IETF Logo Mail Archive

Re: [MLS] Re-randomized TreeKEM

Konrad Kohbrok <konrad.kohbrok@datashrine.de> Mon, 21 October 2019 12:31 UTC

Return-Path: <konrad.kohbrok@datashrine.de>
X-Original-To: mls@ietfa.amsl.com
Delivered-To: mls@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3E1C9120099 for <mls@ietfa.amsl.com>; Mon, 21 Oct 2019 05:31:13 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.598
X-Spam-Level:
X-Spam-Status: No, score=-2.598 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_LOW=-0.7, SPF_HELO_NONE=0.001, SPF_NONE=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id LXWB35YqyZ3f for <mls@ietfa.amsl.com>; Mon, 21 Oct 2019 05:31:11 -0700 (PDT)
Received: from mx2a.mailbox.org (mx2a.mailbox.org [IPv6:2001:67c:2050:104:0:2:25:2]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 607CE12004D for <mls@ietf.org>; Mon, 21 Oct 2019 05:31:11 -0700 (PDT)
Received: from smtp2.mailbox.org (smtp2.mailbox.org [80.241.60.241]) (using TLSv1.2 with cipher ECDHE-RSA-CHACHA20-POLY1305 (256/256 bits)) (No client certificate requested) by mx2a.mailbox.org (Postfix) with ESMTPS id 4682AA0190 for <mls@ietf.org>; Mon, 21 Oct 2019 14:31:09 +0200 (CEST)
X-Virus-Scanned: amavisd-new at heinlein-support.de
Received: from smtp2.mailbox.org ([80.241.60.241]) by spamfilter01.heinlein-hosting.de (spamfilter01.heinlein-hosting.de [80.241.56.115]) (amavisd-new, port 10030) with ESMTP id 3Ycii6M5Y68F for <mls@ietf.org>; Mon, 21 Oct 2019 14:31:05 +0200 (CEST)
To: mls@ietf.org
References: <5b1d9cb1-509a-da7d-1361-188dfe0f21d6@wickr.com> <4BEAE096-9597-4619-ADD4-CE13E899481B@inria.fr> <CAMvzKsgMvLP5mmk8fOoTopKhFM6+EQzognv4Eq_FfMHSs9qwiA@mail.gmail.com> <5673C061-B15D-4DD2-A90C-4F179E82C31A@inria.fr> <133ba15a-037f-6a3b-182c-836b14ba233b@wickr.com> <8E87A52E-62CB-4CC0-A715-F236B03AC9E1@gmail.com> <dbe0eb1a-7a6a-4973-0951-7b6dd6f74a56@datashrine.de> <53173BBC-7339-47C0-98A8-FCE6A30E3D78@inria.fr>
From: Konrad Kohbrok <konrad.kohbrok@datashrine.de>
Message-ID: <a0af9af2-9133-6300-9bc2-217862ab7ca9@datashrine.de>
Date: Mon, 21 Oct 2019 14:31:04 +0200
MIME-Version: 1.0
In-Reply-To: <53173BBC-7339-47C0-98A8-FCE6A30E3D78@inria.fr>
Content-Type: text/plain; charset="utf-8"
Content-Language: de-DE
Content-Transfer-Encoding: 8bit
Archived-At: <https://mailarchive.ietf.org/arch/msg/mls/4qT0AOpi6rRlr0YxAktm0aW-P8A>
Subject: Re: [MLS] Re-randomized TreeKEM
X-BeenThere: mls@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Messaging Layer Security <mls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/mls>, <mailto:mls-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/mls/>
List-Post: <mailto:mls@ietf.org>
List-Help: <mailto:mls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/mls>, <mailto:mls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 21 Oct 2019 12:31:13 -0000

Ah, ok I misunderstood. That sounds a lot more feasible :-)

Konrad

On 21.10.19 15:28, Benjamin Beurdouche wrote:
> 
> 
>> On Oct 21, 2019, at 2:20 PM, Konrad Kohbrok <konrad.kohbrok@datashrine.de
>> <mailto:konrad.kohbrok@datashrine.de>> wrote:
>>
>> Hi Karthik,
>>
>> I think you got it right with regard to the additional guarantees gained by
>> RTreeKEM.
>>
>> Regarding your UPKE proposal: Wouldn't A then also have to send the private keys
>> of each key pair to all leaves of the sub-tree blonging to the node that the key
>> pair is generated for? Otherwise, only A could decrypt updates sent to those
>> keys. These private keys would have to be encrypted under some previous one-time
>> key that is subsequently deleted.
> 
> No, I think Karthik suggested to KDF (K=100) keypairs from the new secret
> (instead of K=1 today)
> and immediately kill the received node secret for FS…
> 
> B.
> 
> _______________________________________________
> MLS mailing list
> MLS@ietf.org
> https://www.ietf.org/mailman/listinfo/mls
>

v2.23.0 | Report a Bug | By Email