Re: [tcpm] public-private keys for TCP-AO
Joe Touch <touch@strayalpha.com> Tue, 30 October 2018 01:36 UTC
Return-Path: <touch@strayalpha.com>
X-Original-To: tcpm@ietfa.amsl.com
Delivered-To: tcpm@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 5234512872C for <tcpm@ietfa.amsl.com>; Mon, 29 Oct 2018 18:36:54 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.989
X-Spam-Level:
X-Spam-Status: No, score=-1.989 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, T_SPF_PERMERROR=0.01] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=strayalpha.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id LDJ4VjorulYI for <tcpm@ietfa.amsl.com>; Mon, 29 Oct 2018 18:36:52 -0700 (PDT)
Received: from server217-3.web-hosting.com (server217-3.web-hosting.com [198.54.115.226]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C5BB51274D0 for <tcpm@ietf.org>; Mon, 29 Oct 2018 18:36:51 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=strayalpha.com; s=default; h=To:References:Message-Id:Cc:Date:In-Reply-To: From:Subject:Mime-Version:Content-Type:Sender:Reply-To: Content-Transfer-Encoding:Content-ID:Content-Description:Resent-Date: Resent-From:Resent-Sender:Resent-To:Resent-Cc:Resent-Message-ID:List-Id: List-Help:List-Unsubscribe:List-Subscribe:List-Post:List-Owner:List-Archive; bh=T7e7LN9GuWNwaclUjUTfGoXL9mHaz1T+W6MlN+vpfWc=; b=bvR13/ONa0AvHrzthfUybFoml K78ljlclSUHPe+RinAVjRjbVn4ZSRKO7Pp58FMHY3YKbOZFRt6EVJSd2BugkpXjuX/FEh4rOwEBkB K9uREi3Ikfcbq5qEg1BWIfKPgQpcLCFVAX098sw/QH/UH4Cx3eDLb8ZR6C7wMG/jlLQNovbjFX5D9 c/GNS2Cd0MjXNlQ0dpEZTxE/AXjh5wo+hWF6TG1/gbHFHzcCrlzPlBuBw8BheAgzAGgDDHXY4lY6L erNHgprLA5shI1PicMw/Mnzo+fnNIvuOOlAfwqLNe8p4mI8IKYwcOq6ia65qAT0BF21CEngy6uFez MxZ/FZ8UA==;
Received: from cpe-172-250-240-132.socal.res.rr.com ([172.250.240.132]:55525 helo=[192.168.1.77]) by server217.web-hosting.com with esmtpsa (TLSv1.2:ECDHE-RSA-AES256-GCM-SHA384:256) (Exim 4.91) (envelope-from <touch@strayalpha.com>) id 1gHIxc-001uwv-AR; Mon, 29 Oct 2018 21:36:50 -0400
Content-Type: multipart/alternative; boundary="Apple-Mail=_8E0F86C3-02D7-40B8-A508-E78AB7CA5324"
Mime-Version: 1.0 (Mac OS X Mail 11.5 \(3445.9.1\))
From: Joe Touch <touch@strayalpha.com>
In-Reply-To: <7597333b9a414761be688375acf48dd6@XCH-ALN-014.cisco.com>
Date: Mon, 29 Oct 2018 18:36:47 -0700
Cc: "tcpm@ietf.org" <tcpm@ietf.org>
Message-Id: <0C168054-E3D6-4BC5-9E1E-A28059F1A27B@strayalpha.com>
References: <95f4b81948844b2799ecca33450bdde1@XCH-ALN-014.cisco.com> <E4B83487-C832-4F41-BFFE-20CE2EA53AC4@strayalpha.com> <7597333b9a414761be688375acf48dd6@XCH-ALN-014.cisco.com>
To: "Jakob Heitz (jheitz)" <jheitz@cisco.com>
X-Mailer: Apple Mail (2.3445.9.1)
X-OutGoing-Spam-Status: No, score=-1.0
X-AntiAbuse: This header was added to track abuse, please include it with any abuse report
X-AntiAbuse: Primary Hostname - server217.web-hosting.com
X-AntiAbuse: Original Domain - ietf.org
X-AntiAbuse: Originator/Caller UID/GID - [47 12] / [47 12]
X-AntiAbuse: Sender Address Domain - strayalpha.com
X-Get-Message-Sender-Via: server217.web-hosting.com: authenticated_id: touch@strayalpha.com
X-Authenticated-Sender: server217.web-hosting.com: touch@strayalpha.com
X-Source:
X-Source-Args:
X-Source-Dir:
X-From-Rewrite: unmodified, already matched
Archived-At: <https://mailarchive.ietf.org/arch/msg/tcpm/-3T5tM69zY6Heb0fVYebB_qAGCU>
Subject: Re: [tcpm] public-private keys for TCP-AO
X-BeenThere: tcpm@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: TCP Maintenance and Minor Extensions Working Group <tcpm.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tcpm>, <mailto:tcpm-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tcpm/>
List-Post: <mailto:tcpm@ietf.org>
List-Help: <mailto:tcpm-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tcpm>, <mailto:tcpm-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 30 Oct 2018 01:36:54 -0000
> On Oct 29, 2018, at 6:22 PM, Jakob Heitz (jheitz) <jheitz@cisco.com> wrote: > > Can you think of a way to do it that will work? > Like the KDF is just a static list or something. > The sender generates a set of key pairs and numbers them. > It then puts the list of public keys into a file and distributes them to all receivers in the clear. You’d have to find a way to specify the use of private and public keys on both sides, in advance, and distribute enough for the upcoming connections - then you’d have to hash into that list in a way that avoids reuse. At that point, why not just distribute symmetric keys and be done with it? Joe > The KDF is just to index into this file. > > Because the use case, at least, makes sense. > > Regards, > Jakob. > > From: Joe Touch <touch@strayalpha.com> > Sent: Monday, October 29, 2018 6:13 PM > To: Jakob Heitz (jheitz) <jheitz@cisco.com> > Cc: tcpm@ietf.org > Subject: Re: [tcpm] public-private keys for TCP-AO > > > > > On Oct 29, 2018, at 5:45 PM, Jakob Heitz (jheitz) <jheitz@cisco.com <mailto:jheitz@cisco.com>> wrote: > > Why was there not a public-private key algorithm specified for TCP-AO? Or did I miss it? > > There has not been. I doubt it would make sense (see below). > > > For example ECC. > An MKT can specify a private key for the sender and a public key for the receivers. > > Yes, but the MKT is derived into public/private keys using a KDF. > > I am not aware of a KDF that can take a private key and generate a derived private key that would work with a correspondingly derived public key generated from the corresponding public key. > > To use, the sender will hash the data, encrypt the hash and put the result into the MAC field. > The receiver would decrypt the MAC field, then hash the data and verify the hash against the decrypted MAC. > This way, the private key never needs to be exposed to anyone, simplifying key management. > Is there any objection to getting this done? > > See above; it doesn’t make sense with the way TCP-AO derives keys for each connection, AFAICT. > > Joe > > > > Regards, > Jakob. > > _______________________________________________ > tcpm mailing list > tcpm@ietf.org <mailto:tcpm@ietf.org> > https://www.ietf.org/mailman/listinfo/tcpm <https://www.ietf.org/mailman/listinfo/tcpm> > > _______________________________________________ > tcpm mailing list > tcpm@ietf.org > https://www.ietf.org/mailman/listinfo/tcpm
- [tcpm] public-private keys for TCP-AO Jakob Heitz (jheitz)
- Re: [tcpm] public-private keys for TCP-AO Joe Touch
- Re: [tcpm] public-private keys for TCP-AO Jakob Heitz (jheitz)
- Re: [tcpm] public-private keys for TCP-AO Joe Touch
- Re: [tcpm] public-private keys for TCP-AO Jakob Heitz (jheitz)
- Re: [tcpm] public-private keys for TCP-AO Joe Touch
- Re: [tcpm] public-private keys for TCP-AO Jakob Heitz (jheitz)
- Re: [tcpm] public-private keys for TCP-AO Joe Touch
- Re: [tcpm] public-private keys for TCP-AO Jakob Heitz (jheitz)
- Re: [tcpm] public-private keys for TCP-AO Joe Touch
- Re: [tcpm] public-private keys for TCP-AO Jakob Heitz (jheitz)
- Re: [tcpm] public-private keys for TCP-AO Ignacio Goyret