IETF Logo Mail Archive

[Ietf-krb-wg] camellia-cts-cmac expert review request

ghudson@MIT.EDU Fri, 19 November 2010 18:22 UTC

Return-Path: <ietf-krb-wg-bounces@lists.anl.gov>
X-Original-To: ietfarch-krb-wg-archive@core3.amsl.com
Delivered-To: ietfarch-krb-wg-archive@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id EDAE73A6863 for <ietfarch-krb-wg-archive@core3.amsl.com>; Fri, 19 Nov 2010 10:22:18 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.599
X-Spam-Level:
X-Spam-Status: No, score=-6.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, RCVD_IN_DNSWL_MED=-4]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id vHxzM79ecptP for <ietfarch-krb-wg-archive@core3.amsl.com>; Fri, 19 Nov 2010 10:22:15 -0800 (PST)
Received: from mailhost.anl.gov (mailhost.anl.gov [130.202.113.50]) by core3.amsl.com (Postfix) with ESMTP id D7D3C3A67D7 for <krb-wg-archive@lists.ietf.org>; Fri, 19 Nov 2010 10:22:14 -0800 (PST)
Received: from mailhost.anl.gov (mailhost.anl.gov [130.202.113.50]) by localhost.anl.gov (Postfix) with ESMTP id BCE2541; Fri, 19 Nov 2010 12:23:04 -0600 (CST)
Received: from lists.anl.gov (katydid.it.anl.gov [146.137.96.32]) by mailhost.anl.gov (Postfix) with ESMTP id 222C52B; Fri, 19 Nov 2010 12:23:00 -0600 (CST)
Received: from katydid.it.anl.gov (localhost [127.0.0.1]) by lists.anl.gov (Postfix) with ESMTP id DF6A680E74; Fri, 19 Nov 2010 12:23:00 -0600 (CST)
X-Original-To: ietf-krb-wg@lists.anl.gov
Delivered-To: ietf-krb-wg@lists.anl.gov
Received: from mailrelay.anl.gov (mailrelay.anl.gov [130.202.101.22]) by lists.anl.gov (Postfix) with ESMTP id 4096380E72 for <ietf-krb-wg@lists.anl.gov>; Fri, 19 Nov 2010 12:22:59 -0600 (CST)
Received: from localhost (localhost [127.0.0.1]) by localhost.it.anl.gov (Postfix) with ESMTP id 22E9F7CC073; Fri, 19 Nov 2010 12:22:59 -0600 (CST)
Received: from mailrelay.anl.gov ([127.0.0.1]) by localhost (mailrelay.anl.gov [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 29116-10; Fri, 19 Nov 2010 12:22:59 -0600 (CST)
Received: from mailgateway.anl.gov (mailgateway.anl.gov [130.202.101.28]) by mailrelay.anl.gov (Postfix) with ESMTP id 01B4E7CC05F for <ietf-krb-wg@lists.anl.gov>; Fri, 19 Nov 2010 12:22:59 -0600 (CST)
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: AosBAI5P5kwSB0QlmWdsb2JhbACUXQEBjgIVAQEBAQEICwoHESK1DYhpgnKCWQSEWjg
X-IronPort-AV: E=Sophos;i="4.59,224,1288587600"; d="scan'208";a="50887977"
Received: from dmz-mailsec-scanner-8.mit.edu ([18.7.68.37]) by mailgateway.anl.gov with ESMTP; 19 Nov 2010 12:22:58 -0600
X-AuditID: 12074425-b7c98ae000000a04-13-4ce6c082ec86
Received: from mailhub-auth-3.mit.edu ( [18.9.21.43]) by dmz-mailsec-scanner-8.mit.edu (Symantec Brightmail Gateway) with SMTP id B5.38.02564.280C6EC4; Fri, 19 Nov 2010 13:22:58 -0500 (EST)
Received: from outgoing.mit.edu (OUTGOING-AUTH.MIT.EDU [18.7.22.103]) by mailhub-auth-3.mit.edu (8.13.8/8.9.2) with ESMTP id oAJIMwEu028117 for <ietf-krb-wg@lists.anl.gov>; Fri, 19 Nov 2010 13:22:58 -0500
Received: from localhost (EQUAL-RITES.MIT.EDU [18.18.1.59]) (authenticated bits=0) (User authenticated as ghudson@ATHENA.MIT.EDU) by outgoing.mit.edu (8.13.6/8.12.4) with ESMTP id oAJIMv5b005488 for <ietf-krb-wg@lists.anl.gov>; Fri, 19 Nov 2010 13:22:58 -0500 (EST)
Date: Fri, 19 Nov 2010 13:22:57 -0500
From: ghudson@MIT.EDU
Message-Id: <201011191822.oAJIMv5b005488@outgoing.mit.edu>
To: ietf-krb-wg@lists.anl.gov
X-Brightmail-Tracker: AAAAARawQDQ=
X-Virus-Scanned: Debian amavisd-new at frigga.it.anl.gov
Subject: [Ietf-krb-wg] camellia-cts-cmac expert review request
X-BeenThere: ietf-krb-wg@lists.anl.gov
X-Mailman-Version: 2.1.13
Precedence: list
List-Id: "This is a list for the IETF Kerberos Working Group. {WORLDPUB, EXTERNAL}" <ietf-krb-wg.lists.anl.gov>
List-Unsubscribe: <https://lists.anl.gov/mailman/options/ietf-krb-wg>, <mailto:ietf-krb-wg-request@lists.anl.gov?subject=unsubscribe>
List-Archive: <https://lists.anl.gov/pipermail/ietf-krb-wg>
List-Post: <mailto:ietf-krb-wg@lists.anl.gov>
List-Help: <mailto:ietf-krb-wg-request@lists.anl.gov?subject=help>
List-Subscribe: <https://lists.anl.gov/mailman/listinfo/ietf-krb-wg>, <mailto:ietf-krb-wg-request@lists.anl.gov?subject=subscribe>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Sender: ietf-krb-wg-bounces@lists.anl.gov
Errors-To: ietf-krb-wg-bounces@lists.anl.gov

I have uploaded a draft describing camellia128-cts-cmac and
camellia256-cts-cmac.  It's at:

http://datatracker.ietf.org/doc/draft-hudson-camellia-cts/

The capsule summary is:

* CBC with CTS for encryption, same as AES.
* A NIST SP800-108 key derivation function; same {Kc,Ke,Ki}
  derivations as in the simplified profile.
* 128-bit CMAC for integrity tag and checksum.
* PBKDF2-HMAC-SHA1 for string-to-key, as with AES, with the enctype
  name as pepper.  Default number of iterations bumped to 32K (a
  factor of 8).  Final key derivation performed with the NIST KDF.

Based on the outcome of Jeff's consensus call, my expectation is that
this draft will be adopted by the working group and eventually
published as informational (although I would be happy to see consensus
form around standards-track).

I'm requesting Ken's expert review of this specification, in order to
identify any road blocks sooner rather than later.  I believe I've
addressed all of the documentation concerns Ken voiced when reviewing
the camellia-ccm draft, and I've included test vectors.

The draft currently has no IANA considerations section; I'm aware that
one will need to be added at some point.
_______________________________________________
ietf-krb-wg mailing list
ietf-krb-wg@lists.anl.gov
https://lists.anl.gov/mailman/listinfo/ietf-krb-wg

v2.23.0 | Report a Bug | By Email