnl1Kt161PL35dcOjnkWRtYuO7pb94Fypsu2L cO6/Ql9Gidl2jq+mKbEUZyQaajEXFScCAC25YGUpAgAA
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipsec/5tbnO2Ud_ZWDBg01n14wATNKqeU>
Subject: Re: [IPsec] I-D Action: draft-ietf-ipsecme-implicit-iv-03.txt
X-BeenThere: ipsec@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: Discussion of IPsec protocols <ipsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipsec>, <mailto:ipsec-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipsec/>
List-Post: <mailto:ipsec@ietf.org>
List-Help: <mailto:ipsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipsec>, <mailto:ipsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 09 May 2018 22:35:10 -0000
Thanks for the update, authors! I've reviewed -03 and it looks great to me. David > On May 9, 2018, at 13:09, internet-drafts@ietf.org wrote: > > > A New Internet-Draft is available from the on-line Internet-Drafts directories. > This draft is a work item of the IP Security Maintenance and Extensions WG of the IETF. > > Title : Implicit IV for Counter-based Ciphers in Encapsulating Security Payload (ESP) > Authors : Daniel Migault > Tobias Guggemos > Yoav Nir > Filename : draft-ietf-ipsecme-implicit-iv-03.txt > Pages : 8 > Date : 2018-05-09 > > Abstract: > Encapsulating Security Payload (ESP) sends an initialization vector > (IV) or nonce in each packet. The size of IV depends on the applied > transform, being usually 8 or 16 octets for the transforms defined by > the time this document is written. Some algorithms such as AES-GCM, > AES-CCM, AES-CTR and ChaCha20-Poly1305 require a unique nonce but do > not require an unpredictable nonce. When using such algorithms the > packet counter value can be used to generate a nonce. This avoids > sending the nonce itself, and saves in the case of AES-GCM, AES-CCM, > AES-CTR and ChaCha20-Poly1305 8 octets per packet. This document > describes how to do this. > > > The IETF datatracker status page for this draft is: > https://datatracker.ietf.org/doc/draft-ietf-ipsecme-implicit-iv/ > > There are also htmlized versions available at: > https://tools.ietf.org/html/draft-ietf-ipsecme-implicit-iv-03 > https://datatracker.ietf.org/doc/html/draft-ietf-ipsecme-implicit-iv-03 > > A diff from the previous version is available at: > https://www.ietf.org/rfcdiff?url2=draft-ietf-ipsecme-implicit-iv-03 > > > Please note that it may take a couple of minutes from the time of submission > until the htmlized version and diff are available at tools.ietf.org. > > Internet-Drafts are also available by anonymous FTP at: > ftp://ftp.ietf.org/internet-drafts/ > > _______________________________________________ > IPsec mailing list > IPsec@ietf.org > https://www.ietf.org/mailman/listinfo/ipsec
- [IPsec] I-D Action: draft-ietf-ipsecme-implicit-i… internet-drafts
- Re: [IPsec] I-D Action: draft-ietf-ipsecme-implic… David Schinazi