Re: [saag] Would love some feedback on Opportunistic Wireless Encryption
Warren Kumari <warren@kumari.net> Fri, 28 August 2015 00:35 UTC
Return-Path: <warren@kumari.net>
X-Original-To: saag@ietfa.amsl.com
Delivered-To: saag@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id BDC341B3052 for <saag@ietfa.amsl.com>; Thu, 27 Aug 2015 17:35:23 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.978
X-Spam-Level:
X-Spam-Status: No, score=-1.978 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, FM_FORGED_GMAIL=0.622, RCVD_IN_DNSWL_LOW=-0.7] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ro0FF4dZhGLD for <saag@ietfa.amsl.com>; Thu, 27 Aug 2015 17:35:21 -0700 (PDT)
Received: from mail-ob0-f177.google.com (mail-ob0-f177.google.com [209.85.214.177]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D3B281B304F for <saag@ietf.org>; Thu, 27 Aug 2015 17:35:21 -0700 (PDT)
Received: by obbfr1 with SMTP id fr1so32949511obb.1 for <saag@ietf.org>; Thu, 27 Aug 2015 17:35:21 -0700 (PDT)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:in-reply-to:references:date :message-id:subject:from:to:cc:content-type; bh=AWrXxUWZch+UjxL8aYoMz4dpGtkwA1oMLfEwnUYl4nU=; b=AvnwCLpnU/fVxn6qtQ51fbNMIy5vPONCHXln6p6ovZl1MoB9kP92a2gexXZbMrLMGz 8Zu+FjIsw9FOgqpa7rpcanjBVM4TMMQhw5jVmw2JPlCDewDBWjblWWIufQuzTyxRzhNk zgPKCMM9nLvzB2cmJzIuHA2oXhcAw1Yo8Sw7GqQE/IR95tUsB5mIFdISqd8Da0Rb9cjG f7Sh/Wcpl6rc9Sy6k+JLlMTRO08yHG7/gZVa6doX950QdreJ5iKFboABYAdzob14B9bt I75QO2/rRuI61lEkksNURW77R+8C5DhRaJSPu/J/gBW4cDkU80yLNrQK3c0Y8NR56Am4 s0oQ==
X-Gm-Message-State: ALoCoQk70fXplcQBZ8vTYv/ssxtAGF+TPaljnIgv23xnOmT1bENDycuOySODLez0+/qa9cgWFlP6
MIME-Version: 1.0
X-Received: by 10.182.120.100 with SMTP id lb4mr4176696obb.71.1440722121150; Thu, 27 Aug 2015 17:35:21 -0700 (PDT)
Received: by 10.202.174.144 with HTTP; Thu, 27 Aug 2015 17:35:21 -0700 (PDT)
In-Reply-To: <511ec4fef968dcf87bb42912360e37f1.squirrel@www.trepanning.net>
References: <CAHw9_iKt39m+tCHYxN4VuVFkJf65Go_V2x0udOtEn32ke+nrkQ@mail.gmail.com> <511ec4fef968dcf87bb42912360e37f1.squirrel@www.trepanning.net>
Date: Thu, 27 Aug 2015 20:35:21 -0400
Message-ID: <CAHw9_iLS+JbObB4sYj0b3w_sQsUng7Be6CfQADeNZDef57naAw@mail.gmail.com>
From: Warren Kumari <warren@kumari.net>
To: Dan Harkins <dharkins@lounge.org>
Content-Type: text/plain; charset="UTF-8"
Archived-At: <http://mailarchive.ietf.org/arch/msg/saag/E4O1saj1manHKTBB_0Rv4UkrdIA>
Cc: "saag@ietf.org" <saag@ietf.org>
Subject: Re: [saag] Would love some feedback on Opportunistic Wireless Encryption
X-BeenThere: saag@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Security Area Advisory Group <saag.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/saag>, <mailto:saag-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/saag/>
List-Post: <mailto:saag@ietf.org>
List-Help: <mailto:saag-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/saag>, <mailto:saag-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 28 Aug 2015 00:35:23 -0000
On Wed, Aug 26, 2015 at 6:11 PM, Dan Harkins <dharkins@lounge.org> wrote: > > Hi Warren, > > On Wed, August 26, 2015 7:53 am, Warren Kumari wrote: >> Hi there all, >> >> I'd appreciate it if folk could have a look at this draft and provide >> any feedback. >> I'm not sure that SAAG is the right place for it, but I couldn't think >> of anywhere better. >> >> https://tools.ietf.org/html/draft-wkumari-owe-01 >> >> >> Note that this is NOT intended to be the be all and end all of secure >> wireless, it is simply intended to make open wifi suck somewhat less. >> We are not claiming great security (the WPA2 4-way handshake >> significantly limits what can be achieved), and so much of the draft / >> idea is making sure that users do not get a false (or any) sense of >> security - this should be transparent to them. > > It might suck less but it still kind of sucks. You could make it > suck even less by using SAE (an 802.11 authentication protocol that > uses a PAKE to establish pairwise keys). Hah, this will teach me to read all the mail in a thread before replying -- I just posted something mentioning you and SAE. :-) Does SAE work with access points or is it only defined for ad hoc / mech networks? And if it is defined for APs, does current consumer CPE (dlink, linksys, netgear, etc) support it? I'd really like this to be a trivial thing for both APs and clients to include support for, and would much rather have a crappy but better than plaintext solution now instead of a great solution many years in the future. I'd like to see *something* deployed, and then we can work on improving it as time goes by... The current document has a Sub-type field ("Sub-type identifies the version of the OWE protocol. Currently only 0 is defined." ) - my cunning plan was to use that (if needed) to eventually signal that the underlying network supports something better than the current 4WHS -- although I'm guessing clients would be able to figure that out from other information advertised by the AP. > This would address the > limitations you mention in your draft that have to do with WPA2-PSK. > >> We also want it to be *really* simple, so that commodity CPE vendors >> will include "support" (basically a flag in the beacon) - this removes >> other solutions like .1X, etc. > > Another option might be to define another vendor-specific Element > to carry DH exponentials. Just tag one on the end of the first two > messages of the 4-way handshake and have each side derive a "pairwise > master key" (PMK, the thing used with the nonces in the 4-way handshake > to derive the data encryption keys) from the DH shared secret. Instead > of having everyone use the SSID as the password, just get rid of the > password! This is probably worth discussing more, but this also feels more like a larger scale change, and, while worth doing, I think it would be better done in parallel... Thank you, W > > regards, > > Dan. > >> Appreciate your time, >> W >> >> -- >> I don't think the execution is relevant when it was obviously a bad >> idea in the first place. >> This is like putting rabid weasels in your pants, and later expressing >> regret at having chosen those particular rabid weasels and that pair >> of pants. >> ---maf >> >> _______________________________________________ >> saag mailing list >> saag@ietf.org >> https://www.ietf.org/mailman/listinfo/saag >> > > -- I don't think the execution is relevant when it was obviously a bad idea in the first place. This is like putting rabid weasels in your pants, and later expressing regret at having chosen those particular rabid weasels and that pair of pants. ---maf
- [saag] Would love some feedback on Opportunistic … Warren Kumari
- Re: [saag] Would love some feedback on Opportunis… Viktor Dukhovni
- Re: [saag] Would love some feedback on Opportunis… Warren Kumari
- Re: [saag] Would love some feedback on Opportunis… Henry B (Hank) Hotz, CISSP
- Re: [saag] Would love some feedback on Opportunis… Christian Huitema
- Re: [saag] Would love some feedback on Opportunis… Dan Harkins
- Re: [saag] Would love some feedback on Opportunis… Dan Harkins
- Re: [saag] Would love some feedback on Opportunis… Warren Kumari
- Re: [saag] Would love some feedback on Opportunis… Warren Kumari
- Re: [saag] Would love some feedback on Opportunis… Warren Kumari
- Re: [saag] Would love some feedback on Opportunis… Stefan Winter
- Re: [saag] Would love some feedback on Opportunis… Christian Huitema
- Re: [saag] Would love some feedback on Opportunis… Christian Huitema
- Re: [saag] Would love some feedback on Opportunis… Michael Richardson
- Re: [saag] Would love some feedback on Opportunis… Josh Howlett
- Re: [saag] Would love some feedback on Opportunis… Warren Kumari
- Re: [saag] Would love some feedback on Opportunis… David Bird