Re: [skex] SKEX Use Cases
Manfred von Willich <manfred.vonwillich@quantumbridge.io> Thu, 04 April 2024 01:03 UTC
Return-Path: <manfred.vonwillich@quantumbridgetech.com>
X-Original-To: skex@ietfa.amsl.com
Delivered-To: skex@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C1A72C14F6BD for <skex@ietfa.amsl.com>; Wed, 3 Apr 2024 18:03:15 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.649
X-Spam-Level:
X-Spam-Status: No, score=-6.649 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HEADER_FROM_DIFFERENT_DOMAINS=0.249, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=quantumbridgetech-com.20230601.gappssmtp.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id uQdtLJx9Lf9b for <skex@ietfa.amsl.com>; Wed, 3 Apr 2024 18:03:15 -0700 (PDT)
Received: from mail-ua1-x930.google.com (mail-ua1-x930.google.com [IPv6:2607:f8b0:4864:20::930]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 1BC99C14F6B9 for <skex@ietf.org>; Wed, 3 Apr 2024 18:03:14 -0700 (PDT)
Received: by mail-ua1-x930.google.com with SMTP id a1e0cc1a2514c-7e4017dc13fso62131241.2 for <skex@ietf.org>; Wed, 03 Apr 2024 18:03:14 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=quantumbridgetech-com.20230601.gappssmtp.com; s=20230601; t=1712192593; x=1712797393; darn=ietf.org; h=to:subject:message-id:date:from:in-reply-to:references:mime-version :from:to:cc:subject:date:message-id:reply-to; bh=RczM8j3gYpQpVOlfpZy9Cu6F0a74GZejez4bY8yscB4=; b=mMCG9BTGZX7xrGDTVr1uEnbL7Fv2naCOkq0yEqqHHezQ4dHuhnyPkeaYqVDIPSSizJ JQ64N8nPE3zODPRJoizywxnIaVa0MQJYcDcxWnnAKCSbbYuRCd1hLx1+wQ7bgJ6skTn5 YI/twopYS1bjERrx2DUmnHU72J2v3gpXWHaPQXjuh6NZJUpcunhHjhDxV8oXoh9qxQz3 MafoseVtFdtfHBGI0nFgDhEdmx7uws3Uqgqk3vHUwtTQ/eXS10LgvF7M+9/fgnZbYCEd +lOAzGZZhio72o04bVk42B+kxccZETWApARTGmnpvOn/o/6Qs/hq94ybcTxtUMLmQAtU Jlkw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1712192593; x=1712797393; h=to:subject:message-id:date:from:in-reply-to:references:mime-version :x-gm-message-state:from:to:cc:subject:date:message-id:reply-to; bh=RczM8j3gYpQpVOlfpZy9Cu6F0a74GZejez4bY8yscB4=; b=Q+HAGFvmumJqcLcHiLS1wgE9u6VOaxcQMd6kNf4tStTY02WmsqWHYegb8D5n90lULu S75e36kT0i2taI7tXpyKU0/U/w9LlYP44ygBOk1vFsO4UsbVjIrldnqagO+Dd51/me1v fQ8zDotal8rA5bViWnCDF5aYgSHQ9h4XZBPy81KCPZfDId4yYQ3m1TUN9NW6tMKDXH1k /Cha62Gcu4L9xRlVEeqZui1hIZIRlmo8kFKMagJux8ywmLiRXkWhZ8ZPYxVIQApaGcm+ MkBR/JlGBgFcIHx13/y/RLSCJnuGyl/Eryp/fOFrOSCIZ4nOXYtV7Thx8oTKwMTxj75e N1qQ==
X-Gm-Message-State: AOJu0YxT9wRn5qkXRASuAJUcIHlx+YV/547ApCClb0RV/kppbeaHg26Y pp5lHqfdbxLbU4vlUW8eL17AgfhZWcK8kQXMKxlVFDBkB+lXzfbIPBB9v0kP3fA5gSMSCgYxba8 z3HYfh7q2rPxrorVneYTbTSk8gJpIBm3MbqPGXltV3zMXZ+BCemsM0w==
X-Google-Smtp-Source: AGHT+IGWQ9uz9cbEux+v6146E3az1963/wlpuM19c20GD4M/XEPaAplG24cGh/hIsYJg3nL8j/9jrynl7d/B6/zvumE=
X-Received: by 2002:a67:f7ca:0:b0:476:8b63:9ffc with SMTP id a10-20020a67f7ca000000b004768b639ffcmr855192vsp.28.1712192593602; Wed, 03 Apr 2024 18:03:13 -0700 (PDT)
MIME-Version: 1.0
References: <40dabd5c36504a0590a0e4710e457c8f@huawei.com>
In-Reply-To: <40dabd5c36504a0590a0e4710e457c8f@huawei.com>
From: Manfred von Willich <manfred.vonwillich@quantumbridge.io>
Date: Wed, 03 Apr 2024 21:02:37 -0400
Message-ID: <CAL96d54XxLWrX0wFmW8jF49-JGyvyWj9jDSK-LqXfaz=R94q9w@mail.gmail.com>
To: "skex@ietf.org" <skex@ietf.org>
Content-Type: multipart/alternative; boundary="000000000000544c5106153ae777"
Archived-At: <https://mailarchive.ietf.org/arch/msg/skex/erAxhcR1kvi2dKreSjJp-5yE4p0>
Subject: Re: [skex] SKEX Use Cases
X-BeenThere: skex@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Symmetric Key Exchange <skex.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/skex>, <mailto:skex-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/skex/>
List-Post: <mailto:skex@ietf.org>
List-Help: <mailto:skex-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/skex>, <mailto:skex-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 04 Apr 2024 01:03:15 -0000
On Wed, Apr 3, 2024 at 3:09 AM Panwei (William) <william.panwei= 40huawei.com@dmarc.ietf.org> wrote: > > > • A rather exceptional use case: allowing mutually distrustful > > organizations to communicate securely in a way that cannot be > > cheated by any single organization (negotiations come to mind) > > I can basically understand the first two use cases. > But I'm confused by the last one. > How are the two mutually distrustful organizations cheated when using > methods other than SKEX? > This illustration will sound artificial, but a single untrusted key distribution centre (KDC) doesn't work. It can leak keys (it does not have confidentiality), and it can provide different keys to different parties (it does not have correctness). Consider two or more organizations or NGOs with limited mutual trust using a KDC controlled by one of them. Assume that the keys are used between members of these organizations as one-time pad keys. Alice sends a message with a key shared with one or more others. The KDC sends a key to Alice, and another (possibly delayed) key to one or more of the receivers, chosen to mutate the message (including any message check code) to a chosen replacement plaintext. This could be used to tactically minipulate a situation. One could argue that normal key use (e.g. as an AES key) would guarantee that the message would be garbled and could not be chosen. However, the security properties of key distribution should never rely on a subsequent (especially unspecified) system to detect problems. In reality, having a system in which no player has a disproportionate security role will generally be more acceptable to all parties, including for the optics of it. This balance is not a property that can be achieved securely in centrally managed KDC.
- [skex] SKEX Use Cases Panwei (William)
- Re: [skex] SKEX Use Cases Manfred von Willich