From nobody Thu Jan 8 19:19:27 2015 Return-Path: X-Original-To: hipsec@ietfa.amsl.com Delivered-To: hipsec@ietfa.amsl.com Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A9A141A86DF for ; Thu, 8 Jan 2015 19:19:25 -0800 (PST) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -0.101 X-Spam-Level: X-Spam-Status: No, score=-0.101 tagged_above=-999 required=5 tests=[BAYES_20=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, SPF_PASS=-0.001] autolearn=ham Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id K5JQj-Gy4z-W for ; Thu, 8 Jan 2015 19:19:23 -0800 (PST) Received: from mail-la0-x236.google.com (mail-la0-x236.google.com [IPv6:2a00:1450:4010:c03::236]) (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 0153E1A854D for ; Thu, 8 Jan 2015 19:19:22 -0800 (PST) Received: by mail-la0-f54.google.com with SMTP id pv20so12486144lab.13 for ; Thu, 08 Jan 2015 19:19:21 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; bh=pLg5aav7ONNK4f5pHmgWXpIu7xLpPik8150AZXk2enA=; b=dgM/DgiA0K7yk5a7/O7XXIXgds46b+qVoPOJRuuH6ZAlaJJAzUOQC8XCRPuwB4dLaK Bx3rhrspDHXp391UsKA223vJMJbxiN7mG6F8sbrPjXFfHJTpT+pKarDV75cprgwlgkPo pNZcnMxaayZn16YJm2sYkUdPEIa4bODJEv/JYZdY/ohmEuBp/at0AHFwQT+rjEXScasb jYn/nMu2o9Pxs//QV4JW2Nrhu/CSTBUMCDUs0MA0lnJfjyhC/bluCcCKPCdVff9MmDZ2 demnl60KXjdeEivAt9CTomsjnjIgu7DZpEZX3dKrvQEJfoolQhAJZfayuKydMdmNZcNq +kYw== MIME-Version: 1.0 X-Received: by 10.152.234.35 with SMTP id ub3mr19176852lac.70.1420773561106; Thu, 08 Jan 2015 19:19:21 -0800 (PST) Received: by 10.25.151.7 with HTTP; Thu, 8 Jan 2015 19:19:21 -0800 (PST) In-Reply-To: <549EFF21.2030707@cs.hut.fi> References: <54905061.1010200@tomh.org> <549EFF21.2030707@cs.hut.fi> Date: Thu, 8 Jan 2015 19:19:21 -0800 Message-ID: From: Julien Laganier To: Miika Komu Content-Type: text/plain; charset=UTF-8 Archived-At: Cc: HIP Subject: Re: [Hipsec] RFC5204-bis open issues? X-BeenThere: hipsec@ietf.org X-Mailman-Version: 2.1.15 Precedence: list List-Id: "This is the official IETF Mailing List for the HIP Working Group." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 09 Jan 2015 03:19:25 -0000 On Sat, Dec 27, 2014 at 10:49 AM, Miika Komu wrote: > Hi Tom, > > On 12/16/2014 05:31 PM, Tom Henderson wrote: >> >> I noticed that the draft for RFC5204-bis (rendezvous extension) was >> recently refreshed, and was wondering what the remaining open issues are >> for this draft? >> >> I know of only one, which is a longstanding question of whether we want >> to cover RVS relaying of UPDATE messages in this specification. >> >> https://tools.ietf.org/wg/hip/trac/ticket/1 >> >> Some choices appear to be: >> >> * do not support double jump in these specifications, leaving it for >> further study >> * add specification in RFC5204-bis that refers to UPDATE relaying >> * add specification in RFC5206-bis that refers to UPDATE relaying > > > I suggest the third option (unless Julien wants to write it in RFC5204). > Besides UPDATE relaying, we need also some text for the other side, i.e., > the registered host moves and updates its registration. I also think the third option is the best. The relaying of UPDATEs messages is not required for a non-mobile host so RFC5204bis doesn't sound right since it documents a generic rendezvous mechanism that can be applied to a non-mobile host. On the other hand RFC5206bis is specifically concerned with host mobility so that seem to be a good place to add the extra bits of specification. --julien From nobody Mon Jan 12 10:09:02 2015 Return-Path: X-Original-To: hipsec@ietfa.amsl.com Delivered-To: hipsec@ietfa.amsl.com Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A44F61ACD18; Mon, 12 Jan 2015 10:08:57 -0800 (PST) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -1.9 X-Spam-Level: X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9] autolearn=ham Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id k8JMbjSIR8gO; Mon, 12 Jan 2015 10:08:55 -0800 (PST) Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id A32DE1ACD1C; Mon, 12 Jan 2015 10:08:55 -0800 (PST) MIME-Version: 1.0 Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: 7bit From: internet-drafts@ietf.org To: i-d-announce@ietf.org X-Test-IDTracker: no X-IETF-IDTracker: 5.10.0.p8 Auto-Submitted: auto-generated Precedence: bulk Message-ID: <20150112180855.31369.82643.idtracker@ietfa.amsl.com> Date: Mon, 12 Jan 2015 10:08:55 -0800 Archived-At: Cc: hipsec@ietf.org Subject: [Hipsec] I-D Action: draft-ietf-hip-rfc5206-bis-08.txt X-BeenThere: hipsec@ietf.org X-Mailman-Version: 2.1.15 List-Id: "This is the official IETF Mailing List for the HIP Working Group." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 12 Jan 2015 18:08:58 -0000 A New Internet-Draft is available from the on-line Internet-Drafts directories. This draft is a work item of the Host Identity Protocol Working Group of the IETF. Title : Host Mobility with the Host Identity Protocol Authors : Thomas R. Henderson Christian Vogt Jari Arkko Filename : draft-ietf-hip-rfc5206-bis-08.txt Pages : 33 Date : 2015-01-12 Abstract: This document defines mobility extensions to the Host Identity Protocol (HIP). Specifically, this document defines a general "LOCATOR_SET" parameter for HIP messages that allows for a HIP host to notify peers about alternate addresses at which it may be reached. This document also defines elements of procedure for mobility of a HIP host -- the process by which a host dynamically changes the primary locator that it uses to receive packets. While the same LOCATOR_SET parameter can also be used to support end-host multihoming, detailed procedures are out of scope for this document. This document obsoletes RFC 5206. The IETF datatracker status page for this draft is: https://datatracker.ietf.org/doc/draft-ietf-hip-rfc5206-bis/ There's also a htmlized version available at: http://tools.ietf.org/html/draft-ietf-hip-rfc5206-bis-08 A diff from the previous version is available at: http://www.ietf.org/rfcdiff?url2=draft-ietf-hip-rfc5206-bis-08 Please note that it may take a couple of minutes from the time of submission until the htmlized version and diff are available at tools.ietf.org. Internet-Drafts are also available by anonymous FTP at: ftp://ftp.ietf.org/internet-drafts/ From nobody Mon Jan 12 10:15:29 2015 Return-Path: X-Original-To: hipsec@ietfa.amsl.com Delivered-To: hipsec@ietfa.amsl.com Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 28B631ACD2C; Mon, 12 Jan 2015 10:15:25 -0800 (PST) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -1.9 X-Spam-Level: X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9] autolearn=ham Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id MSLRUBSq8lda; Mon, 12 Jan 2015 10:15:23 -0800 (PST) Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 40DF81ACD18; Mon, 12 Jan 2015 10:15:23 -0800 (PST) MIME-Version: 1.0 Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: 7bit From: internet-drafts@ietf.org To: i-d-announce@ietf.org X-Test-IDTracker: no X-IETF-IDTracker: 5.10.0.p8 Auto-Submitted: auto-generated Precedence: bulk Message-ID: <20150112181523.29396.31180.idtracker@ietfa.amsl.com> Date: Mon, 12 Jan 2015 10:15:23 -0800 Archived-At: Cc: hipsec@ietf.org Subject: [Hipsec] I-D Action: draft-ietf-hip-multihoming-05.txt X-BeenThere: hipsec@ietf.org X-Mailman-Version: 2.1.15 List-Id: "This is the official IETF Mailing List for the HIP Working Group." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 12 Jan 2015 18:15:25 -0000 A New Internet-Draft is available from the on-line Internet-Drafts directories. This draft is a work item of the Host Identity Protocol Working Group of the IETF. Title : Host Multihoming with the Host Identity Protocol Authors : Thomas R. Henderson Christian Vogt Jari Arkko Filename : draft-ietf-hip-multihoming-05.txt Pages : 21 Date : 2015-01-12 Abstract: This document defines host multihoming extensions to the Host Identity Protocol (HIP), by leveraging protocol components defined for host mobility. The IETF datatracker status page for this draft is: https://datatracker.ietf.org/doc/draft-ietf-hip-multihoming/ There's also a htmlized version available at: http://tools.ietf.org/html/draft-ietf-hip-multihoming-05 A diff from the previous version is available at: http://www.ietf.org/rfcdiff?url2=draft-ietf-hip-multihoming-05 Please note that it may take a couple of minutes from the time of submission until the htmlized version and diff are available at tools.ietf.org. Internet-Drafts are also available by anonymous FTP at: ftp://ftp.ietf.org/internet-drafts/ From nobody Mon Jan 12 10:33:55 2015 Return-Path: X-Original-To: hipsec@ietfa.amsl.com Delivered-To: hipsec@ietfa.amsl.com Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 82E551A802F for ; Mon, 12 Jan 2015 10:33:45 -0800 (PST) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: 0.232 X-Spam-Level: X-Spam-Status: No, score=0.232 tagged_above=-999 required=5 tests=[BAYES_20=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, IP_NOT_FRIENDLY=0.334, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=no Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id PQwUxtGgFnCm for ; Mon, 12 Jan 2015 10:33:44 -0800 (PST) Received: from gproxy10-pub.mail.unifiedlayer.com (gproxy10-pub.mail.unifiedlayer.com [69.89.20.226]) by ietfa.amsl.com (Postfix) with SMTP id 6EE2C1ACD32 for ; Mon, 12 Jan 2015 10:33:42 -0800 (PST) Received: (qmail 11915 invoked by uid 0); 12 Jan 2015 18:33:42 -0000 Received: from unknown (HELO cmgw2) (10.0.90.83) by gproxy10.mail.unifiedlayer.com with SMTP; 12 Jan 2015 18:33:42 -0000 Received: from box528.bluehost.com ([74.220.219.128]) by cmgw2 with id f6Zd1p00B2molgS016ZgDw; Mon, 12 Jan 2015 11:33:41 -0700 X-Authority-Analysis: v=2.1 cv=eOCA0hZ1 c=1 sm=1 tr=0 a=K/474su/0lCI2gKrDs9DLw==:117 a=K/474su/0lCI2gKrDs9DLw==:17 a=cNaOj0WVAAAA:8 a=f5113yIGAAAA:8 a=vP6ySPhpAh4A:10 a=IkcTkHD0fZMA:10 a=HYWc1YUsAAAA:8 a=IA_2sfgTpx8A:10 a=Frq4C2WgjfYA:10 a=YNv0rlydsVwA:10 a=48vgC7mUAAAA:8 a=6pwFDpWVorT279n8kVIA:9 a=QEXdDO2ut3YA:10 DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=tomh.org; s=default; h=Content-Transfer-Encoding:Content-Type:Subject:To:MIME-Version:From:Date:Message-ID; bh=+acCP/c00EAqwzrHjnD/CpmhC0i5XkXYgdOMfEaxk+k=; b=xAi3lQSj5pdbNkTj/95UaLU4E7lJjo3JXNVYKCYJb4m+Ln6xPoGsZQc6f4jpI3P3ravI31G4nLSNk3OsuNSFB/dkALUdiChZ3udMj1uugb27TH8r+7uJeKiBlqEbIiDm; Received: from [69.91.156.29] (port=53776) by box528.bluehost.com with esmtpsa (TLSv1.2:DHE-RSA-AES128-SHA:128) (Exim 4.82) (envelope-from ) id 1YAjo1-0000fs-5A for hipsec@ietf.org; Mon, 12 Jan 2015 11:33:37 -0700 Message-ID: <54B4137E.1040709@tomh.org> Date: Mon, 12 Jan 2015 10:33:34 -0800 From: Tom Henderson User-Agent: Mozilla/5.0 (X11; Linux i686; rv:31.0) Gecko/20100101 Thunderbird/31.3.0 MIME-Version: 1.0 To: HIP Content-Type: text/plain; charset=utf-8; format=flowed Content-Transfer-Encoding: 7bit X-Identified-User: {3122:box528.bluehost.com:tomhorg:tomh.org} {sentby:smtp auth 69.91.156.29 authed with tomh@tomh.org} Archived-At: Subject: [Hipsec] RFC5206-bis (mobility) status X-BeenThere: hipsec@ietf.org X-Mailman-Version: 2.1.15 Precedence: list List-Id: "This is the official IETF Mailing List for the HIP Working Group." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 12 Jan 2015 18:33:45 -0000 I just published version 8 of RFC5206-bis (mobility), and version 5 of the multihoming draft. These updates make the changes that were discussed on the list in December; in summary, the updates were mainly about moving additional material related to multihoming from the RFC5206-bis draft to the multihoming draft. The next update I plan to make is to add a description of how UPDATEs may be forwarded through rendezvous servers, to handle the double jump mobility scenario. There isn't any discussion about what to do when UPDATEs are not acknowledged, so I propose to suggest that, upon failure of obtaining an ACK to an UPDATE from a peer, the host should try any other addresses that it knows about, and if those also fail, try to send the UPDATE to the peer's rendezvous server (if known). There were 13 open issues in the tracker against RFC5206-bis, but upon review, many of them are multihoming questions, so I reassigned several of them to the multihoming draft. Here are the issues against RFC5206-bis that I see remaining. Issue 8: decouple locator announcement from SA creation http://trac.tools.ietf.org/wg/hip/trac/ticket/8 Issue 9: some implementations lack some of the compulsory UPDATE features, so maybe they should not be mandatory http://trac.tools.ietf.org/wg/hip/trac/ticket/9 Issue 12: sending UPDATE via rendezvous server (discussed above) http://trac.tools.ietf.org/wg/hip/trac/ticket/12 Issue 15: suggestion for naming UPDATE packets http://trac.tools.ietf.org/wg/hip/trac/ticket/15 Issue 21: UPDATE signature and HI inclusion http://trac.tools.ietf.org/wg/hip/trac/ticket/21 Issue 23: Allow Locator fields to have flow bindings http://trac.tools.ietf.org/wg/hip/trac/ticket/23 From nobody Fri Jan 16 01:15:46 2015 Return-Path: X-Original-To: hipsec@ietfa.amsl.com Delivered-To: hipsec@ietfa.amsl.com Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 86BDF1AC3D9 for ; Fri, 16 Jan 2015 01:15:42 -0800 (PST) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -3.901 X-Spam-Level: X-Spam-Status: No, score=-3.901 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, MIME_8BIT_HEADER=0.3, RCVD_IN_DNSWL_MED=-2.3, SPF_PASS=-0.001] autolearn=ham Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 7LoPvPISH0Y5 for ; Fri, 16 Jan 2015 01:15:38 -0800 (PST) Received: from sesbmg23.ericsson.net (sesbmg23.ericsson.net [193.180.251.37]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 35A7B1A6F2D for ; Fri, 16 Jan 2015 01:15:37 -0800 (PST) X-AuditID: c1b4fb25-f791c6d00000617b-7a-54b8d6b72d84 Received: from ESESSHC009.ericsson.se (Unknown_Domain [153.88.253.124]) by sesbmg23.ericsson.net (Symantec Mail Security) with SMTP id EC.CC.24955.7B6D8B45; Fri, 16 Jan 2015 10:15:35 +0100 (CET) Received: from mail.lmf.ericsson.se (153.88.183.153) by smtp.internal.ericsson.com (153.88.183.47) with Microsoft SMTP Server id 14.3.195.1; Fri, 16 Jan 2015 10:15:34 +0100 Received: from nomadiclab.lmf.ericsson.se (nomadiclab.lmf.ericsson.se [131.160.33.3]) by mail.lmf.ericsson.se (Postfix) with ESMTP id BE7AA1102B2; Fri, 16 Jan 2015 11:15:34 +0200 (EET) Received: from nomadiclab.lmf.ericsson.se (localhost [127.0.0.1]) by nomadiclab.lmf.ericsson.se (Postfix) with ESMTP id BB3E24E936; Fri, 16 Jan 2015 11:17:22 +0200 (EET) Received: from m46.nomadiclab.com (localhost [127.0.0.1]) by nomadiclab.lmf.ericsson.se (Postfix) with ESMTP id 5E68C4E8CC; Fri, 16 Jan 2015 11:17:22 +0200 (EET) Message-ID: <54B8D6B5.3050003@ericsson.com> Date: Fri, 16 Jan 2015 11:15:33 +0200 From: =?windows-1252?Q?Ari_Ker=E4nen?= User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.9; rv:31.0) Gecko/20100101 Thunderbird/31.2.0 MIME-Version: 1.0 To: References: <20140901161910.6514.64362.idtracker@ietfa.amsl.com> In-Reply-To: <20140901161910.6514.64362.idtracker@ietfa.amsl.com> Content-Type: text/plain; charset="windows-1252"; format=flowed Content-Transfer-Encoding: 7bit X-Virus-Scanned: ClamAV using ClamSMTP X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFrrGLMWRmVeSWpSXmKPExsUyM+Jvje72aztCDC5NEbDoWbic3WLqosnM DkweS5b8ZPL4cvkzWwBTFJdNSmpOZllqkb5dAlfG6p332AumsVd839PD3sC4irWLkZNDQsBE 4svTbVC2mMSFe+vZuhi5OIQEjjBKLFiznBnC2cAo0b6ghRXC2cMo8fLgT3YIZy2jxNedd6Cc pUA9rb/ZQYbxCmhL7Fm0iRHEZhFQlXh15AoTiM0m4Chx++FLsIWiAskSXS8fMkHUC0qcnPmE BcQWEdCX+D9hO1ANBwezgKjE9llVIGFhAWeJZ+/3gLUKCThIzJ09GaycE2jk6S0z2CDK7SUe bC0DCTMLyEtsfzuHGeI1NYmr5zYxQ7SqSlz994pxAqPoLCSLZyF0z0LSvYCReRWjaHFqcVJu upGxXmpRZnJxcX6eXl5qySZGYEQc3PJbdQfj5TeOhxgFOBiVeHg/bNsRIsSaWFZcmXuIUZqD RUmcN89hQ4iQQHpiSWp2ampBalF8UWlOavEhRiYOTqkGxoxXoet/1XOum7lluqAan4DAvbh5 noIfZyw4pKC9RP/xc8tD21XlLiaa8Rj63i4S6VaSbTK7WDPv/tQZAVNluNOZe3S+BS1943Ul 4e4U7sTgPa/WTebnZOPj9K7l3cOzO5Q3fN26iYFpxyQD5i/cd65US3SG1j+v4+fL4vhe5z5i Daux3Gn1RYmlOCPRUIu5qDgRAFb3JKlpAgAA Archived-At: Cc: hipsec@ietf.org Subject: Re: [Hipsec] I-D Action: draft-ietf-hip-rfc5203-bis-06.txt X-BeenThere: hipsec@ietf.org X-Mailman-Version: 2.1.15 Precedence: list List-Id: "This is the official IETF Mailing List for the HIP Working Group." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 16 Jan 2015 09:15:43 -0000 Hi, There seems to be couple of small inconsistencies in the IANA section of draft-ietf-hip-rfc5203-bis-06: Failure Type Reason ------------ -------------------------------------------- 0 Registration requires additional credentials 1 Registration type unavailable 3 Insufficient resources 2-200 Unassigned 201-255 Reserved by IANA for private use The section 4.5 [1] assigns failure type 2 to Insufficient resources, there is a new assignment for Invalid certificate (3, I suppose), and then the "Unassigned" area should then probably start from 4 (same fix needed to the table of section 4.5). Also, the Invalid Certificate could be described shortly in Section 4.5 just like the other error codes. Cheers, Ari [1] http://tools.ietf.org/html/draft-ietf-hip-rfc5203-bis-06#section-4.5 From nobody Fri Jan 16 11:42:46 2015 Return-Path: X-Original-To: hipsec@ietfa.amsl.com Delivered-To: hipsec@ietfa.amsl.com Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 14A761ACEAC; Fri, 16 Jan 2015 11:42:44 -0800 (PST) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -1.9 X-Spam-Level: X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9] autolearn=ham Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id o5o1okFgbxDh; Fri, 16 Jan 2015 11:42:42 -0800 (PST) Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 2BA061ACEC0; Fri, 16 Jan 2015 11:42:41 -0800 (PST) MIME-Version: 1.0 Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: 7bit From: internet-drafts@ietf.org To: i-d-announce@ietf.org X-Test-IDTracker: no X-IETF-IDTracker: 5.10.0.p8 Auto-Submitted: auto-generated Precedence: bulk Message-ID: <20150116194241.17431.66489.idtracker@ietfa.amsl.com> Date: Fri, 16 Jan 2015 11:42:41 -0800 Archived-At: Cc: hipsec@ietf.org Subject: [Hipsec] I-D Action: draft-ietf-hip-rfc5205-bis-06.txt X-BeenThere: hipsec@ietf.org X-Mailman-Version: 2.1.15 List-Id: "This is the official IETF Mailing List for the HIP Working Group." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 16 Jan 2015 19:42:44 -0000 A New Internet-Draft is available from the on-line Internet-Drafts directories. This draft is a work item of the Host Identity Protocol Working Group of the IETF. Title : Host Identity Protocol (HIP) Domain Name System (DNS) Extension Author : Julien Laganier Filename : draft-ietf-hip-rfc5205-bis-06.txt Pages : 16 Date : 2015-01-16 Abstract: This document specifies a new resource record (RR) for the Domain Name System (DNS), and how to use it with the Host Identity Protocol (HIP). This RR allows a HIP node to store in the DNS its Host Identity (HI, the public component of the node public-private key pair), Host Identity Tag (HIT, a truncated hash of its public key), and the Domain Names of its rendezvous servers (RVSs). This document obsoletes RFC5205. The IETF datatracker status page for this draft is: https://datatracker.ietf.org/doc/draft-ietf-hip-rfc5205-bis/ There's also a htmlized version available at: http://tools.ietf.org/html/draft-ietf-hip-rfc5205-bis-06 A diff from the previous version is available at: http://www.ietf.org/rfcdiff?url2=draft-ietf-hip-rfc5205-bis-06 Please note that it may take a couple of minutes from the time of submission until the htmlized version and diff are available at tools.ietf.org. Internet-Drafts are also available by anonymous FTP at: ftp://ftp.ietf.org/internet-drafts/ From nobody Thu Jan 22 07:01:28 2015 Return-Path: X-Original-To: hipsec@ietfa.amsl.com Delivered-To: hipsec@ietfa.amsl.com Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 1A3DE1A8AF4; Thu, 22 Jan 2015 07:01:23 -0800 (PST) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -1.9 X-Spam-Level: X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9] autolearn=ham Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id AeVeBb2N83uX; Thu, 22 Jan 2015 07:01:21 -0800 (PST) Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id D8BBA1A1A9D; Thu, 22 Jan 2015 07:01:21 -0800 (PST) MIME-Version: 1.0 Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: 7bit From: internet-drafts@ietf.org To: i-d-announce@ietf.org X-Test-IDTracker: no X-IETF-IDTracker: 5.10.0.p8 Auto-Submitted: auto-generated Precedence: bulk Message-ID: <20150122150121.16547.79861.idtracker@ietfa.amsl.com> Date: Thu, 22 Jan 2015 07:01:21 -0800 Archived-At: Cc: hipsec@ietf.org Subject: [Hipsec] I-D Action: draft-ietf-hip-native-nat-traversal-08.txt X-BeenThere: hipsec@ietf.org X-Mailman-Version: 2.1.15 List-Id: "This is the official IETF Mailing List for the HIP Working Group." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 22 Jan 2015 15:01:23 -0000 A New Internet-Draft is available from the on-line Internet-Drafts directories. This draft is a work item of the Host Identity Protocol Working Group of the IETF. Title : Native NAT Traversal Mode for the Host Identity Protocol Authors : Ari Keranen Jan Melen Filename : draft-ietf-hip-native-nat-traversal-08.txt Pages : 13 Date : 2015-01-22 Abstract: This document specifies a new Network Address Translator (NAT) traversal mode for the Host Identity Protocol (HIP). The new mode is based on the Interactive Connectivity Establishment (ICE) methodology and UDP encapsulation of data and signaling traffic. The main difference from the previously specified modes is the use of HIP messages for all NAT traversal procedures. The IETF datatracker status page for this draft is: https://datatracker.ietf.org/doc/draft-ietf-hip-native-nat-traversal/ There's also a htmlized version available at: http://tools.ietf.org/html/draft-ietf-hip-native-nat-traversal-08 A diff from the previous version is available at: http://www.ietf.org/rfcdiff?url2=draft-ietf-hip-native-nat-traversal-08 Please note that it may take a couple of minutes from the time of submission until the htmlized version and diff are available at tools.ietf.org. Internet-Drafts are also available by anonymous FTP at: ftp://ftp.ietf.org/internet-drafts/ From nobody Thu Jan 22 07:06:32 2015 Return-Path: X-Original-To: hipsec@ietfa.amsl.com Delivered-To: hipsec@ietfa.amsl.com Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 675111ACD02 for ; Thu, 22 Jan 2015 07:06:24 -0800 (PST) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -3.901 X-Spam-Level: X-Spam-Status: No, score=-3.901 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, MIME_8BIT_HEADER=0.3, RCVD_IN_DNSWL_MED=-2.3, SPF_PASS=-0.001] autolearn=ham Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id CTJvUiUvSRos for ; Thu, 22 Jan 2015 07:06:22 -0800 (PST) Received: from sesbmg22.ericsson.net (sesbmg22.ericsson.net [193.180.251.48]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 2D6521ACCF2 for ; Thu, 22 Jan 2015 07:06:17 -0800 (PST) X-AuditID: c1b4fb30-f79106d000001184-45-54c111e8cf03 Received: from ESESSHC006.ericsson.se (Unknown_Domain [153.88.253.124]) by sesbmg22.ericsson.net (Symantec Mail Security) with SMTP id DE.55.04484.8E111C45; Thu, 22 Jan 2015 16:06:16 +0100 (CET) Received: from mail.lmf.ericsson.se (153.88.183.153) by smtp.internal.ericsson.com (153.88.183.38) with Microsoft SMTP Server id 14.3.195.1; Thu, 22 Jan 2015 16:06:15 +0100 Received: from nomadiclab.lmf.ericsson.se (nomadiclab.lmf.ericsson.se [131.160.33.3]) by mail.lmf.ericsson.se (Postfix) with ESMTP id D04D31102B2 for ; Thu, 22 Jan 2015 17:06:15 +0200 (EET) Received: from nomadiclab.lmf.ericsson.se (localhost [127.0.0.1]) by nomadiclab.lmf.ericsson.se (Postfix) with ESMTP id 2EE1A4E987 for ; Thu, 22 Jan 2015 17:08:12 +0200 (EET) Received: from m46.nomadiclab.com (localhost [127.0.0.1]) by nomadiclab.lmf.ericsson.se (Postfix) with ESMTP id D0C0A4E8CC for ; Thu, 22 Jan 2015 17:08:11 +0200 (EET) Message-ID: <54C111E6.5070201@ericsson.com> Date: Thu, 22 Jan 2015 17:06:14 +0200 From: =?windows-1252?Q?Ari_Ker=E4nen?= User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.9; rv:31.0) Gecko/20100101 Thunderbird/31.2.0 MIME-Version: 1.0 To: References: <20150122150121.16547.79861.idtracker@ietfa.amsl.com> In-Reply-To: <20150122150121.16547.79861.idtracker@ietfa.amsl.com> Content-Type: text/plain; charset="windows-1252"; format=flowed Content-Transfer-Encoding: 7bit X-Virus-Scanned: ClamAV using ClamSMTP X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFtrPLMWRmVeSWpSXmKPExsUyM+Jvje4LwYMhBs27hC2mLprM7MDosWTJ T6YAxigum5TUnMyy1CJ9uwSujCt3fjAXLOSv2LRQvYHxPXcXIyeHhICJxO5PR9khbDGJC/fW s3UxcnEICRxhlNjeP5cRwtnAKLHuTAs7hHOJUeLjhjdQmcOMErv/XGSGcHYzSnzetpQVZBiv gLbElO0dQFUcHCwCqhJffkmAhNkEHCVuP3wJViIqkCzR9fIhE0S5oMTJmU9YQGwRAVGJKR9O M4PYwgI+Eke7N4DdJwTU27RxElg9p4CTxLfeo6wg45kF7CUebC0DCTMLyEtsfzuHGeIdNYmr 5zYxQ7SqSlz994pxAqPILCTbZiF0z0LSvYCReRWjaHFqcVJuupGRXmpRZnJxcX6eXl5qySZG YIgf3PLbYAfjy+eOhxgFOBiVeHg/zD8QIsSaWFZcmXuIUZqDRUmcN89hQ4iQQHpiSWp2ampB alF8UWlOavEhRiYOTqkGxgUL53NelZ27Zvo70eavvzvW5LK3Sd2NOPX0lATbK71W3l2Rx+Kn fLiyz/HWXoOGH0cnGmc+sv+5Nf1EtPCn2NXeXAISCpPET+sp+R4OOPBZ70/2Ft6MY7m90y76 8/1MrT0nmWSkVBRc9dKF71yvcqvBH2k1h5M/nTz6DD4fCXNv/jN7ZxDrVyWW4oxEQy3mouJE ABUyek1SAgAA Archived-At: Subject: Re: [Hipsec] I-D Action: draft-ietf-hip-native-nat-traversal-08.txt X-BeenThere: hipsec@ietf.org X-Mailman-Version: 2.1.15 Precedence: list List-Id: "This is the official IETF Mailing List for the HIP Working Group." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 22 Jan 2015 15:06:24 -0000 Hi all, This version aligns the native NAT traversal draft with the updated registration draft (uses the authentication defined there). Also there are couple of editorial fixes. Cheers, Ari On 22/01/15 17:01, internet-drafts@ietf.org wrote: > > A New Internet-Draft is available from the on-line Internet-Drafts directories. > This draft is a work item of the Host Identity Protocol Working Group of the IETF. > > Title : Native NAT Traversal Mode for the Host Identity Protocol > Authors : Ari Keranen > Jan Melen > Filename : draft-ietf-hip-native-nat-traversal-08.txt > Pages : 13 > Date : 2015-01-22 > > Abstract: > This document specifies a new Network Address Translator (NAT) > traversal mode for the Host Identity Protocol (HIP). The new mode is > based on the Interactive Connectivity Establishment (ICE) methodology > and UDP encapsulation of data and signaling traffic. The main > difference from the previously specified modes is the use of HIP > messages for all NAT traversal procedures. > > > The IETF datatracker status page for this draft is: > https://datatracker.ietf.org/doc/draft-ietf-hip-native-nat-traversal/ > > There's also a htmlized version available at: > http://tools.ietf.org/html/draft-ietf-hip-native-nat-traversal-08 > > A diff from the previous version is available at: > http://www.ietf.org/rfcdiff?url2=draft-ietf-hip-native-nat-traversal-08 > > > Please note that it may take a couple of minutes from the time of submission > until the htmlized version and diff are available at tools.ietf.org. > > Internet-Drafts are also available by anonymous FTP at: > ftp://ftp.ietf.org/internet-drafts/ > > _______________________________________________ > Hipsec mailing list > Hipsec@ietf.org > https://www.ietf.org/mailman/listinfo/hipsec > From nobody Wed Jan 28 07:55:11 2015 Return-Path: X-Original-To: hipsec@ietfa.amsl.com Delivered-To: hipsec@ietfa.amsl.com Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4D19E1A876B for ; Wed, 28 Jan 2015 07:55:09 -0800 (PST) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -0.012 X-Spam-Level: X-Spam-Status: No, score=-0.012 tagged_above=-999 required=5 tests=[BAYES_40=-0.001, SPF_PASS=-0.001, T_RP_MATCHES_RCVD=-0.01] autolearn=ham Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 94a1hb658uPA for ; Wed, 28 Jan 2015 07:55:06 -0800 (PST) Received: from z9m9z.htt-consult.com (z9m9z.htt-consult.com [IPv6:2607:f4b8:3:3:67:15ff:fe00:180]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A790C1A876A for ; Wed, 28 Jan 2015 07:55:06 -0800 (PST) Received: from localhost (localhost [127.0.0.1]) by z9m9z.htt-consult.com (Postfix) with ESMTP id 9B68662070 for ; Wed, 28 Jan 2015 10:55:03 -0500 (EST) X-Virus-Scanned: amavisd-new at htt-consult.com Received: from z9m9z.htt-consult.com ([127.0.0.1]) by localhost (z9m9z.htt-consult.com [127.0.0.1]) (amavisd-new, port 10024) with LMTP id Hpy1h9Z02Lpj for ; Wed, 28 Jan 2015 10:54:51 -0500 (EST) Received: from lx120e.htt-consult.com (157.67.83.208.client.htt-consult.com [208.83.67.157]) (using TLSv1.2 with cipher DHE-RSA-AES128-SHA (128/128 bits)) (No client certificate requested) by z9m9z.htt-consult.com (Postfix) with ESMTPSA id 3E78262063 for ; Wed, 28 Jan 2015 10:54:51 -0500 (EST) Message-ID: <54C90649.9040203@htt-consult.com> Date: Wed, 28 Jan 2015 10:54:49 -0500 From: Robert Moskowitz User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:31.0) Gecko/20100101 Thunderbird/31.4.0 MIME-Version: 1.0 To: hipsec@ietf.org References: <50226886.8000106@htt-consult.com> <5022B162.7080306@gmail.com> In-Reply-To: <5022B162.7080306@gmail.com> Content-Type: text/plain; charset=windows-1252; format=flowed Content-Transfer-Encoding: 7bit Archived-At: Subject: Re: [Hipsec] AUTH48 [LB]: 5201-bis - Re: Reference problem in 5201-bis wrt SECP160R1 X-BeenThere: hipsec@ietf.org X-Mailman-Version: 2.1.15 Precedence: list List-Id: "This is the official IETF Mailing List for the HIP Working Group." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 28 Jan 2015 15:55:09 -0000 We have a dangling reference in 5201-bis. It seems that the old reference for secp160r1 is no longer available. I cannot find anything in my searching. Can anyone point to a reference for it? thanks On 08/08/2012 02:35 PM, Rene Struik wrote: > Hi Bob: > > You are correct that SECG removed the prime curve secp160r1 from the > SEC1 specification, when moving from v1.0 to v2.0. However, you can > still access this under the "superseded specifications" tab: the weblink > should be http://www.secg.org/download/aid-386/sec2_final.pdf. > > You may also find this curve specified elsewhere, e.g., (if memory > serves me well) with some copy protection schemes, such as DTCP. > > I hope this helps. > > Best regards, > > Rene > > On 08/08/2012 9:24 AM, Robert Moskowitz wrote: >> For low security we have SECP160R1 from: >> >> [SECG] SECG, "Recommended Elliptic Curve Domain >> Parameters", SEC 2 , 2000, >> . >> >> I went there yesterday to look up some of the information on actual >> sizes and got to: >> >> http://www.secg.org/download/aid-784/sec2-v2.pdf, published Jan 27, 2010. >> >> And no SECP160R1, the smallest keysize now is SECP192R1 (sec 2.2.2). >> >> So we have a reference problem here as well as giving a developer the >> parameter values needed to implement SECP160R1. >> >> Corrective action options: >> >> 1) Directly supply the parameters for SECP160R1 in Appendix D and >> reference the version of secg they were pulled from. >> >> 2) Find a more stable source for SECP160R1 to reference. >> >> 3) Move to SECP192R1 (which I am leary of as ver 3.0 of secg could >> drop that!). >> >> I vote for 1) and ask whoever has the older version of secg to forward >> the parameters for inclusion. >> >> BTW, HIP DEX works a bit differently in that the keys generated from >> the ECDH exchange are only used in protecting HIP packets and a >> wrapped key exchange within HIP provides the keying material for >> session keys (eg ESP or 802.15.4 security). So in DEX, using >> SECP160R1 may not be as much of a risk as in BEX, so I DO plan on >> providing the SECP160R1 parameters in DEX. >> >> >> _______________________________________________ >> Hipsec mailing list >> Hipsec@ietf.org >> https://www.ietf.org/mailman/listinfo/hipsec > From nobody Wed Jan 28 10:35:29 2015 Return-Path: X-Original-To: hipsec@ietfa.amsl.com Delivered-To: hipsec@ietfa.amsl.com Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8857B1A1B27 for ; Wed, 28 Jan 2015 10:35:27 -0800 (PST) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -4.21 X-Spam-Level: X-Spam-Status: No, score=-4.21 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3, T_RP_MATCHES_RCVD=-0.01] autolearn=ham Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id dEkIuDg4N8lb for ; Wed, 28 Jan 2015 10:35:19 -0800 (PST) Received: from mail.cs.hut.fi (mail.cs.hut.fi [130.233.192.7]) by ietfa.amsl.com (Postfix) with ESMTP id 9BDB21A1B15 for ; Wed, 28 Jan 2015 10:35:19 -0800 (PST) Received: from [127.0.0.1] (mannerheim.cs.hut.fi [130.233.193.8]) by mail.cs.hut.fi (Postfix) with ESMTP id 81DFA308946 for ; Wed, 28 Jan 2015 20:35:17 +0200 (EET) Message-ID: <54C92BE4.3070407@cs.hut.fi> Date: Wed, 28 Jan 2015 20:35:16 +0200 From: Miika Komu User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:31.0) Gecko/20100101 Thunderbird/31.4.0 MIME-Version: 1.0 To: hipsec@ietf.org References: <50226886.8000106@htt-consult.com> <5022B162.7080306@gmail.com> <54C90649.9040203@htt-consult.com> In-Reply-To: <54C90649.9040203@htt-consult.com> Content-Type: text/plain; charset=windows-1252; format=flowed Content-Transfer-Encoding: 7bit Archived-At: Subject: Re: [Hipsec] AUTH48 [LB]: 5201-bis - Re: Reference problem in 5201-bis wrt SECP160R1 X-BeenThere: hipsec@ietf.org X-Mailman-Version: 2.1.15 Precedence: list List-Id: "This is the official IETF Mailing List for the HIP Working Group." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 28 Jan 2015 18:35:27 -0000 Hi, you mean this? http://perso.univ-rennes1.fr/sylvain.duquesne/master/standards/sec2_final.pdf On 01/28/2015 05:54 PM, Robert Moskowitz wrote: > We have a dangling reference in 5201-bis. > > It seems that the old reference for secp160r1 is no longer available. I > cannot find anything in my searching. > > Can anyone point to a reference for it? > > thanks > > > On 08/08/2012 02:35 PM, Rene Struik wrote: >> Hi Bob: >> >> You are correct that SECG removed the prime curve secp160r1 from the >> SEC1 specification, when moving from v1.0 to v2.0. However, you can >> still access this under the "superseded specifications" tab: the weblink >> should be http://www.secg.org/download/aid-386/sec2_final.pdf. >> >> You may also find this curve specified elsewhere, e.g., (if memory >> serves me well) with some copy protection schemes, such as DTCP. >> >> I hope this helps. >> >> Best regards, >> >> Rene >> >> On 08/08/2012 9:24 AM, Robert Moskowitz wrote: >>> For low security we have SECP160R1 from: >>> >>> [SECG] SECG, "Recommended Elliptic Curve Domain >>> Parameters", SEC 2 , 2000, >>> . >>> >>> I went there yesterday to look up some of the information on actual >>> sizes and got to: >>> >>> http://www.secg.org/download/aid-784/sec2-v2.pdf, published Jan 27, >>> 2010. >>> >>> And no SECP160R1, the smallest keysize now is SECP192R1 (sec 2.2.2). >>> >>> So we have a reference problem here as well as giving a developer the >>> parameter values needed to implement SECP160R1. >>> >>> Corrective action options: >>> >>> 1) Directly supply the parameters for SECP160R1 in Appendix D and >>> reference the version of secg they were pulled from. >>> >>> 2) Find a more stable source for SECP160R1 to reference. >>> >>> 3) Move to SECP192R1 (which I am leary of as ver 3.0 of secg could >>> drop that!). >>> >>> I vote for 1) and ask whoever has the older version of secg to forward >>> the parameters for inclusion. >>> >>> BTW, HIP DEX works a bit differently in that the keys generated from >>> the ECDH exchange are only used in protecting HIP packets and a >>> wrapped key exchange within HIP provides the keying material for >>> session keys (eg ESP or 802.15.4 security). So in DEX, using >>> SECP160R1 may not be as much of a risk as in BEX, so I DO plan on >>> providing the SECP160R1 parameters in DEX. >>> >>> >>> _______________________________________________ >>> Hipsec mailing list >>> Hipsec@ietf.org >>> https://www.ietf.org/mailman/listinfo/hipsec >> > > _______________________________________________ > Hipsec mailing list > Hipsec@ietf.org > https://www.ietf.org/mailman/listinfo/hipsec > From nobody Wed Jan 28 11:16:54 2015 Return-Path: X-Original-To: hipsec@ietfa.amsl.com Delivered-To: hipsec@ietfa.amsl.com Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2E2DE1A00CD for ; Wed, 28 Jan 2015 11:16:52 -0800 (PST) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -1.911 X-Spam-Level: X-Spam-Status: No, score=-1.911 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, SPF_PASS=-0.001, T_RP_MATCHES_RCVD=-0.01] autolearn=ham Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id QQ0i7n-fLcNg for ; Wed, 28 Jan 2015 11:16:49 -0800 (PST) Received: from z9m9z.htt-consult.com (z9m9z.htt-consult.com [IPv6:2607:f4b8:3:3:67:15ff:fe00:180]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 533F01A005B for ; Wed, 28 Jan 2015 11:16:49 -0800 (PST) Received: from localhost (localhost [127.0.0.1]) by z9m9z.htt-consult.com (Postfix) with ESMTP id 09F1860757; Wed, 28 Jan 2015 14:16:45 -0500 (EST) X-Virus-Scanned: amavisd-new at htt-consult.com Received: from z9m9z.htt-consult.com ([127.0.0.1]) by localhost (z9m9z.htt-consult.com [127.0.0.1]) (amavisd-new, port 10024) with LMTP id SpPd8gGLYHs1; Wed, 28 Jan 2015 14:16:30 -0500 (EST) Received: from lx120e.htt-consult.com (157.67.83.208.client.htt-consult.com [208.83.67.157]) (using TLSv1.2 with cipher DHE-RSA-AES128-SHA (128/128 bits)) (No client certificate requested) by z9m9z.htt-consult.com (Postfix) with ESMTPSA id 68F845FA1B; Wed, 28 Jan 2015 14:16:27 -0500 (EST) Message-ID: <54C93588.4060505@htt-consult.com> Date: Wed, 28 Jan 2015 14:16:24 -0500 From: Robert Moskowitz User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:31.0) Gecko/20100101 Thunderbird/31.4.0 MIME-Version: 1.0 To: Miika Komu , hipsec@ietf.org References: <50226886.8000106@htt-consult.com> <5022B162.7080306@gmail.com> <54C90649.9040203@htt-consult.com> <54C92BE4.3070407@cs.hut.fi> In-Reply-To: <54C92BE4.3070407@cs.hut.fi> Content-Type: text/plain; charset=windows-1252; format=flowed Content-Transfer-Encoding: 7bit Archived-At: Subject: Re: [Hipsec] AUTH48 [LB]: 5201-bis - Re: Reference problem in 5201-bis wrt SECP160R1 X-BeenThere: hipsec@ietf.org X-Mailman-Version: 2.1.15 Precedence: list List-Id: "This is the official IETF Mailing List for the HIP Working Group." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 28 Jan 2015 19:16:52 -0000 WONDERFUL! thanks On 01/28/2015 01:35 PM, Miika Komu wrote: > Hi, > > you mean this? > > http://perso.univ-rennes1.fr/sylvain.duquesne/master/standards/sec2_final.pdf > > > On 01/28/2015 05:54 PM, Robert Moskowitz wrote: >> We have a dangling reference in 5201-bis. >> >> It seems that the old reference for secp160r1 is no longer available. I >> cannot find anything in my searching. >> >> Can anyone point to a reference for it? >> >> thanks >> >> >> On 08/08/2012 02:35 PM, Rene Struik wrote: >>> Hi Bob: >>> >>> You are correct that SECG removed the prime curve secp160r1 from the >>> SEC1 specification, when moving from v1.0 to v2.0. However, you can >>> still access this under the "superseded specifications" tab: the >>> weblink >>> should be http://www.secg.org/download/aid-386/sec2_final.pdf. >>> >>> You may also find this curve specified elsewhere, e.g., (if memory >>> serves me well) with some copy protection schemes, such as DTCP. >>> >>> I hope this helps. >>> >>> Best regards, >>> >>> Rene >>> >>> On 08/08/2012 9:24 AM, Robert Moskowitz wrote: >>>> For low security we have SECP160R1 from: >>>> >>>> [SECG] SECG, "Recommended Elliptic Curve >>>> Domain >>>> Parameters", SEC 2 , 2000, >>>> . >>>> >>>> I went there yesterday to look up some of the information on actual >>>> sizes and got to: >>>> >>>> http://www.secg.org/download/aid-784/sec2-v2.pdf, published Jan 27, >>>> 2010. >>>> >>>> And no SECP160R1, the smallest keysize now is SECP192R1 (sec 2.2.2). >>>> >>>> So we have a reference problem here as well as giving a developer the >>>> parameter values needed to implement SECP160R1. >>>> >>>> Corrective action options: >>>> >>>> 1) Directly supply the parameters for SECP160R1 in Appendix D and >>>> reference the version of secg they were pulled from. >>>> >>>> 2) Find a more stable source for SECP160R1 to reference. >>>> >>>> 3) Move to SECP192R1 (which I am leary of as ver 3.0 of secg could >>>> drop that!). >>>> >>>> I vote for 1) and ask whoever has the older version of secg to forward >>>> the parameters for inclusion. >>>> >>>> BTW, HIP DEX works a bit differently in that the keys generated from >>>> the ECDH exchange are only used in protecting HIP packets and a >>>> wrapped key exchange within HIP provides the keying material for >>>> session keys (eg ESP or 802.15.4 security). So in DEX, using >>>> SECP160R1 may not be as much of a risk as in BEX, so I DO plan on >>>> providing the SECP160R1 parameters in DEX. >>>> >>>> >>>> _______________________________________________ >>>> Hipsec mailing list >>>> Hipsec@ietf.org >>>> https://www.ietf.org/mailman/listinfo/hipsec >>> >> >> _______________________________________________ >> Hipsec mailing list >> Hipsec@ietf.org >> https://www.ietf.org/mailman/listinfo/hipsec >> > > _______________________________________________ > Hipsec mailing list > Hipsec@ietf.org > https://www.ietf.org/mailman/listinfo/hipsec > >