Re: [tcpm] public-private keys for TCP-AO

Ignacio Goyret <ignacio.goyret@nokia.com> Fri, 02 November 2018 01:12 UTC

Return-Path: <ignacio.goyret@nokia.com>
X-Original-To: tcpm@ietfa.amsl.com
Delivered-To: tcpm@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 745E8124BE5 for <tcpm@ietfa.amsl.com>; Thu, 1 Nov 2018 18:12:05 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.37
X-Spam-Level:
X-Spam-Status: No, score=-2.37 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.47, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, FORGED_MUA_EUDORA=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=no autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=nokia.onmicrosoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id FSal4gbP3HXx for <tcpm@ietfa.amsl.com>; Thu, 1 Nov 2018 18:12:04 -0700 (PDT)
Received: from EUR02-VE1-obe.outbound.protection.outlook.com (mail-eopbgr20096.outbound.protection.outlook.com [40.107.2.96]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A8B52120072 for <tcpm@ietf.org>; Thu, 1 Nov 2018 18:12:03 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=nokia.onmicrosoft.com; s=selector1-nokia-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=oheijRrGBLhXi7cDuN8dQP692ThR4F5wP2RCH5K+FLY=; b=UgEABKZ9U7EzK5KAEzs9fYhnDqNlVmKRcXzVrOOAdPL3aVH9PIarRMUiwX6AiySjHcGRg5gTRcUUroOT5UDmoXyTX7LSZfNEW6AtMT2BHxEh6qOrMHr5qOQ5TDKk5HpuKqEnQBJj3Y6udIo+cIg9Ru1d0gMe3+zsCJByis6Rl48=
Received: from AM4PR0701CA0042.eurprd07.prod.outlook.com (2603:10a6:200:42::52) by VI1PR0701MB2845.eurprd07.prod.outlook.com (2603:10a6:800:85::12) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.1294.11; Fri, 2 Nov 2018 01:12:01 +0000
Received: from VE1EUR03FT003.eop-EUR03.prod.protection.outlook.com (2a01:111:f400:7e09::206) by AM4PR0701CA0042.outlook.office365.com (2603:10a6:200:42::52) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384) id 15.20.1294.14 via Frontend Transport; Fri, 2 Nov 2018 01:12:01 +0000
Received-SPF: Pass (protection.outlook.com: domain of nokia.com designates 135.245.43.118 as permitted sender) receiver=protection.outlook.com; client-ip=135.245.43.118; helo=us70tusmtp1.zam.alcatel-lucent.com;
Received: from us70tusmtp1.zam.alcatel-lucent.com (135.245.43.118) by VE1EUR03FT003.mail.protection.outlook.com (10.152.18.108) with Microsoft SMTP Server (version=TLS1_0, cipher=TLS_RSA_WITH_AES_256_CBC_SHA) id 15.20.1294.14 via Frontend Transport; Fri, 2 Nov 2018 01:12:00 +0000
Received: from cliff.eng.ascend.com (cliff.eng.ascend.com [192.207.23.55]) by us70tusmtp1.zam.alcatel-lucent.com (GMO) with ESMTP id wA21BvQu017487 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=FAIL); Fri, 2 Nov 2018 01:11:58 GMT
Received: from igoyret-c1.nokia.com (igoyret-pc [135.227.139.12]) by cliff.eng.ascend.com (8.13.1/8.13.1) with ESMTP id wA21IgmH012681 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Thu, 1 Nov 2018 18:18:43 -0700
Message-ID: <201811020118.wA21IgmH012681@cliff.eng.ascend.com>
X-Mailer: QUALCOMM Windows Eudora Version 7.1.0.9
Date: Thu, 01 Nov 2018 18:10:41 -0700
To: "Jakob Heitz (jheitz)" <jheitz@cisco.com>
From: Ignacio Goyret <ignacio.goyret@nokia.com>
CC: "tcpm@ietf.org" <tcpm@ietf.org>
In-Reply-To: <6ec702c1f6ae426f9b169a035eda5345@XCH-ALN-014.cisco.com>
References: <95f4b81948844b2799ecca33450bdde1@XCH-ALN-014.cisco.com> <E4B83487-C832-4F41-BFFE-20CE2EA53AC4@strayalpha.com> <7597333b9a414761be688375acf48dd6@XCH-ALN-014.cisco.com> <0C168054-E3D6-4BC5-9E1E-A28059F1A27B@strayalpha.com> <12b0f677e60443d8a32b4d56370787d7@XCH-ALN-014.cisco.com> <4C874E0B-BB5D-4765-8A33-3B9C736B646B@strayalpha.com> <bd707072e91b420d93dd898f69d94898@XCH-ALN-014.cisco.com> <68FFD5DF-E6B1-4E3A-B5F7-AB5114DA1BA0@strayalpha.com> <6ec702c1f6ae426f9b169a035eda5345@XCH-ALN-014.cisco.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
X-EOPAttributedMessage: 0
X-MS-Office365-Filtering-HT: Tenant
X-Forefront-Antispam-Report: CIP:135.245.43.118; IPV:NLI; CTRY:US; EFV:NLI; SFV:NSPM; SFS:(10019020)(396003)(39860400002)(346002)(376002)(136003)(2980300002)(438002)(199004)(189003)(126002)(81166006)(476003)(5660300001)(106002)(316002)(16586007)(81156014)(956004)(53936002)(76176011)(486006)(93886005)(446003)(336012)(11346002)(86362001)(186003)(97756001)(50226002)(8676002)(50466002)(478600001)(229853002)(97736004)(8936002)(47776003)(44832011)(23726003)(8276002)(9686003)(1076002)(53416004)(46406003)(6246003)(2906002)(6916009)(68736007)(106466001)(4720700003)(26005)(6346003)(356004)(305945005)(4326008)(90706001); DIR:OUT; SFP:1102; SCL:1; SRVR:VI1PR0701MB2845; H:us70tusmtp1.zam.alcatel-lucent.com; FPR:; SPF:Pass; LANG:en; PTR:InfoDomainNonexistent; A:1; MX:1;
X-Microsoft-Exchange-Diagnostics: 1; VE1EUR03FT003; 1:cbaPe0wukUBfkxwgTx+PeEHx+injL0w/ws5Ijed+4fUkh6xU8O8cI9c+wIbxFnQFBahqCfUS2Edniqv2gZDQnjiVCK0Y3G4rXGgIFXiF4XtUerxx+3OTHObOgHddGgoM
X-MS-PublicTrafficType: Email
X-MS-Office365-Filtering-Correlation-Id: 4d45e150-77a4-45cc-bd50-08d64060314b
X-Microsoft-Antispam: BCL:0; PCL:0; RULEID:(7020095)(4652040)(8989299)(4534185)(4627221)(201703031133081)(201702281549075)(8990200)(5600074)(711020)(4608076)(2017052603328); SRVR:VI1PR0701MB2845;
X-Microsoft-Exchange-Diagnostics: 1; VI1PR0701MB2845; 3:hb4zfjgRT05QnmjC7XFyHjh2UcXaZMAWChAoHD2mlOuplx0xatPLIukuMUYirJyEpxnOOERCW/zUrCTa2jblQuGXYivdao96m4v1QPq+x7YavEQIVQZ+hF+EzgvCTokIbC/E3d+qZCpzw08a4/VMYGBA2nvQRrj9A0GR34nTAhhWNG0BqPF4/3nFTB98JAbR2urwaYSYDyPHP+2jE9jsCgqyByaB6uDzYypeXSE1Ldb5Cs0CDo8Mn5D8eyf0pUcPN0D6SKJtIs1bAahpxGlNFprxduxCyPMgjB/PchTFeS24pj1jwG2SWWSqJo8wAFrwcvuufxPqtI/QOb7L+6EWqPnMv8N9dOU5fpIoaLNyQOs=; 25:zsH3JUgEMJrDruhC+osrsvVOWCuCU/HwvE+XwcACK9i+u0GmfAIgOfl4MWZ3tgN15MY+L14oLOdjKFYcKCdQrXObHid+YqrXqOj08tkFNjd4whhCbNlHwE3Nwr0RCPmJ6atX2fzYf6skiwRK0UrPVEFJwTD164CE6wwGkDGfqACSzAi/p51K4oCWrnoXIGD96F5Ma4M75EOloULwpmJvI31YByMKFtGO+h7+NglkUatmvib503ceKQUEjFc0THfG9WLe6ST+FO6/C0WRvy5yNZLRxEdzZM6JECFJ65hiuNKaTWkHe0xJwWpQkiHOIArUJwkTfObvEGe1gnPrsqejcw==
X-MS-TrafficTypeDiagnostic: VI1PR0701MB2845:
X-Microsoft-Exchange-Diagnostics: 1; VI1PR0701MB2845; 31:rjXLAaX+TXZdRi0SS76JxjzUjPKWDiq98e8ww1QZM9R8+aVzqGewQYMG1n9buyqYo8AoPq1N8cmVjurTgBhtn0AYyndMBmwkuj7nVdcQcCQiQSQOFAF0Wp/cS+w86upopkxKdA27hHwGVQ3SPfWoQ2SE4ZgGnGLOgC4HwBCdpIqYYQJEX8oJhWec3UhRDDiFXWyrggBqydEQmK2IGTXHawfOAaLP92QTbnyxxqRR5Fk=; 20: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
X-Microsoft-Antispam-PRVS: <VI1PR0701MB2845734CA3F9255D647F14578FCF0@VI1PR0701MB2845.eurprd07.prod.outlook.com>
X-Exchange-Antispam-Report-Test: UriScan:;
X-MS-Exchange-SenderADCheck: 1
X-Exchange-Antispam-Report-CFA-Test: BCL:0; PCL:0; RULEID:(8211001083)(6040522)(2401047)(5005006)(8121501046)(3231382)(11241501184)(806099)(944501410)(52105095)(93006095)(93004095)(3002001)(10201501046)(6055026)(148016)(149066)(150057)(6041310)(201703131423095)(201702281528075)(20161123555045)(201703061421075)(201703061406153)(20161123558120)(20161123562045)(20161123564045)(20161123560045)(201708071742011)(7699051)(76991095); SRVR:VI1PR0701MB2845; BCL:0; PCL:0; RULEID:; SRVR:VI1PR0701MB2845;
X-Microsoft-Exchange-Diagnostics: 1; VI1PR0701MB2845; 4:jda61tONC42QJKfEeEJtvTLLINm14CDTORufWSCvTOVBTOukH/0hQbfIT5CFBDkwY80EGJazxhP2heRa8KXNWPgmz/HOV/SGAekqHux4IB+y/WnX/Qma57idrSIa3EYUey+RVjnfNhYWTwzZZkSVfi9ywr3B1WBqNwPhGXceZnt2dfQVKkTDb2DwO1u/e5KnMQ4FICZW4tUcfOoqegy9OxTrXdEGlbUYbfRbFbqcjO1F2RnDNm9/tg34weq5doz8iYTE3Be4X+92NfH03S8/GA==
X-Forefront-PRVS: 08444C7C87
X-Microsoft-Exchange-Diagnostics: 1; VI1PR0701MB2845; 23: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
X-Microsoft-Antispam-Message-Info: kvj//2rQS75ThE82Lg6XPLzvRIHCDsaEhh3+HYOJfbIW/d3YZtC573++gOYMMFdFWRStl+gcalzxWFUQUT4XOkwFfGX2LLDJDVi7uEfLui2eVwFzTpNlVcqlB8Ryra1XQcaBiCBHBLT4JmowcSbkForOd132xqENE1L+/HmoMfWa1JcKLPlZzlCKnGr1yP8rj183AExq3gd3Dr4aUTgp415+dynz2R+zz8SNTp2L9EbRtLPFkpXwtLhQ/xErIRN04MT8XhNKvnaU818ou5NzNdVbSSlQNvcXV0qT67GUogmd4cpuUSZl3BXJu5WkGd6IlOblg5VRiZoGyEJHpEqeCDuRQN8sHuQ++Ohd7EH2ArA=
X-Microsoft-Exchange-Diagnostics: 1; VI1PR0701MB2845; 6:hO/En29c6T0DMB9KkZ5qlyU5X0Aynw/PXk6Lcx3S0IPRX2xDn2hIndBe0nW/y8/KNImk9UyBKMwtLrrCwNaSad+BA3YVu6NENOSXXMB/3uNSUr28Tgk3kloqqaujD16xgLjVuGKf2H9ckXkcEsTkZ6J3KCbd9dw030oJtVJjKEcgecv6J02tKgMImVwiPWkFU83sqDLraXDTvHPAkLxMYnk8Fp8Glb2Y4hM904Mn6HCj+T9DYM555fr6ffoAhHtwdt4r3AmTYpNo9cSHSIv0gFZ1h4LaTvFOEnFrm8Fhx6DvUG/GbcNisDteM59Nhe6sKYb5yPMnBYiq1Xwp5/5JBKumXNWJTnDy2qITjX8QZVj7AhF6j2q9lKRFzO84oiQW7MN5/xg3qlScVVOHg9u5sxFXZGFlSpePR7F79m6zVJSkqyBCbt/bEFQR8Ajcm9rXWJmWMudKQt7RCS+xLG2msg==; 5:TadjneotWoKpFJlIodQzmP1Ohk4bbsNO3G4CwY6GcDkUDrVJ0eDvwwlooil4tFiec70QI/X2xB/GQOxBOFKn6OfJQ5vey0ubOkQe9RFi27rPMkU0T4mHW22VdZ+UZCwkQYY9do2cy9rv3M/mG0HZqtnU57wCH0K7xqHg4eTLDrc=; 7:2K1AWR+klX8cV3KViU1r3/dmRjD/b5F96BmwR3a/TpykIgrunEd4j/Rhzde9EeEQCUkkg0mMeuE46vaEQnbpKoul3wnp2+Ox1DcnaaY4zINzd7W3wuera5XpnwHS4Yz0GGtiXE9lFOM3RuDcHEhhYQ==
SpamDiagnosticOutput: 1:99
SpamDiagnosticMetadata: NSPM
X-OriginatorOrg: nokia.com
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 02 Nov 2018 01:12:00.1182 (UTC)
X-MS-Exchange-CrossTenant-Network-Message-Id: 4d45e150-77a4-45cc-bd50-08d64060314b
X-MS-Exchange-CrossTenant-Id: 5d471751-9675-428d-917b-70f44f9630b0
X-MS-Exchange-CrossTenant-OriginalAttributedTenantConnectingIp: TenantId=5d471751-9675-428d-917b-70f44f9630b0; Ip=[135.245.43.118]; Helo=[us70tusmtp1.zam.alcatel-lucent.com]
X-MS-Exchange-CrossTenant-FromEntityHeader: HybridOnPrem
X-MS-Exchange-Transport-CrossTenantHeadersStamped: VI1PR0701MB2845
Archived-At: <https://mailarchive.ietf.org/arch/msg/tcpm/H9B8dx36ugRx8oMaj8Aky1eYXbs>
Subject: Re: [tcpm] public-private keys for TCP-AO
X-BeenThere: tcpm@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: TCP Maintenance and Minor Extensions Working Group <tcpm.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tcpm>, <mailto:tcpm-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tcpm/>
List-Post: <mailto:tcpm@ietf.org>
List-Help: <mailto:tcpm-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tcpm>, <mailto:tcpm-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 02 Nov 2018 01:12:06 -0000

At 20:25 10/29/2018, Jakob Heitz (jheitz) wrote:

>If it's public-private, I need one per sender.
>It doesn't need to be the same key ID in both directions on the same session, does it?

Each direction is independent and can use different IDs.
Further, the key info associated with a particular key ID can be different
for each direction.

-Ignacio