[IPsec] Beginning the PAKE selection process
Paul Hoffman <paul.hoffman@vpnc.org> Mon, 17 May 2010 14:44 UTC
Return-Path: <paul.hoffman@vpnc.org>
X-Original-To: ipsec@core3.amsl.com
Delivered-To: ipsec@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 992783A6BD5 for <ipsec@core3.amsl.com>; Mon, 17 May 2010 07:44:16 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.602
X-Spam-Level:
X-Spam-Status: No, score=-0.602 tagged_above=-999 required=5 tests=[AWL=-1.156, BAYES_50=0.001, HELO_MISMATCH_COM=0.553]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id E82-OWnhH7nz for <ipsec@core3.amsl.com>; Mon, 17 May 2010 07:44:15 -0700 (PDT)
Received: from hoffman.proper.com (Hoffman.Proper.COM [207.182.41.81]) by core3.amsl.com (Postfix) with ESMTP id 65AE328C0EB for <ipsec@ietf.org>; Mon, 17 May 2010 07:43:04 -0700 (PDT)
Received: from [10.20.30.158] (75-101-30-90.dsl.dynamic.sonic.net [75.101.30.90]) (authenticated bits=0) by hoffman.proper.com (8.14.4/8.14.3) with ESMTP id o4HEgtkV017298 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO) for <ipsec@ietf.org>; Mon, 17 May 2010 07:42:56 -0700 (MST) (envelope-from paul.hoffman@vpnc.org)
Mime-Version: 1.0
Message-Id: <p06240809c8170588347a@[10.20.30.158]>
Date: Mon, 17 May 2010 07:42:50 -0700
To: IPsecme WG <ipsec@ietf.org>
From: Paul Hoffman <paul.hoffman@vpnc.org>
Content-Type: text/plain; charset="us-ascii"
Subject: [IPsec] Beginning the PAKE selection process
X-BeenThere: ipsec@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Discussion of IPsec protocols <ipsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/ipsec>, <mailto:ipsec-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ipsec>
List-Post: <mailto:ipsec@ietf.org>
List-Help: <mailto:ipsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipsec>, <mailto:ipsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 17 May 2010 14:44:16 -0000
Greetings again. This WG is chartered to "develop a standards-track extension to IKEv2 to allow mutual authentication based on 'weak' (low-entropy) shared secrets." The goal is to avoid off-line dictionary attacks without requiring the use of certificates or EAP. There are many already-developed algorithms that can be used, and the WG needs to pick one that both is believed to be secure and is believed to have acceptable intellectual property features. As we discussed earlier, each WG member needs to come up with their own criteria for making such a choice. Dan Harkins has proposed a set of guidelines that individuals might use when choosing; see <http://www.ietf.org/id/draft-harkins-ipsecme-pake-criteria-00.txt>. So far, three protocols have been proposed to the WG: -<http://tools.ietf.org/html/draft-harkins-ipsecme-spsk-auth> -<http://tools.ietf.org/html/draft-kuegler-ipsecme-pace-ikev2> -<http://tools.ietf.org/html/draft-sheffer-ipsecme-hush> In addition, one more draft was presented to the WG: <http://tools.ietf.org/html/draft-shin-augmented-pake>. However the Augmented PAKE draft does not specify how it would be integrated into IKEv2. Note that more proposals might be made as we discuss; such proposals will hopefully be accompanied by Internet Drafts that show both the crypto and how it would be integrated into IKEv2. To start off this conversation, I propose that people start threads on the individual drafts, saying which positive and negative criteria they think apply to each. I also propose that replying to this message, or starting a thread that is supposedly about all four proposals but only focuses on one, is not going to help much. Of course, the authors of the four drafts are welcome to say why they think their proposal meets an optimum set of criteria, and to clarify parts of their proposals as others comment. Obviously these are all initial drafts, and the WG will have ample opportunity to improve the selected proposal later in the process. For now, please focus on the relative advantages and disadvantages (based on your personal criteria) of each of the proposals. --Paul Hoffman, Director --VPN Consortium
- [IPsec] Beginning the PAKE selection process Paul Hoffman
- Re: [IPsec] Beginning the PAKE selection process Yaron Sheffer
- Re: [IPsec] Beginning the PAKE selection process Dan Harkins
- Re: [IPsec] Beginning the PAKE selection process Paul Hoffman
- Re: [IPsec] Beginning the PAKE selection process Nicolas Williams
- Re: [IPsec] Beginning the PAKE selection process Dan Harkins
- Re: [IPsec] Beginning the PAKE selection process Dan Harkins
- Re: [IPsec] Beginning the PAKE selection process Nicolas Williams
- Re: [IPsec] Beginning the PAKE selection process Nicolas Williams
- Re: [IPsec] Beginning the PAKE selection process Nicolas Williams
- Re: [IPsec] Beginning the PAKE selection process Paul Hoffman