IETF Logo Mail Archive

Re: [IPsec] Preliminary minutes from today's meeting

"Scott Fluhrer (sfluhrer)" <sfluhrer@cisco.com> Tue, 12 March 2013 20:26 UTC

Return-Path: <sfluhrer@cisco.com>
X-Original-To: ipsec@ietfa.amsl.com
Delivered-To: ipsec@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6EEC611E81A0 for <ipsec@ietfa.amsl.com>; Tue, 12 Mar 2013 13:26:37 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -10.599
X-Spam-Level:
X-Spam-Status: No, score=-10.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, RCVD_IN_DNSWL_HI=-8]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Z+o7iIKQ+ep8 for <ipsec@ietfa.amsl.com>; Tue, 12 Mar 2013 13:26:36 -0700 (PDT)
Received: from rcdn-iport-4.cisco.com (rcdn-iport-4.cisco.com [173.37.86.75]) by ietfa.amsl.com (Postfix) with ESMTP id 317FC11E8187 for <ipsec@ietf.org>; Tue, 12 Mar 2013 13:26:26 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=2232; q=dns/txt; s=iport; t=1363119986; x=1364329586; h=from:to:cc:subject:date:message-id:references: in-reply-to:content-transfer-encoding:mime-version; bh=p8fB2RqdlRcb+CJcChXd0fPGPVjfevrFrDwDs0EMYsQ=; b=Hm2PMM5v7D4FQbWT7VdM7BCdvDC+4YTVoJqUlrbfwWEHFlNYzJzKgUq+ iRLGsxIj3h78aBlcb2QMNSUadkUrcZtt+tB3r3/bCCdfWdCt8uAIsuGYG JKLJhaU32ZQNGxqEr9fup3NcNuFNXfib+J0lxIfLAXXPfU4wxVcROa29j A=;
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: AgEFAOGNP1GtJV2d/2dsb2JhbABDxGqBSxZ0gikBAQEEAQEBNzQLDAQCAQgRBAEBCxQJBycLFAkIAgQBDQUIAYgLDLFUj1wXjVyBACYLBwaCWWEDp0yDCoFzNQ
X-IronPort-AV: E=Sophos;i="4.84,833,1355097600"; d="scan'208";a="186749639"
Received: from rcdn-core-6.cisco.com ([173.37.93.157]) by rcdn-iport-4.cisco.com with ESMTP; 12 Mar 2013 20:26:25 +0000
Received: from xhc-aln-x11.cisco.com (xhc-aln-x11.cisco.com [173.36.12.85]) by rcdn-core-6.cisco.com (8.14.5/8.14.5) with ESMTP id r2CKQPJw014575 (version=TLSv1/SSLv3 cipher=AES128-SHA bits=128 verify=FAIL); Tue, 12 Mar 2013 20:26:25 GMT
Received: from xmb-rcd-x04.cisco.com ([169.254.8.112]) by xhc-aln-x11.cisco.com ([173.36.12.85]) with mapi id 14.02.0318.004; Tue, 12 Mar 2013 15:26:25 -0500
From: "Scott Fluhrer (sfluhrer)" <sfluhrer@cisco.com>
To: Tero Kivinen <kivinen@iki.fi>, Paul Hoffman <paul.hoffman@vpnc.org>
Thread-Topic: [IPsec] Preliminary minutes from today's meeting
Thread-Index: AQHOH1oFnR+8eGG2dU6fw65DoIPJSpiif4aQ
Date: Tue, 12 Mar 2013 20:26:25 +0000
Message-ID: <A113ACFD9DF8B04F96395BDEACB34042090412E0@xmb-rcd-x04.cisco.com>
References: <0A7279E5-312A-4535-89C4-C1AF06C02DC3@vpnc.org> <20799.34117.86998.862225@fireball.kivinen.iki.fi>
In-Reply-To: <20799.34117.86998.862225@fireball.kivinen.iki.fi>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [10.32.244.83]
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
Cc: IPsecme WG <ipsec@ietf.org>
Subject: Re: [IPsec] Preliminary minutes from today's meeting
X-BeenThere: ipsec@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Discussion of IPsec protocols <ipsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipsec>, <mailto:ipsec-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ipsec>
List-Post: <mailto:ipsec@ietf.org>
List-Help: <mailto:ipsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipsec>, <mailto:ipsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 12 Mar 2013 20:26:37 -0000

> -----Original Message-----
> From: ipsec-bounces@ietf.org [mailto:ipsec-bounces@ietf.org] On Behalf
> Of Tero Kivinen
> Sent: Tuesday, March 12, 2013 3:43 PM
> To: Paul Hoffman
> Cc: IPsecme WG
> Subject: [IPsec] Preliminary minutes from today's meeting
> 
> Paul Hoffman writes:
> > ...are at
> > http://www.ietf.org/proceedings/86/minutes/minutes-86-ipsecme
> >
> > Please send changes *to the minutes* to the list. If you want to
> > discuss something that was discussed in the minutes, please start a
> > new mail thread. Thanks! (And thanks to Dan Harkins for turning these
> > around quickly.)
> 
> Very good Dan... Thanks... Some comments:
> 
> ----------------------------------------------------------------------
>   * D-H tests for IKEv2 (Tero Kivinen)
> ...
>     - tests are required if using ECDH or reusing public keys or
> 				       ^^
>       using groups with a small subgroup.
> ----------------------------------------------------------------------
> 
> That "or" needs to be "and". I.e. test are required if using ECDH and reusing
> public keys. I.e. both are required.

Actually, the condition is "reusing public keys AND (ECDH OR groups with a small subgroup)"

That is,

- If you're not reusing public keys, well, the attacker can learn something about the DH private key that you used when negotiating with him, however that doesn't tell him about what you used on any other SA

- If you are reusing public keys, then he can learn a lot of information with ECDH, and some information with a MODP group with a small subgroup, by injecting an illegal value, and seeing how the other side reacts (that is, what keys he derives).

> 
> ----------------------------------------------------------------------
>     - Jabber! Yaron says "this is true already."
> ----------------------------------------------------------------------
> 
> I think that reply was to answer to Paul's comment that the draft should
> support different types of groups we have out there.
> --
> kivinen@iki.fi
> _______________________________________________
> IPsec mailing list
> IPsec@ietf.org
> https://www.ietf.org/mailman/listinfo/ipsec

v2.23.0 | Report a Bug | By Email