Re: [secdir] secdir review of draft-kuegler-ipsecme-pace-ikev2
Nico Williams <nico@cryptonector.com> Thu, 14 April 2011 17:41 UTC
Return-Path: <nico@cryptonector.com>
X-Original-To: secdir@ietfc.amsl.com
Delivered-To: secdir@ietfc.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfc.amsl.com (Postfix) with ESMTP id A2A62E0716 for <secdir@ietfc.amsl.com>; Thu, 14 Apr 2011 10:41:59 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.847
X-Spam-Level:
X-Spam-Status: No, score=-1.847 tagged_above=-999 required=5 tests=[AWL=0.130, BAYES_00=-2.599, FM_FORGED_GMAIL=0.622]
Received: from mail.ietf.org ([208.66.40.236]) by localhost (ietfc.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id uatwgLW29NT5 for <secdir@ietfc.amsl.com>; Thu, 14 Apr 2011 10:41:59 -0700 (PDT)
Received: from homiemail-a64.g.dreamhost.com (caiajhbdccac.dreamhost.com [208.97.132.202]) by ietfc.amsl.com (Postfix) with ESMTP id E9C84E0690 for <secdir@ietf.org>; Thu, 14 Apr 2011 10:41:58 -0700 (PDT)
Received: from homiemail-a64.g.dreamhost.com (localhost [127.0.0.1]) by homiemail-a64.g.dreamhost.com (Postfix) with ESMTP id 5DC48438080 for <secdir@ietf.org>; Thu, 14 Apr 2011 10:41:58 -0700 (PDT)
DomainKey-Signature: a=rsa-sha1; c=nofws; d=cryptonector.com; h=mime-version :in-reply-to:references:date:message-id:subject:from:to:cc :content-type:content-transfer-encoding; q=dns; s= cryptonector.com; b=GwpWP3M23C6Lw9PLmQiZ4sEtbiZGOx/vsPxMXv9OjE86 /gXFYbpCDc3yUYxRat/FKMnGgda11KJ5ydwr/laQcbCvt9w03gFOW04f1QrE6V75 FTb4ptN/fdKNJBh8Iidi7lvyqJr0pK5mAcJ4W0PIs80fdOlzZ+sV+WQvsOfdd7o=
DKIM-Signature: v=1; a=rsa-sha1; c=relaxed; d=cryptonector.com; h= mime-version:in-reply-to:references:date:message-id:subject:from :to:cc:content-type:content-transfer-encoding; s= cryptonector.com; bh=cEMUUKzXLXY3R6Aqzq0p5/SzvcM=; b=c+vOYD3tQLH zMhfFn629I2d4ZeRVZMCJhwhPjRJz8R85JVcYZMmg66clJ6fcRSF/AUzkAqJmIma qWaAN3L67MbiHACeZ7uMWPbabbrLpRQl+tXu0row8TePHf3RM356qUVvmxQV1+Ii wdhYOSvPjd9bHdKbK62oY/KRTGpmRdGM=
Received: from mail-vx0-f172.google.com (mail-vx0-f172.google.com [209.85.220.172]) (using TLSv1 with cipher RC4-SHA (128/128 bits)) (No client certificate requested) (Authenticated sender: nico@cryptonector.com) by homiemail-a64.g.dreamhost.com (Postfix) with ESMTPSA id 20A0B43807E for <secdir@ietf.org>; Thu, 14 Apr 2011 10:41:57 -0700 (PDT)
Received: by vxg33 with SMTP id 33so1872693vxg.31 for <secdir@ietf.org>; Thu, 14 Apr 2011 10:41:57 -0700 (PDT)
MIME-Version: 1.0
Received: by 10.52.112.69 with SMTP id io5mr1476556vdb.94.1302802917451; Thu, 14 Apr 2011 10:41:57 -0700 (PDT)
Received: by 10.52.163.228 with HTTP; Thu, 14 Apr 2011 10:41:57 -0700 (PDT)
In-Reply-To: <16d9b37f31bdbfc6588d0743515eea5b.squirrel@www.trepanning.net>
References: <AC6674AB7BC78549BB231821ABF7A9AEB530189991@EMBX01-WF.jnpr.net> <4DA69C8A.7000305@gmail.com> <BANLkTi=3WCvUgtLdNknDog--UniYM1G9Bg@mail.gmail.com> <4DA72605.10506@gmail.com> <BANLkTikXF=S3NugNBErZZGLngyCECh=jTw@mail.gmail.com> <16d9b37f31bdbfc6588d0743515eea5b.squirrel@www.trepanning.net>
Date: Thu, 14 Apr 2011 12:41:57 -0500
Message-ID: <BANLkTin=N4Gir_smJvX17ZqL=6eqV=nf-g@mail.gmail.com>
From: Nico Williams <nico@cryptonector.com>
To: Dan Harkins <dharkins@lounge.org>
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
Cc: "draft-kuegler-ipsecme-pace-ikev2@tools.ietf.org" <draft-kuegler-ipsecme-pace-ikev2@tools.ietf.org>, "secdir@ietf.org" <secdir@ietf.org>
Subject: Re: [secdir] secdir review of draft-kuegler-ipsecme-pace-ikev2
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/secdir>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 14 Apr 2011 17:41:59 -0000
On Thu, Apr 14, 2011 at 12:35 PM, Dan Harkins <dharkins@lounge.org> wrote: > I'm not sure that salting really buys anything. This is not a client- > server protocol; either side can initiate to each other. So both sides > need an _identical_ representation of the credential to authenticate with. > If there is some agreed-upon salt then the salted password becomes > the credential to use. This is no different than just using an unsalted > password. The nonces from the IKE exchange are used in PACE to provide > additional randomness to its particular use of the password. This is important. I hadn't realized that PACE was intended to be initiated in either direction. When one of the peers is a device acting on behalf of a user (who knows just a their username and password) and the other is a system that has access to SPwd (the shared secret derived from the password), then it's important that the peer that sends the ENONCE first be the device where the user is at, else the active attack on PACE gets much simpler (since impersonating the user device is probably simpler than impersonating the other one). Nico --
- [secdir] secdir review of draft-kuegler-ipsecme-p… Stephen Hanna
- Re: [secdir] secdir review of draft-kuegler-ipsec… Yaron Sheffer
- Re: [secdir] secdir review of draft-kuegler-ipsec… Nico Williams
- Re: [secdir] secdir review of draft-kuegler-ipsec… Paul Hoffman
- Re: [secdir] secdir review of draft-kuegler-ipsec… Nico Williams
- Re: [secdir] secdir review of draft-kuegler-ipsec… Yaron Sheffer
- Re: [secdir] secdir review of draft-kuegler-ipsec… Nico Williams
- Re: [secdir] secdir review of draft-kuegler-ipsec… Paul Hoffman
- Re: [secdir] secdir review of draft-kuegler-ipsec… Nico Williams
- Re: [secdir] secdir review of draft-kuegler-ipsec… Nico Williams
- Re: [secdir] secdir review of draft-kuegler-ipsec… Dan Harkins
- Re: [secdir] secdir review of draft-kuegler-ipsec… Yaron Sheffer
- Re: [secdir] secdir review of draft-kuegler-ipsec… Nico Williams
- Re: [secdir] secdir review of draft-kuegler-ipsec… Nico Williams
- Re: [secdir] secdir review of draft-kuegler-ipsec… Dan Harkins
- Re: [secdir] secdir review of draft-kuegler-ipsec… Nico Williams
- Re: [secdir] secdir review of draft-kuegler-ipsec… Dan Harkins
- Re: [secdir] secdir review of draft-kuegler-ipsec… Nico Williams
- Re: [secdir] secdir review of draft-kuegler-ipsec… Yaron Sheffer
- Re: [secdir] secdir review of draft-kuegler-ipsec… Nico Williams
- Re: [secdir] secdir review of draft-kuegler-ipsec… Yaron Sheffer
- Re: [secdir] secdir review of draft-kuegler-ipsec… Tom Yu
- Re: [secdir] secdir review of draft-kuegler-ipsec… Nico Williams
- Re: [secdir] secdir review of draft-kuegler-ipsec… Nico Williams
- Re: [secdir] secdir review of draft-kuegler-ipsec… Glen Zorn
- Re: [secdir] secdir review of draft-kuegler-ipsec… Dennis Kügler