[Spud] Crypto-security of SPUD Properties?
Dave Dolson <ddolson@sandvine.com> Tue, 24 November 2015 21:46 UTC
Return-Path: <ddolson@sandvine.com>
X-Original-To: spud@ietfa.amsl.com
Delivered-To: spud@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1])
by ietfa.amsl.com (Postfix) with ESMTP id E0E851A8F46
for <spud@ietfa.amsl.com>; Tue, 24 Nov 2015 13:46:29 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: 0.216
X-Spam-Level:
X-Spam-Status: No, score=0.216 tagged_above=-999 required=5
tests=[BAYES_50=0.8, HTML_MESSAGE=0.001, RP_MATCHES_RCVD=-0.585]
autolearn=ham
Received: from mail.ietf.org ([4.31.198.44])
by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024)
with ESMTP id ZKd2WMMsM-Hy for <spud@ietfa.amsl.com>;
Tue, 24 Nov 2015 13:46:27 -0800 (PST)
Received: from mail1.sandvine.com (mail1.sandvine.com [64.7.137.165])
by ietfa.amsl.com (Postfix) with ESMTP id EE85D1A8F45
for <spud@ietf.org>; Tue, 24 Nov 2015 13:46:26 -0800 (PST)
Received: from WTL-EXCHP-2.sandvine.com ([fe80::68ac:f071:19ff:3455]) by
WTL-EXCHP-3.sandvine.com ([::1]) with mapi id 14.03.0195.001; Tue, 24 Nov
2015 16:46:29 -0500
From: Dave Dolson <ddolson@sandvine.com>
To: "spud@ietf.org" <spud@ietf.org>
Thread-Topic: Crypto-security of SPUD Properties?
Thread-Index: AdEnAZEJRa5bDsPLRgmkVQ1m6SXIMA==
Date: Tue, 24 Nov 2015 21:46:28 +0000
Message-ID: <E8355113905631478EFF04F5AA706E9830DBDE51@wtl-exchp-2.sandvine.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [192.168.200.63]
Content-Type: multipart/alternative;
boundary="_000_E8355113905631478EFF04F5AA706E9830DBDE51wtlexchp2sandvi_"
MIME-Version: 1.0
Archived-At: <http://mailarchive.ietf.org/arch/msg/spud/NRvyRHWfGPjXNm3sEIUxRyBswH8>
Subject: [Spud] Crypto-security of SPUD Properties?
X-BeenThere: spud@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Session Protocol Underneath Datagrams <spud.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/spud>,
<mailto:spud-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/spud/>
List-Post: <mailto:spud@ietf.org>
List-Help: <mailto:spud-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/spud>,
<mailto:spud-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 24 Nov 2015 21:46:30 -0000
I was just reading the property binding section of https://tools.ietf.org/html/draft-trammell-spud-req-01.html#section-7.2 (Sorry, if this has been discussed) Is it intended that properties could be used to authoritatively indicate things to the network? E.g., could network elements know with crypto-grade confidence that the server is an example.com server? I'm thinking of a use-case in which an server (at example.com) wants to pay for a mobile user to receive content. The idea is that the user does not pay for the bits; the server pays. There are several reasons why the server might want to do so: - the price of purchased digital content (music, book, video) includes "free delivery" - reversed-charges communication (along the lines of North American 1-800 phone numbers) - delivery of advertising and promotional content. Obviously the mobile operator's charging device in the network wants to be sure this property cannot be spoofed by other servers. I have some ideas about how the crypto would work. I don't know if those details matter to SPUD, provided a property can crypto-sign a packet or tunnel, something like an AH header. I think it might be possible to attach a property that is meaningless to any network device that a key hasn't been shared with. Does this seem like a reasonable thing to pursue in the context of SPUD? Is there interest in adding this to the list of use-cases? David Dolson Senior Software Architect, Sandvine Inc.
- [Spud] Crypto-security of SPUD Properties? Dave Dolson
- Re: [Spud] Crypto-security of SPUD Properties? 🔓Dan Wing