Re: [Tm-rid] Some updates and work on HHITs
"Wiethuechter, Adam" <adam.wiethuechter@axenterprize.com> Tue, 20 August 2019 20:39 UTC
Return-Path: <adam.wiethuechter@axenterprize.com>
X-Original-To: tm-rid@ietfa.amsl.com
Delivered-To: tm-rid@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 1A35A120090 for <tm-rid@ietfa.amsl.com>; Tue, 20 Aug 2019 13:39:42 -0700 (PDT)
X-Quarantine-ID: <14hOfVdmQ6sq>
X-Virus-Scanned: amavisd-new at amsl.com
X-Amavis-Alert: BANNED, message contains .exe,hhit-gen.py
X-Spam-Flag: NO
X-Spam-Score: -1.998
X-Spam-Level:
X-Spam-Status: No, score=-1.998 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=axenterprize.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 14hOfVdmQ6sq for <tm-rid@ietfa.amsl.com>; Tue, 20 Aug 2019 13:39:37 -0700 (PDT)
Received: from mail-qk1-x72a.google.com (mail-qk1-x72a.google.com [IPv6:2607:f8b0:4864:20::72a]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A489E120086 for <tm-rid@ietf.org>; Tue, 20 Aug 2019 13:39:37 -0700 (PDT)
Received: by mail-qk1-x72a.google.com with SMTP id d79so5697291qke.11 for <tm-rid@ietf.org>; Tue, 20 Aug 2019 13:39:37 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=axenterprize.com; s=google; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=HA6ZwBUjh/0tKKuCXAVWCpVwKSScrNumm7WTvz6DXTg=; b=puJS642N4Eclpy3+0YXMHFHAUwTstIzvhwWJltlxT98jslbR6rE2z7/+aGFTFCo8vu d5ho+qs0okm8aKkdlen8hxVfukTou8T9+jFUwD9GjCqTS/r9odh2CWFmXaXdozGiWXeg jVlc57m05CzeKEWO4J5amBZ4q4213qZym2Jpc=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=HA6ZwBUjh/0tKKuCXAVWCpVwKSScrNumm7WTvz6DXTg=; b=ASnJiYjw/5W3mZSEzJkw/tD27At8F1akSHcFhvNXpjoRBHOQyk+VdOZAA8tgsCVVep BEQuQJKtcFQ/CyVV8CKjgQIVKuQpsPvR/NhrWz5B0VRLpuUTUT2+VDSmiyYwJCElnDzr I71dutFM1KrGsiQmDJaC4pH+eXxk3W/osEWgGEHynu8pQopksHbpRxqF50DY7cy6CJfE /t/xGv0bZazFDSa2UOYRT67cfESbOQ2NY6qS/brwzLm3FMB70hWGbrheH4jOEmf6vG4D YKTTHt+mwrzDebwvZ2KZL1rYBuXGLac7fSXMfIRrimlth+SVBbha7HmEyy2HybU5kZWL YJYw==
X-Gm-Message-State: APjAAAUXr5QvdcItVbnBLcYhRXsnkXPr6vGRg2ilbJPrCOpsLO/NelZ3 oDTVvkor3D2FRmLlI6eGbgqe5HpBSr6UVHs5RFW3aKeyNw==
X-Google-Smtp-Source: APXvYqxcx2FcTYegIX/eNXbGqlYAwrFYj7p7kLZOyFv+/OXdULlCHgGLinaUv7jMs4ip+yIQ1BhvqotP9acE8Ai4F+I=
X-Received: by 2002:a37:2cc3:: with SMTP id s186mr27304082qkh.133.1566333576571; Tue, 20 Aug 2019 13:39:36 -0700 (PDT)
MIME-Version: 1.0
References: <d04d866c-24cc-eb6c-219f-9eb511160a87@labs.htt-consult.com> <CA+r8TqX52fyPpRBW6=UnnqV19qtSPc9u5gqAs7YoeKhz2aY67w@mail.gmail.com>
In-Reply-To: <CA+r8TqX52fyPpRBW6=UnnqV19qtSPc9u5gqAs7YoeKhz2aY67w@mail.gmail.com>
From: "Wiethuechter, Adam" <adam.wiethuechter@axenterprize.com>
Date: Tue, 20 Aug 2019 16:39:25 -0400
Message-ID: <CA+r8TqWZmGJGhJjreNfC+k8GwmDPF7Ds+LguJbwtuRRvc2Lkow@mail.gmail.com>
To: Robert Moskowitz <rgm@labs.htt-consult.com>
Cc: "tm-rid@ietf.org" <tm-rid@ietf.org>
Content-Type: multipart/mixed; boundary="0000000000006ea92f05909274f4"
Archived-At: <https://mailarchive.ietf.org/arch/msg/tm-rid/XEBni36pUCnkydhouZfCkPztO7c>
Subject: Re: [Tm-rid] Some updates and work on HHITs
X-BeenThere: tm-rid@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Trustworthy Multipurpose RemoteID <tm-rid.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tm-rid>, <mailto:tm-rid-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tm-rid/>
List-Post: <mailto:tm-rid@ietf.org>
List-Help: <mailto:tm-rid-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tm-rid>, <mailto:tm-rid-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 20 Aug 2019 20:39:42 -0000
Everyone, Attached is the latest version of the HHIT generation script (2019.08a13) along with a script to search for duplicate HITs/HHITs when a data set is generated. Pertaining to the last update here; - We now use ORCHID to generate both HITs and HHITs from the key-pair generated - A data set can be created (default size of 1000000, can be changed in script), this will output a text file called "hhit_set.txt" containing the pairs of HIT/HHITs to feed into the duplicate tester program. - General clean up and documentation of the script for better understanding - Disabled the DER format for public key generation and switched to PUB format as DER could not be opened in the script without errors. I generated a 1M data set (by request of Bob) with the scripts and searched for duplicate HITs and HHITs. None were found in my data set. To test yourself run the following (everything generated will drop into the same directory as the scripts, so be careful): $ python3 hhit-gen.py -n <name> -p <password> --dataset y $ python3 hhit-dup.py The duplication tester script will output 2 files once complete: - "hit_dups.txt" = a file containing the duplicate records for HITs - "hhit_dups.txt" = a file containing the duplicate records for HHITs For anyone curious I also have my data set tarred up (its 212.4MB) that I will offer up if anyone wishes to have it to confirm my results in their own way. Just email me and I will send it to you directly. On Wed, Aug 14, 2019 at 2:28 PM Wiethuechter, Adam < adam.wiethuechter@axenterprize.com> wrote: > All, > > Attached is a quick Python3 script I created using Bob's email. > It does not handle the actual creation of the HHIT yet, but does perform > the operations for the key generation. > > On Wed, Aug 14, 2019 at 8:50 AM Robert Moskowitz <rgm@labs.htt-consult.com> > wrote: > >> Just to let people here know I have been working away with some >> groundwork, expanding on the prior list of documents and peripheral >> things. >> >> Right now I am working on what a eddsa pki would be that would back up >> the proposed HHITs and various repositories. For this I want to >> generate some testing HHITs. >> >> I will use openssl from my draft-moskowitz-eddsa-pki and HHIT format >> from draft-moskowitz-hierarchical-hip (sec 4). >> >> I make the ed25519 keypair with: >> >> openssl genpkey -aes256 -algorithm ed25519 -outform pem -out >> entity.key.pem >> >> Note the keypair is encrypted; it contains the private key. This can be >> viewed with: >> >> openssl pkey -inform pem -in entity.key.pem -text -noout >> >> The public key can be extracted in DER format with: >> >> openssl pkey -in entity.key.pem -out entity.pub.der -outform DER -pubout >> >> For the HHIT: >> >> HIT SUITE ID = 4 >> RAA = 10 >> HDA = 20 >> >> It would be great to have this as a python or perl script. That way I >> may learn something along the way. >> >> Inputs are: >> >> key file name >> key password >> HIT Suite ID >> RRA >> HDA >> >> Output should be: >> >> the HHIT in 128bit binary to some file >> the HHIT in ipv6 : display format >> >> Thanks on any help. I will be posting this to both the tm-rid list and >> the hipsec list. >> >> Bob >> >> >> -- >> Tm-rid mailing list >> Tm-rid@ietf.org >> https://www.ietf.org/mailman/listinfo/tm-rid >> > > > -- > 73's, > Adam T. Wiethuechter > -- 73's, Adam T. Wiethuechter
- [Tm-rid] Some updates and work on HHITs Robert Moskowitz
- Re: [Tm-rid] Some updates and work on HHITs Wiethuechter, Adam
- Re: [Tm-rid] Some updates and work on HHITs Wiethuechter, Adam
- Re: [Tm-rid] Some updates and work on HHITs Robert Moskowitz
- Re: [Tm-rid] Some updates and work on HHITs Michael Richardson
- Re: [Tm-rid] Some updates and work on HHITs Robert Moskowitz
- Re: [Tm-rid] Some updates and work on HHITs Michael Richardson