IETF Logo Mail Archive

Re: [IPsec] IPsec with QKD

Rodney Van Meter <rdv@sfc.wide.ad.jp> Fri, 31 October 2014 12:13 UTC

Return-Path: <rdv@sfc.wide.ad.jp>
X-Original-To: ipsec@ietfa.amsl.com
Delivered-To: ipsec@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id DDE441A8A16 for <ipsec@ietfa.amsl.com>; Fri, 31 Oct 2014 05:13:05 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -95.708
X-Spam-Level:
X-Spam-Status: No, score=-95.708 tagged_above=-999 required=5 tests=[BAYES_50=0.8, HELO_EQ_JP=1.244, HOST_EQ_JP=1.265, RELAY_IS_203=0.994, SPF_PASS=-0.001, T_RP_MATCHES_RCVD=-0.01, USER_IN_WHITELIST=-100] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id O4qtC_GvdMaX for <ipsec@ietfa.amsl.com>; Fri, 31 Oct 2014 05:13:03 -0700 (PDT)
Received: from mail.sfc.wide.ad.jp (shonan.sfc.wide.ad.jp [203.178.142.130]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 92C871A887B for <ipsec@ietf.org>; Fri, 31 Oct 2014 05:13:03 -0700 (PDT)
Received: from [192.168.0.2] (cpe-066-057-017-031.nc.res.rr.com [66.57.17.31]) by mail.sfc.wide.ad.jp (Postfix) with ESMTPSA id 7C4342781C2; Fri, 31 Oct 2014 21:12:57 +0900 (JST)
Content-Type: text/plain; charset="windows-1252"
Mime-Version: 1.0 (Mac OS X Mail 7.3 \(1878.6\))
From: Rodney Van Meter <rdv@sfc.wide.ad.jp>
In-Reply-To: <rmisii4lare.fsf@fnord.ir.bbn.com>
Date: Fri, 31 Oct 2014 08:12:54 -0400
Content-Transfer-Encoding: quoted-printable
Message-Id: <71AEFA9E-B761-411E-AAE1-E3DFCB93E517@sfc.wide.ad.jp>
References: <9FA67F6A-A730-46FC-925E-F16A1B686D73@sfc.wide.ad.jp> <7134F6D8-587F-4EBA-8E23-C088D8F1EA25@dell.com> <264EF2D3-F00F-4D3C-9576-D61879AE9D44@dell.com> <rmisii4lare.fsf@fnord.ir.bbn.com>
To: Greg Troxel <gdt@ir.bbn.com>
X-Mailer: Apple Mail (2.1878.6)
Archived-At: http://mailarchive.ietf.org/arch/msg/ipsec/PDgfRbKhiw2K8X6IcI-Tl4DzB3A
Cc: Rodney Van Meter <rdv@sfc.wide.ad.jp>, ipsec@ietf.org, kurosagi@sfc.wide.ad.jp, Paul_Koning@Dell.com, shigeya@wide.ad.jp
Subject: Re: [IPsec] IPsec with QKD
X-BeenThere: ipsec@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Discussion of IPsec protocols <ipsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipsec>, <mailto:ipsec-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ipsec/>
List-Post: <mailto:ipsec@ietf.org>
List-Help: <mailto:ipsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipsec>, <mailto:ipsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 31 Oct 2014 12:13:06 -0000

On Oct 31, 2014, at 7:49 AM, Greg Troxel <gdt@ir.bbn.com> wrote:

> 
> I implemented using QKD material for IPsec (in 2002, if I can remember
> the years right), which included an interface between QKD processing and
> racoon (on NetBSD) to include QKD bits in the Phase 2 hash.  What's been
> published on that effort is:
>   http://dx.doi.org/10.1145/863955.863982

Yes, we’re very familar with your work, the first in the world, as far as I’m aware!  It was one of our inspirations, although our actual implementation was done using QKD devices we borrowed from acquaintances at NEC.  I’ve known Chip since about 2004.  My memory fades already, but when we began this project in 2008, if memory serves, we inquired about simply using your code, but for some reason that wasn’t possible.  I think at the time Chip felt like he was unable to release it, but I can’t remember the details.

When we first wrote down what we had done (even before the I-D -00 was published), Chip looked at our technical approach and endorsed it as more flexible than what you guys had done, which I believe involved borrowing some bits in existing headers rather than creating new payload and transform types.  I don’t recall whether Chip asked you about it directly at that time.  I think Dave Pearson may have looked at it.

FWIW, as long as we’re talking history of projects, Sakane-san, one of the key implementers of racoon2 if I have it right, kibbitzed with us a bit on this project.

		—Rod

v2.23.0 | Report a Bug | By Email