[lisp] New draft-ietf-lisp-crypto-03 update

Dino Farinacci <farinacci@gmail.com> Fri, 04 December 2015 18:58 UTC

Return-Path: <farinacci@gmail.com>
X-Original-To: lisp@ietfa.amsl.com
Delivered-To: lisp@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com []) by ietfa.amsl.com (Postfix) with ESMTP id 9051E1B3256 for <lisp@ietfa.amsl.com>; Fri, 4 Dec 2015 10:58:00 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.598
X-Spam-Status: No, score=-0.598 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_COMMENT_SAVED_URL=1.391, HTML_MESSAGE=0.001, SPF_PASS=-0.001, T_HTML_ATTACH=0.01] autolearn=no
Received: from mail.ietf.org ([]) by localhost (ietfa.amsl.com []) (amavisd-new, port 10024) with ESMTP id lt402EHnQBOR for <lisp@ietfa.amsl.com>; Fri, 4 Dec 2015 10:57:53 -0800 (PST)
Received: from mail-pa0-x230.google.com (mail-pa0-x230.google.com [IPv6:2607:f8b0:400e:c03::230]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 33FEF1B3252 for <lisp@ietf.org>; Fri, 4 Dec 2015 10:57:53 -0800 (PST)
Received: by pacdm15 with SMTP id dm15so90725148pac.3 for <lisp@ietf.org>; Fri, 04 Dec 2015 10:57:52 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=from:content-type:subject:message-id:date:to:mime-version; bh=W7nHngMOY1VO6mJ97JD19m2kUobSoY6B4sfJb2Uc6JM=; b=cf4CJpQPyNnmnu9LKfpBVD0Q5n7ej/H75kEpbsEPO1sxg3CmXEDnuT1qe33FN1V+Tp FM1CahPPt6EynKrvhtaJtDWw2WA/ZvM/K5zlWGebh0pygkInZ9e6vgJaX7lkSF9NBS6I FPMl0QN4T1wRBGevg3a76xBCVVThjK1T3aY+nc4nxvjJxG7jcw7umRJ5dvVpFp/jYudj oDwV32dLfat2S5FYvKpiLkX6TBSDg/inbthnVJFV+Cxt02o3wLviCP8u/EvXWjex5SwW bmk9Onidc2v/MpXY2bR+P7Qlz4vGtWHy09ivrieju9WekGyJ6At/YTpZqq7I35TCRwzq 9Weg==
X-Received: by with SMTP id hd10mr23415293pac.111.1449255472761; Fri, 04 Dec 2015 10:57:52 -0800 (PST)
Received: from [] (173-11-119-245-SFBA.hfc.comcastbusiness.net. []) by smtp.gmail.com with ESMTPSA id c1sm18675390pas.1.2015. for <lisp@ietf.org> (version=TLS1 cipher=ECDHE-RSA-AES128-SHA bits=128/128); Fri, 04 Dec 2015 10:57:51 -0800 (PST)
From: Dino Farinacci <farinacci@gmail.com>
Content-Type: multipart/mixed; boundary="Apple-Mail=_93271C04-11AF-4AFB-BD49-27B450724A2A"
Message-Id: <1DE57D39-BCC6-4FF5-80D4-E0B6301D319F@gmail.com>
Date: Fri, 4 Dec 2015 10:57:53 -0800
To: LISP mailing list list <lisp@ietf.org>
Mime-Version: 1.0 (Mac OS X Mail 9.1 \(3096.5\))
X-Mailer: Apple Mail (2.3096.5)
Archived-At: <http://mailarchive.ietf.org/arch/msg/lisp/V1nN1B74Lrge6oHoZOY9DMOzArc>
Subject: [lisp] New draft-ietf-lisp-crypto-03 update
X-BeenThere: lisp@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: List for the discussion of the Locator/ID Separation Protocol <lisp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/lisp>, <mailto:lisp-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/lisp/>
List-Post: <mailto:lisp@ietf.org>
List-Help: <mailto:lisp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/lisp>, <mailto:lisp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 04 Dec 2015 18:58:00 -0000

Brian, Ilari, and I have put in some substantial time for this draft. Changes include:

B.1.  Changes to draft-ietf-lisp-crypto-03.txt

   o  Posted December 2015.

   o  Changed cipher suite allocations.  We now have 2 AES-CBC cipher
      suites for compatibility, 3 AES-GCM cipher suites that are faster
      ciphers that include AE and a Chacha20-Poly1305 cipher suite which
      is the fastest but not totally proven/accepted..

   o  Remove 1024-bit DH keys for key exchange.

   o  Make clear that AES and chacha20 ciphers use AEAD so part of
      encrytion/decryption does authentication.

   o  Make it more clear that separate key pairs are used in each
      direction between xTRs.

   o  Indicate that the IV length is different per cipher suite.

   o  Use a counter based IV for every packet for AEAD ciphers.
      Previously text said to use a random number.  But CBC ciphers, use
      a random number.

   o  Indicate that key material is sent in network byte order (big

   o  Remove A-bit from Security Type LCAF.  No need to do
      authentication only with the introduction of AEAD ciphers.  These
      ciphers can do authentication.  So you get ciphertext for free.

   o  Remove language that refers to "encryption-key" and "integrity-
      key".  Used term "AEAD-key" that is used by the AEAD cipher suites
      that do encryption and authenticaiton internal to the cipher.