[saag] TMRID and hashes of prior messages in the Auth message

Robert Moskowitz <rgm-sec@htt-consult.com> Thu, 21 November 2019 05:49 UTC

Return-Path: <rgm-sec@htt-consult.com>
X-Original-To: saag@ietfa.amsl.com
Delivered-To: saag@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4FAA41200FB for <saag@ietfa.amsl.com>; Wed, 20 Nov 2019 21:49:44 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 8eDkfOj0fR9U for <saag@ietfa.amsl.com>; Wed, 20 Nov 2019 21:49:43 -0800 (PST)
Received: from z9m9z.htt-consult.com (z9m9z.htt-consult.com [23.123.122.147]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 10CDF12009C for <saag@ietf.org>; Wed, 20 Nov 2019 21:49:43 -0800 (PST)
Received: from localhost (localhost [127.0.0.1]) by z9m9z.htt-consult.com (Postfix) with ESMTP id 6638E62113 for <saag@ietf.org>; Thu, 21 Nov 2019 00:49:42 -0500 (EST)
X-Virus-Scanned: amavisd-new at htt-consult.com
Received: from z9m9z.htt-consult.com ([127.0.0.1]) by localhost (z9m9z.htt-consult.com [127.0.0.1]) (amavisd-new, port 10024) with LMTP id vVavKAiGNahZ for <saag@ietf.org>; Thu, 21 Nov 2019 00:49:35 -0500 (EST)
Received: from lx140e.htt-consult.com (dhcp-9f34.meeting.ietf.org [31.133.159.52]) (using TLSv1.2 with cipher DHE-RSA-AES128-SHA (128/128 bits)) (No client certificate requested) by z9m9z.htt-consult.com (Postfix) with ESMTPSA id E1399620D4 for <saag@ietf.org>; Thu, 21 Nov 2019 00:49:33 -0500 (EST)
To: saag@ietf.org
From: Robert Moskowitz <rgm-sec@htt-consult.com>
Message-ID: <79b96b82-b1b9-7121-5304-757a5fd42af0@htt-consult.com>
Date: Thu, 21 Nov 2019 13:49:27 +0800
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:68.0) Gecko/20100101 Thunderbird/68.1.1
MIME-Version: 1.0
Content-Type: text/plain; charset=utf-8; format=flowed
Content-Transfer-Encoding: 8bit
Content-Language: en-US
Archived-At: <https://mailarchive.ietf.org/arch/msg/saag/ekrWg6U0Yi8dK5i5pqxPwNWCVcA>
Subject: [saag] TMRID and hashes of prior messages in the Auth message
X-BeenThere: saag@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Security Area Advisory Group <saag.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/saag>, <mailto:saag-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/saag/>
List-Post: <mailto:saag@ietf.org>
List-Help: <mailto:saag-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/saag>, <mailto:saag-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 21 Nov 2019 05:49:44 -0000

First to the SAAG list, the TMRID BOF covered the work todate on 
RemoteID for Unmanned Aircraft Systems and this is expected to be 
chartered as a working group.

I direct people's attention to:

draft-wiethuechter-tmrid-auth

The purpose of the auth message in the ASTM standard is to authenticate 
prior sent really short messages.  But the ASTM standard really does not 
say how to do this.

In the above draft we are proposing to hash those messages, put those 
hashes in the digitally signed Auth message.

This is an interesting problem and we make no claim that we got it well 
in hand and request review and comment by others.

Please read the draft (and others for TMRID) and address the tmrid list 
or me or Adam directly.

Thank you

Robert Moskowitz