IETF Logo Mail Archive

Re: [manet] I-D Action:draft-ietf-manet-packetbb-sec-00.txt

Paul Lambert <paul@marvell.com> Mon, 21 June 2010 23:25 UTC

Return-Path: <paul@marvell.com>
X-Original-To: manet@core3.amsl.com
Delivered-To: manet@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id DE2203A68D3 for <manet@core3.amsl.com>; Mon, 21 Jun 2010 16:25:20 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: 0.001
X-Spam-Level:
X-Spam-Status: No, score=0.001 tagged_above=-999 required=5 tests=[BAYES_50=0.001]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id dEK57M37GG8s for <manet@core3.amsl.com>; Mon, 21 Jun 2010 16:25:19 -0700 (PDT)
Received: from dakia2.marvell.com (dakia2.marvell.com [65.219.4.35]) by core3.amsl.com (Postfix) with ESMTP id DFB383A6828 for <manet@ietf.org>; Mon, 21 Jun 2010 16:25:19 -0700 (PDT)
X-ASG-Debug-ID: 1277162726-44a648980001-Rp4q3q
Received: from sc-owa02.marvell.com (sc-owa02.marvell.com [10.93.76.22]) by dakia2.marvell.com with ESMTP id seVYVTAjI8NaoOQ2 (version=TLSv1 cipher=RC4-MD5 bits=128 verify=NO); Mon, 21 Jun 2010 16:25:26 -0700 (PDT)
X-Barracuda-Envelope-From: paul@marvell.com
Received: from SC-vEXCH2.marvell.com ([10.93.76.134]) by sc-owa02.marvell.com ([10.93.76.22]) with mapi; Mon, 21 Jun 2010 16:25:26 -0700
From: Paul Lambert <paul@marvell.com>
To: Bo Berry <boberry@cisco.com>, "manet@ietf.org" <manet@ietf.org>
Date: Mon, 21 Jun 2010 16:25:20 -0700
X-ASG-Orig-Subj: RE: [manet] I-D Action:draft-ietf-manet-packetbb-sec-00.txt
Thread-Topic: [manet] I-D Action:draft-ietf-manet-packetbb-sec-00.txt
X-ASG-Orig-Subj: RE: [manet] I-D Action:draft-ietf-manet-packetbb-sec-00.txt
Thread-Index: AcsQipmS/CLB857KT+GdCWgYPQrVHQBDVUqA
Message-ID: <7BAC95F5A7E67643AAFB2C31BEE662D013D5C12487@SC-VEXCH2.marvell.com>
References: <20100620021504.7D1093A6834@core3.amsl.com> <C2120E0E-AB18-4709-BB45-0FF427F91243@cisco.com>
In-Reply-To: <C2120E0E-AB18-4709-BB45-0FF427F91243@cisco.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
acceptlanguage: en-US
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-Barracuda-Connect: sc-owa02.marvell.com[10.93.76.22]
X-Barracuda-Start-Time: 1277162726
X-Barracuda-Encrypted: RC4-MD5
X-Barracuda-URL: http://10.68.76.222:80/cgi-mod/mark.cgi
X-Barracuda-Spam-Score: -1002.00
X-Barracuda-Spam-Status: No, SCORE=-1002.00 using global scores of TAG_LEVEL=1000.0 QUARANTINE_LEVEL=1000.0 KILL_LEVEL=1000.0
Subject: Re: [manet] I-D Action:draft-ietf-manet-packetbb-sec-00.txt
X-BeenThere: manet@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Mobile Ad-hoc Networks <manet.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/manet>, <mailto:manet-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/manet>
List-Post: <mailto:manet@ietf.org>
List-Help: <mailto:manet-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/manet>, <mailto:manet-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 21 Jun 2010 23:25:21 -0000

Seems like a bad idea to have separate hash and signature values:

> The rationale for separating the hash function and the cryptographic
   algorithm into two octets instead of having all combinations in a
   single octet - possibly as TLV type extension - is twofold: First, if
   further hash functions or cryptographic algorithms are added in the
   future, the number space might not remain continuous.  More
   importantly, the number space of 256 possible combinations would be
   rapidly exhausted: 16 different hash functions and 16 different
   cryptographic algorithms would lead to exhaustion.

Having multiple combinations is a bad idea.  It greatly complicates testing of devices since it leaves available many combinations.

The notion that 16 hash and 16 signature values would fill the number space is incorrect.  There is no reason to allow all of the combinations - only a few really make sense.

Similar comments for the parameters.  The overall security context needs to have a definition, but allowing parameterization complicates testing and leaves open room for downgrade attacks.

MD5 should NOT be included in the requested list of hash algorithms.

The cryptographic algorithm registry is poorly constructed and does not accommodate modes of operation (modes should not be a parameter)

This whole encapsulation seems generic and not specific to MANET.  Aren't there existing encapsulations that could be used?

Paul

 
Paul A. Lambert | Marvell Semiconductor | +1 650-787-9141
 

> -----Original Message-----
> From: manet-bounces@ietf.org [mailto:manet-bounces@ietf.org] On Behalf Of
> Bo Berry
> Sent: Sunday, June 20, 2010 5:14 AM
> To: manet@ietf.org
> Subject: Re: [manet] I-D Action:draft-ietf-manet-packetbb-sec-00.txt
> 
> Ulrich, Thomas:
> 
> Below are a few points for consideration and discussion.
> 
> Regards
> -Bo Berry
> 
> 
> In section 10.2.2.  Hash Function suggest adding  SHA-128, SHA-256,
> SHA-386, SHA-512 under SHA-2.
> 
> And in section 10.2.3.  Cryptographic Algorithm, suggest adding ECC.
> 
> As noted in section 5, "Before being able to validate a cryptographic
> signature, routers have to exchange keys (e.g. public keys)."  Each
> router (node) may have several keys (key ring). In this case, it would
> be useful to define a key index TLVs.  The Key Index TLV would be
> needed when multiple keys are used.
> 
> Also suggest breaking the <signature> TLV into separate TLVs to
> increase flexibility and to align with the separate <timestamp> TLV.
> Nodes may wish/need to configure the hash and crypto functions when
> keys are configured and would not need to carry this info in the
> signature TLV.
> 
> So we could define the following TLVs:
> 
>       <key-index TLV> := <key index value>
>       <hash-function TLV> := <hash function identifier>
>       <cryptographic-algorithm TLV> := <crypto-algor identifier>
>       <signature-value TLV> := <signature value>
> 
> 
> 
> 
> On Jun 20, 2010, at 4:41 AM, Ulrich Herberg wrote:
> 
> > I have submitted the packetbb-sec draft as WG draft. The draft does
> > not contain any changes since the last individual draft
> > (draft-herberg-manet-packetbb-sec-03). We will work on a new revision
> > until the IETF meeting in Maastricht.
> >
> > Best regards
> > Ulrich
> 
> > A New Internet-Draft is available from the on-line Internet-Drafts
> directories.
> > This draft is a work item of the Mobile Ad-hoc Networks Working Group of
> the IETF.
> >
> >
> > 	Title           : MANET Cryptographical Signature TLV Definition
> > 	Author(s)       : U. Herberg, T. Clausen
> > 	Filename        : draft-ietf-manet-packetbb-sec-00.txt
> > 	Pages           : 17
> > 	Date            : 2010-06-19
> >
> > This document describes a general and flexible TLV (type-length-value
> > structure) for representing cryptographic signatures as well as
> > timestamps, using the generalized MANET packet/message format
> > [RFC5444].  It defines two Packet TLVs, two Message TLVs, and two
> > Address Block TLVs, for affixing cryptographic signatures and
> > timestamps to a packet, message and address, respectively.
> >
> > A URL for this Internet-Draft is:
> > http://www.ietf.org/internet-drafts/draft-ietf-manet-packetbb-sec-00.txt
> >
> > Internet-Drafts are also available by anonymous FTP at:
> > ftp://ftp.ietf.org/internet-drafts/
> >
> > Below is the data which will enable a MIME compliant mail reader
> > implementation to automatically retrieve the ASCII version of the
> > Internet-Draft.
> > <Mail Attachment>_______________________________________________
> > manet mailing list
> > manet@ietf.org
> > https://www.ietf.org/mailman/listinfo/manet
> 
> 
> 
> 
> 
> 
> _______________________________________________
> manet mailing list
> manet@ietf.org
> https://www.ietf.org/mailman/listinfo/manet

v2.23.0 | Report a Bug | By Email