Re: [Sip] Review of draft-kupwade-sip-iba-00

Harsh Kupwade <harsh_smu@yahoo.com> Wed, 27 February 2008 15:43 UTC

Return-Path: <sip-bounces@ietf.org>
X-Original-To: ietfarch-sip-archive@core3.amsl.com
Delivered-To: ietfarch-sip-archive@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 87AE428C739; Wed, 27 Feb 2008 07:43:30 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: 0.383
X-Spam-Level:
X-Spam-Status: No, score=0.383 tagged_above=-999 required=5 tests=[AWL=-0.180, BAYES_00=-2.599, FH_RELAY_NODNS=1.451, HELO_MISMATCH_ORG=0.611, HTML_MESSAGE=1, RDNS_NONE=0.1]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 590wZlsdY-hU; Wed, 27 Feb 2008 07:43:24 -0800 (PST)
Received: from core3.amsl.com (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id C0A1228C31F; Wed, 27 Feb 2008 07:43:24 -0800 (PST)
X-Original-To: sip@core3.amsl.com
Delivered-To: sip@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 624133A6E18 for <sip@core3.amsl.com>; Wed, 27 Feb 2008 07:43:23 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id zRQwoy5Xa2PA for <sip@core3.amsl.com>; Wed, 27 Feb 2008 07:43:17 -0800 (PST)
Received: from web65516.mail.ac4.yahoo.com (web65516.mail.ac4.yahoo.com [76.13.9.60]) by core3.amsl.com (Postfix) with SMTP id AB4A928C5F7 for <sip@ietf.org>; Wed, 27 Feb 2008 07:43:15 -0800 (PST)
Received: (qmail 38647 invoked by uid 60001); 27 Feb 2008 15:43:08 -0000
DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=s1024; d=yahoo.com; h=X-YMail-OSG:Received:Date:From:Subject:To:Cc:In-Reply-To:MIME-Version:Content-Type:Content-Transfer-Encoding:Message-ID; b=o1Vbh9+uwAvwcILMugu64FOov06Jan9GvyF0sCNXApEciR3Q/+AlQ2QxfqEXETvOKD+nirQLOLPCoZwX2XT7SU+6YBounEtcD5wMppeobM33RcwwTHlwjdqai0UtFWh/Uxs5xTOTWZR6JAjWxv1phhct/NblcXxPh6UU2IWO2Kk=;
X-YMail-OSG: Rjc6Y4YVM1l5vdCJV2hpIB4Igs_8Di4NpYNYnd5iOIQiifiz8POBsHbTd1fp868.K9L1NoW1o3hxJ7bV.aHOonjhDpp_OtGenMprhwdT7ElD61bBykSqTw8D80i_BA--
Received: from [70.250.198.218] by web65516.mail.ac4.yahoo.com via HTTP; Wed, 27 Feb 2008 07:43:08 PST
Date: Wed, 27 Feb 2008 07:43:08 -0800
From: Harsh Kupwade <harsh_smu@yahoo.com>
To: sip@ietf.org
In-Reply-To: <20080227141431.2C3025081A@romeo.rtfm.com>
MIME-Version: 1.0
Message-ID: <729836.33399.qm@web65516.mail.ac4.yahoo.com>
Subject: Re: [Sip] Review of draft-kupwade-sip-iba-00
X-BeenThere: sip@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Session Initiation Protocol <sip.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/sip>, <mailto:sip-request@ietf.org?subject=unsubscribe>
List-Post: <mailto:sip@ietf.org>
List-Help: <mailto:sip-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/sip>, <mailto:sip-request@ietf.org?subject=subscribe>
Content-Type: multipart/mixed; boundary="===============1728271089=="
Sender: sip-bounces@ietf.org
Errors-To: sip-bounces@ietf.org

Key escrow problem has been tackled using B. Lee et. al’s algorithm.  They propose a single Private key generator who would perform the identity check and multiple KPAs (Key Privacy Authorities) who would distribute the partial private key. 
  Lee, B., Boyd, C., Dawson, E., Kim, K., Yang, J. and Yoo, S.,   "Secure Key Issuing in ID-based Cryptography," in Conferences in   Research and Practice in Information Technology, 2004, vol. 32, pp. 69-74.


Eric Rescorla <ekr@networkresonance.com> wrote:  At Wed, 27 Feb 2008 01:47:23 -0500,
Hadriel Kaplan wrote:
> 
> Cool. So if I understand this right (and I probably don't),
> ignoring rfc4474 identity and IBS for a moment and instead thinking
> about SRTP and IBE: I could use IBE to encrypt the
> security-descriptions attribute value using the intended target's
> SIP URI as a key, and only someone owning that URI (and sharing the
> same KG) or the KG itself could decrypt it to learn the sec-desc
> cleartext to use?

Yeah. This is how Voltage's email system works. (Seriously,
read the blog post I pointed at, whcih explains all this).
But of course this doesn't work correctly with a bunch of
retargeting scenarios. This is basically orthogonal to
MIKEY RSA mdoe, except that instead of doing certificate
retrieval you need to do parameter retrieval, and only
once for the domain.

Another sort-of-weird feature here is that you can encrypt to
someone who hasn't registered with the system, and then
they can register *afterward*. That works with email but
of course is too slow for VoIP.


> -hadriel p.s. the KG would actually be a problem for IBE, wouldn't
> it? I mean the KG can always decrypt it. (at which point they would
> be the Key Generator Backdoor - aka, the KGB ;)

Yeah. This feature is generally referred to as "escrow" and is
one of the reasons why people don't want to have a single 
global KG.

-Ekr
_______________________________________________
Sip mailing list https://www.ietf.org/mailman/listinfo/sip
This list is for NEW development of the core SIP Protocol
Use sip-implementors@cs.columbia.edu for questions on current sip
Use sipping@ietf.org for new developments on the application of sip


       
---------------------------------
Looking for last minute shopping deals?  Find them fast with Yahoo! Search.
_______________________________________________
Sip mailing list  https://www.ietf.org/mailman/listinfo/sip
This list is for NEW development of the core SIP Protocol
Use sip-implementors@cs.columbia.edu for questions on current sip
Use sipping@ietf.org for new developments on the application of sip