IETF Logo Mail Archive

Re: [IPsec] I-D on Using the ECC Brainpool Curves for IKEv2 Key Exchange

"David McGrew (mcgrew)" <mcgrew@cisco.com> Mon, 05 November 2012 19:17 UTC

Return-Path: <mcgrew@cisco.com>
X-Original-To: ipsec@ietfa.amsl.com
Delivered-To: ipsec@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A570C21F8540 for <ipsec@ietfa.amsl.com>; Mon, 5 Nov 2012 11:17:47 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -110.599
X-Spam-Level:
X-Spam-Status: No, score=-110.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, RCVD_IN_DNSWL_HI=-8, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id K-P0mesfasCV for <ipsec@ietfa.amsl.com>; Mon, 5 Nov 2012 11:17:47 -0800 (PST)
Received: from rcdn-iport-7.cisco.com (rcdn-iport-7.cisco.com [173.37.86.78]) by ietfa.amsl.com (Postfix) with ESMTP id F3E9821F8532 for <ipsec@ietf.org>; Mon, 5 Nov 2012 11:17:46 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=1986; q=dns/txt; s=iport; t=1352143067; x=1353352667; h=from:to:cc:subject:date:message-id:in-reply-to: content-id:content-transfer-encoding:mime-version; bh=t7e185SbrQ659TH+Vo8oW62demUTCj2+MnzV2QiTJ18=; b=NSnTj0WLv+p09aE2XAZrbWWkr7JcJ/TqPx0q7YazhcQi2wR6YeS6KWbx VDVri2ilm0O1/JyNTuQwlu9AxeQwX2rZamCJgEkMbd8WSK4fbG6vK/rSv WsgkZSwoT4KpzhVRsuBteWQfxeavO+Y0PfVu7Fs1IwzY3+QGq6waAYTh3 0=;
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: Av4EABkQmFCtJV2Z/2dsb2JhbABEwzSBCIIgAQQBAQEPASc0CxIBCCIUNwslAgQBDQUIGodoC5pzoAmRXGEDkkmETo09gWuCb4IZ
X-IronPort-AV: E=Sophos;i="4.80,716,1344211200"; d="scan'208";a="139001350"
Received: from rcdn-core-2.cisco.com ([173.37.93.153]) by rcdn-iport-7.cisco.com with ESMTP; 05 Nov 2012 19:17:43 +0000
Received: from xhc-rcd-x03.cisco.com (xhc-rcd-x03.cisco.com [173.37.183.77]) by rcdn-core-2.cisco.com (8.14.5/8.14.5) with ESMTP id qA5JHg81007505 (version=TLSv1/SSLv3 cipher=AES128-SHA bits=128 verify=FAIL); Mon, 5 Nov 2012 19:17:42 GMT
Received: from xmb-rcd-x04.cisco.com ([169.254.8.200]) by xhc-rcd-x03.cisco.com ([173.37.183.77]) with mapi id 14.02.0318.001; Mon, 5 Nov 2012 13:17:42 -0600
From: "David McGrew (mcgrew)" <mcgrew@cisco.com>
To: Johannes Merkle <johannes.merkle@secunet.com>, IPsecme WG <ipsec@ietf.org>
Thread-Topic: [IPsec] I-D on Using the ECC Brainpool Curves for IKEv2 Key Exchange
Thread-Index: AQHNu1ps1FUub1JjY0W7Zvt4S+0awJfbrn+A
Date: Mon, 05 Nov 2012 19:17:41 +0000
Message-ID: <747787E65E3FBD4E93F0EB2F14DB556B0F507509@xmb-rcd-x04.cisco.com>
In-Reply-To: <5097C08B.9070206@secunet.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/14.2.1.120420
x-originating-ip: [10.82.240.65]
x-tm-as-product-ver: SMEX-10.2.0.1135-7.000.1014-19340.004
x-tm-as-result: No--40.628100-8.000000-31
x-tm-as-user-approved-sender: No
x-tm-as-user-blocked-sender: No
Content-Type: text/plain; charset="us-ascii"
Content-ID: <AA8680C7BCACEB47B66E8E7B4682DECD@cisco.com>
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
Cc: "rfc-ise@rfc-editor.org" <rfc-ise@rfc-editor.org>
Subject: Re: [IPsec] I-D on Using the ECC Brainpool Curves for IKEv2 Key Exchange
X-BeenThere: ipsec@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Discussion of IPsec protocols <ipsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipsec>, <mailto:ipsec-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ipsec>
List-Post: <mailto:ipsec@ietf.org>
List-Help: <mailto:ipsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipsec>, <mailto:ipsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 05 Nov 2012 19:17:47 -0000

Hi Johannes,

Some quick comments:

I strongly encourage you to remove the "Compressed" point format.  Doing
so will minimize the changes between RFC 5903 and make the draft easier to
support, and improve the overall implementation by making it simpler.
Also, it is not clear that there is any advantage to the "compressed"
format.   It saves at most 64 bytes in total for a complete IKEv2 key
establishment, and since IKEv2 exchanges typically send a lot more data
than that, it sounds like a false economy to add complexity in order to
avoid a little bit of data.

The paragraph starting "The corresponding twisted curves ..." is a
distinct and self-contained topic.  I suggest putting it into its own
section.  


In some places, the draft gives [SEC1] as a normative reference, where
RFC6090 is also applicable (Sections 4.1 and 6 apply jn Section 2.2 of
draft-merkle-ikev2-ke-brainpool, for instance).

David

On 11/5/12 8:35 AM, "Johannes Merkle" <johannes.merkle@secunet.com> wrote:

>We have submitted a new revision of the Internet Draft Using the ECC
>Brainpool Curves (defined in RFC 5639) for IKEv2
>Key Exchange
>https://datatracker.ietf.org/doc/draft-merkle-ikev2-ke-brainpool/
>
>Last week, this draft has also been submitted to the Independent
>Submission Editor.
>
>The draft specifies 4 new code points for the IKEv2 transform ID registry
>(224, 256, 384 and 512 bit curve) and
>specifies the encoding of the KE payload with and without point
>compression. The test vectors are shared with Dan's
>draft on IKEv1 
>http://tools.ietf.org/html/draft-harkins-brainpool-ike-groups-01. I have
>removed the "twisted curves" and
>included a note how to use them internally (for efficient implementation)
>using input / output transformations.
>
>Any feedback is welcome.
>
>-- 
>Johannes
>_______________________________________________
>IPsec mailing list
>IPsec@ietf.org
>https://www.ietf.org/mailman/listinfo/ipsec

v2.23.0 | Report a Bug | By Email