[trill] Eric Rescorla's No Objection on draft-ietf-trill-over-ip-15: (with COMMENT)

Eric Rescorla <ekr@rtfm.com> Sun, 18 March 2018 13:49 UTC

MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
From: Eric Rescorla <ekr@rtfm.com>
To: The IESG <iesg@ietf.org>
Cc: draft-ietf-trill-over-ip@ietf.org, trill-chairs@ietf.org, shares@ndzh.com, trill@ietf.org
Auto-Submitted: auto-generated
Precedence: bulk
Message-ID: <152138094458.15843.3847502463943036804.idtracker@ietfa.amsl.com>
Date: Sun, 18 Mar 2018 06:49:04 -0700
Archived-At: <https://mailarchive.ietf.org/arch/msg/trill/vZ7gkFUNC794NVqi9t1_NP5b_Gc>
Subject: [trill] Eric Rescorla's No Objection on draft-ietf-trill-over-ip-15: (with COMMENT)

Eric Rescorla has entered the following ballot position for
draft-ietf-trill-over-ip-15: No Objection

When responding, please keep the subject line intact and reply to all
email addresses included in the To and CC lines. (Feel free to cut this
introductory paragraph, however.)


Please refer to https://www.ietf.org/iesg/statement/discuss-criteria.html
for more information about IESG DISCUSS and COMMENT positions.


The document, along with other ballot positions, can be found here:
https://datatracker.ietf.org/doc/draft-ietf-trill-over-ip/



----------------------------------------------------------------------
COMMENT:
----------------------------------------------------------------------

Based on my conversation with DEE, I understand that the HMAC is always
computed over a value which is disjoint with the HKDF-Label. This is not really
cryptographically ideal -- as I stated in my review, you should be HKDFing two
keys off the same key -- but it does imply that the trivial attack doesn't
work, so I'm removing my DISCUSS. As we discussed, please add some explanation
of why this is a non-issue to the document.

[trill] Eric Rescorla's No Objection on draft-iet… Eric Rescorla