IETF Logo Mail Archive

Re: [Suit] Fwd: New Version Notification for draft-housley-suit-cose-hash-sig-03.txt

Russ Housley <housley@vigilsec.com> Mon, 02 July 2018 14:25 UTC

Return-Path: <housley@vigilsec.com>
X-Original-To: suit@ietfa.amsl.com
Delivered-To: suit@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id BE90A130EFF for <suit@ietfa.amsl.com>; Mon, 2 Jul 2018 07:25:25 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.899
X-Spam-Level:
X-Spam-Status: No, score=-1.899 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 0t_oSclAVNRf for <suit@ietfa.amsl.com>; Mon, 2 Jul 2018 07:25:24 -0700 (PDT)
Received: from mail.smeinc.net (mail.smeinc.net [209.135.209.11]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 1681E130EF0 for <suit@ietf.org>; Mon, 2 Jul 2018 07:25:24 -0700 (PDT)
Received: from localhost (localhost [127.0.0.1]) by mail.smeinc.net (Postfix) with ESMTP id 6EE75300A30 for <suit@ietf.org>; Mon, 2 Jul 2018 10:25:21 -0400 (EDT)
X-Virus-Scanned: amavisd-new at mail.smeinc.net
Received: from mail.smeinc.net ([127.0.0.1]) by localhost (mail.smeinc.net [127.0.0.1]) (amavisd-new, port 10026) with ESMTP id 4uH4s-2IrUy3 for <suit@ietf.org>; Mon, 2 Jul 2018 10:25:20 -0400 (EDT)
Received: from a860b60074bd.home (pool-71-127-50-4.washdc.fios.verizon.net [71.127.50.4]) by mail.smeinc.net (Postfix) with ESMTPSA id 0FA8D3002C6; Mon, 2 Jul 2018 10:25:20 -0400 (EDT)
From: Russ Housley <housley@vigilsec.com>
Message-Id: <B9E594C9-8C61-4F61-A634-3F289F8A0064@vigilsec.com>
Content-Type: multipart/alternative; boundary="Apple-Mail=_4063C809-0784-4113-A578-5B2B3C259288"
Mime-Version: 1.0 (Mac OS X Mail 11.4 \(3445.8.2\))
Date: Mon, 02 Jul 2018 10:25:20 -0400
In-Reply-To: <140080C241BAA1419B58F093108F9EDC1E3CD29B@UK-MAL-MBOX-01.dyson.global.corp>
Cc: suit <suit@ietf.org>
To: Tony Putman <Tony.Putman@dyson.com>
References: <153046889224.27492.15820564704742618394.idtracker@ietfa.amsl.com> <BA07CDB6-CF77-4D68-9B00-601B69380085@vigilsec.com> <140080C241BAA1419B58F093108F9EDC1E3CD29B@UK-MAL-MBOX-01.dyson.global.corp>
X-Mailer: Apple Mail (2.3445.8.2)
Archived-At: <https://mailarchive.ietf.org/arch/msg/suit/tPwfogHNImVMe0RuWBU6MVpfIZM>
Subject: Re: [Suit] Fwd: New Version Notification for draft-housley-suit-cose-hash-sig-03.txt
X-BeenThere: suit@ietf.org
X-Mailman-Version: 2.1.26
Precedence: list
List-Id: Software Updates for Internet of Things <suit.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/suit>, <mailto:suit-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/suit/>
List-Post: <mailto:suit@ietf.org>
List-Help: <mailto:suit-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/suit>, <mailto:suit-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 02 Jul 2018 14:25:26 -0000

Tony:
>  
> Thanks for the new version of the draft.. It addresses all my comments fully except for the question of 'kid'. The point that I was trying to make there was the LMS public key (unlike other public keys) has a well-defined identity, called 'I' in [HASHSIG]. I agree that you can't be prescriptive about this, but I suggest strengthening your new bullet point at the end of section 4 to:
>  "If the 'kid' field is present, then it MAY contain the identity of the public key (called 'I' in [HASHSIG])."
>  
> The situation that I'm thinking of here is one where the IoT device has more than one HSS/LMS public key as trust anchor. Because public key parameters 'I' and 'q' are integral parts of the verification steps, the device may have to attempt verification multiple times and anything which can improve the chances of picking the right public key first time saves computation (energy).

I totally misunderstood your comment, and now that I do, I'm not sure that I agree.  That said, maybe I am still not fully understanding your point.

I think the kid would identify a tree, not a node in the tree.  The signature value itself contains the information necessary to locate the node within the tree.

Russ

v2.43.4 | Report a Bug | By Email | System Status