[quicwg/base-drafts] Keep PN out of AEAD (#1578)
MikkelFJ <notifications@github.com> Tue, 17 July 2018 16:50 UTC
Return-Path: <noreply@github.com>
X-Original-To: quic-issues@ietfa.amsl.com
Delivered-To: quic-issues@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 1611B130EC5 for <quic-issues@ietfa.amsl.com>; Tue, 17 Jul 2018 09:50:25 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -8.01
X-Spam-Level:
X-Spam-Status: No, score=-8.01 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, MAILING_LIST_MULTI=-1, RCVD_IN_DNSWL_HI=-5, SPF_PASS=-0.001, T_DKIMWL_WL_HIGH=-0.01] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=github.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 54T0WEr74XIo for <quic-issues@ietfa.amsl.com>; Tue, 17 Jul 2018 09:50:23 -0700 (PDT)
Received: from out-7.smtp.github.com (out-7.smtp.github.com [192.30.252.198]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id B19B8130EC2 for <quic-issues@ietf.org>; Tue, 17 Jul 2018 09:50:22 -0700 (PDT)
Date: Tue, 17 Jul 2018 09:50:21 -0700
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=github.com; s=pf2014; t=1531846221; bh=RHE/XAq8D4tGYCjOsf9JYCJ3Kr0RJXms6qs84Fuh8qc=; h=Date:From:Reply-To:To:Cc:Subject:List-ID:List-Archive:List-Post: List-Unsubscribe:From; b=rIieEK/KBwPA9Pi5yuvRAj3DCL9lt1feL3oifYpbDRFrVDGGGi5NlOYlbA6uhgQ8T VmgNY0wpJuWtCIcLq2G+6+WaR3LaQ3E8Gm27IFPKQonKSTBP5QjB+jhT6yx8jlSV0a 9jHfsunSLcMyTa+Zu6ObhzPjLVEtk2fhENFieM0A=
From: MikkelFJ <notifications@github.com>
Reply-To: quicwg/base-drafts <reply+0166e4ab48bf3ffa5875c12f5a73d509b600ea19f1c247c192cf000000011765e04d92a169ce146285ff@reply.github.com>
To: quicwg/base-drafts <base-drafts@noreply.github.com>
Cc: Subscribed <subscribed@noreply.github.com>
Message-ID: <quicwg/base-drafts/issues/1578@github.com>
Subject: [quicwg/base-drafts] Keep PN out of AEAD (#1578)
Mime-Version: 1.0
Content-Type: multipart/alternative; boundary="--==_mimepart_5b4e1e4dad499_2ee43fd92dd64f841395a1"; charset="UTF-8"
Content-Transfer-Encoding: 7bit
Precedence: list
X-GitHub-Sender: mikkelfj
X-GitHub-Recipient: quic-issues
X-GitHub-Reason: subscribed
X-Auto-Response-Suppress: All
X-GitHub-Recipient-Address: quic-issues@ietf.org
Archived-At: <https://mailarchive.ietf.org/arch/msg/quic-issues/LTR7gYjsgBUoN_6qP4n5CMB3DBc>
X-BeenThere: quic-issues@ietf.org
X-Mailman-Version: 2.1.27
List-Id: Notification list for GitHub issues related to the QUIC WG <quic-issues.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/quic-issues>, <mailto:quic-issues-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/quic-issues/>
List-Post: <mailto:quic-issues@ietf.org>
List-Help: <mailto:quic-issues-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/quic-issues>, <mailto:quic-issues-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 17 Jul 2018 16:50:25 -0000
If the packet number is not included in AEAD then there is no reason to modify the receive buffer to verify the packet. Since the packet number is used as IV it is verified regardless. Most encryption functions have a function like decrypt (key, IV, auth-data, auth-data-len, cipher-text, cipher-text-len, tag) verify (key, IV, auth-data, auth-data-len, cipher-text, cipher-text-len, tag) ``` 0 1 2 3 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 +-+-+-+-+-+-+-+-+ |0|K|1|1|0|R R R| +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | Destination Connection ID (0..144) ... +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ <end of authenticated data> +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | Packet Number (8/16/32) ... +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ <start of encrypted data> +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | Protected Payload (*) ... +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ ``` -- You are receiving this because you are subscribed to this thread. Reply to this email directly or view it on GitHub: https://github.com/quicwg/base-drafts/issues/1578
- [quicwg/base-drafts] Keep PN out of AEAD (#1578) MikkelFJ
- Re: [quicwg/base-drafts] Keep PN out of AEAD (#15… MikkelFJ
- Re: [quicwg/base-drafts] Keep PN out of AEAD (#15… MikkelFJ
- Re: [quicwg/base-drafts] Keep PN out of AEAD (#15… Kazuho Oku
- Re: [quicwg/base-drafts] Keep PN out of AEAD (#15… Mark Nottingham
- Re: [quicwg/base-drafts] Keep PN out of AEAD (#15… Mark Nottingham