IS-IS WG IS-IS Cryptographic Authentication Requirements

Slides:

Advertisements

Similar presentations

IPsec: Internet Protocol Security Chong, Luon, Prins, Trotter.

Advertisements

Session 5 Hash functions and digital signatures. Contents Hash functions – Definition – Requirements – Construction – Security – Applications 2/44.

Cryptography and Network Security (CS435) Part Ten (Hash and MAC algorithms)

By Rod Lykins.  Background  Benefits  Security Advantages ◦ Address Space ◦ IPSec  Remaining Security Issues  Conclusion.

Cryptography and Network Security Chapter 12 Fourth Edition by William Stallings Lecture slides by Lawrie Brown.

CS470, A.SelcukHash Functions1 Cryptographic Hash Functions CS 470 Introduction to Applied Cryptography Instructor: Ali Aydin Selcuk.

Cryptography and Network Security Chapter 11 Fourth Edition by William Stallings Lecture slides by Lawrie Brown/Mod. & S. Kondakci.

Lecture 2: Message Authentication Anish Arora CSE5473 Introduction to Network Security.

12/05/2007IETF70 PANA WG1 PANA Network Selection draft-ohba-pana-netsel-00.txt Yoshihiro Ohba.

Internet Research Task Force Crypto Forum Research Group IETF 89 March 3, 2014 London List: Chairs:

TLS 1.2 and NIST SP A Tim Polk November 10, 2006.

ISIS Auto-Configuration (draft-liu-isis-auto-conf-01) Bing Liu Bruno Decraene

Message Authentication Code July Message Authentication Problem  Message Authentication is concerned with:  protecting the integrity of a message.

Lecture 4.1: Hash Functions, and Message Authentication Codes CS 436/636/736 Spring 2015 Nitesh Saxena.

Optimizing BFD Authentication draft-mahesh-bfd-authentication-00 Mahesh Jethanandani, Ashesh Mishra Manav Bhatia, Ankur Saxena.

7/11/2006IETF-66 MSEC IPsec composite groups page 1 George Gross IdentAware ™ Multicast Security IETF-66, Montreal, Canada July.

A Quick Tour of Cryptographic Primitives Anupam Datta CMU Fall A: Foundations of Security and Privacy.

1 Virtual Router Redundancy Protocol (VRRP) San Francisco IETF VRRP Working Group March 2003 San Francisco IETF Mukesh Gupta / Nokia Chair.

OSPF WG Stronger, Automatic Integrity Checks for OSPF Packets Paul Jakma, University of Glasgow Manav Bhatia, Alcatel-Lucent IETF 79, Beijing.

RADEXT WG IETF 91 Rechartering. Why? Current charter doesn’t allow us to take on new work that is waiting in the queue Has an anachronistic Diameter entanglement.

OSPF WG – IETF 69 - Chicago OSPF WG Document Abhay Roy/Cisco Systems Acee Lindem/Redback Networks.

Emu wg, IETF 70 Steve Hanna, EAP-TTLS draft-funk-eap-ttls-v0-02.txt draft-hanna-eap-ttls-agility-00.txt emu wg, IETF 70 Steve Hanna,

Lecture 4.1: Hash Functions, and Message Authentication Codes CS 436/636/736 Spring 2014 Nitesh Saxena.

ANSI X9.44 and IETF TLS Russ Housley and Burt Kaliski RSA Laboratories November 2002.

OSPF WG Cryptographic Algorithm Implementation Requirements for OSPF draft-bhatia-manral-crypto-req-ospf-00.txt Vishwas Manral, IPInfusion Manav Bhatia,

Requirements and Selection Process for RADIUS Crypto-Agility December 5, 2007 David B. Nelson IETF 70 Vancouver, BC.

Hashes Lesson Introduction ●The birthday paradox and length of hash ●Secure hash function ●HMAC.

Slide 1 August 2005, Paris, FranceIETF DNSEXT 2929bis etc. Donald E. Eastlake 3 rd

OSPF WG Security Extensions for OSPFv2 when using Manual Keying Manav Bhatia, Alcatel-Lucent Sam Hartman, Huawei Dacheng Zhang, Huawei IETF 80, Prague.

RPSEC WG Issues with Routing Protocols security mechanisms Vishwas Manral, SiNett Russ White, Cisco Sue Hares, Next Hop IETF 63, Paris, France.

ISIS IETF 68 Chris Hopps, David Ward. Note Well Any submission to the IETF intended by the Contributor for publication as all or part of an IETF Internet-Draft.

HOTP IETF Draft David M’Raihi IETF Meeting - March 10, 2005.

Analysis of BFD Security According to KARP Design Guide draft-ietf-karp-bfd-analysis-01 draft-ietf-karp-bfd-analysis-01 Manav Bhatia Dacheng Zhang Mahesh.

Cryptography, Decryption, Security Algorithms ● Phoenix Linux User Group Hackfest

Chapter 12 – Hash Algorithms

Module 4: Configuring Site to Site VPN with Pre-shared keys

RSA Laboratories’ PKCS Series - a Tutorial

Analysis of secured VoIP services

RADEXT WG RADIUS Attributes for WLAN Draft-aboba-radext-wlan-00.txt

PANA Discussion and Open Issues (draft-ietf-pana-pana-01.txt)

TLS Security Profiles Rob Horn WG-14: Security.

J.W. Atwood PIM WG 2010/03/23 The KARP Working Group J.W. Atwood PIM WG 2010/03/23

RPSEC WG Issues with Routing Protocols security mechanisms

CSE 4905 IPsec II.

IPv6 Flow Label Specification

In-Band Authentication Extension for Protocol Independent Multicast (PIM) draft-bhatia-zhang-pim-auth-extension-00 Manav Bhatia

Pre-Shared Key EAP methods & EAP-PSK

Donald E. Eastlake 3rd TSIG SHA etc. Donald E. Eastlake 3rd March.

Challenge-Response New Authentication Scheme

SECMECH BOF EAP Methods

NET 311 Information Security

Cryptographic Hash Functions Part I

Signaling RSVP-TE P2MP LSPs in an Inter-domain Environment draft-ali-mpls-inter-domain-p2mp-rsvp-te-lsp-01.txt Zafar Ali, Cisco Systems.

Sheila Frankel Systems and Network Security Group, ITL

Multicast Service Models draft-acg-mboned-multicast-models-00

CSE 484 Midterm Review “1st half of the quarter in 5 slides”

Carles Gomez, S. M. Darroudi

Better security for maintainers

Invalid TLV Handling in IS-IS draft-ginsberg-lsr-isis-invalid-tlv-00

Lecture 4.1: Hash Functions, and Message Authentication Codes

Security Activities in IETF in support of Mobile IP

PW security measures PWE3 – 65th IETF 21 March 2005 Yaakov (J) Stein.

Hashing Hash are the auxiliary values that are used in cryptography.

PANA enabling IPsec based Access control

HMAC and its Design Objectives

Invalid TLV Handling in IS-IS draft-ginsberg-lsr-isis-invalid-tlv-02

Deprecating MD5 for LDP draft-nslag-mpls-deprecate-md5-04

IETF-104 (Prague) DHC WG Next steps

OSPF WG Supporting Authentication Trailer for OSPFv3

Diameter ABFAB Application

Presentation transcript:

IS-IS WG IS-IS Cryptographic Authentication Requirements draft-bhatia-manral-crypto-req-isis-01 Manav Bhatia, Alcatel-Lucent Vishwas Manral, IPInfusion IETF 68, Prague

IS-IS – Current Authentication Schemes Clear Text and MD5 Recent Reports of attacks on collision resistance properties of MD5 and SHA-1 Cryptographic stronger algorithms have been suggested in the WG (HMAC-SHA-1, etc)

New Algorithms Keep Coming .. In Cryptography new algorithms surface continuously and existing ones are continuously attacked .. Thus the choice of mandatory-to-implement algorithms should be conservative to minimize the likelihood of IS-IS being compromised. Would not want to change the IS-IS spec each time a cryptographically stronger algorithm is suggested. Eg., DES in the older IPsec RFC was a MUST but now has become a SHOULD NOT. Same goes with MD5 in the IPsec space.

Interoperability Issues Need a standard that tells which algorithms to support and which not for minimum interoperability. With time the number of algorithms to support will increase and we need a minimum set of algorithms as well as their current state of support documented The document would specify the MUST/ MAY/ SHOULD/ SHOULD NOT for algorithms that are to be supported This would be a running document that can be changed as and when newer algorithms come and the older ones get deprecated For IPsec the algorithms supported in RFC2401 and the ones in RFC4305 have changed. In fact some MUST have become SHOULD NOT etc.

Additional RFC 2119 terms SHOULD+ Same as SHOULD. However, it is likely that an algorithm marked as SHOULD+ will be promoted at some future time to be a MUST. MUST- Same as MUST for now. However, its expected that at some point in future this algorithm will no longer be a MUST MAY+ - Same as MAY for now. However, its expected that this algorithm may get promoted at some future time to be a SHOULD.

Auth Scheme Selection when Security is required! Old Old New Req Doc Requirement Authentication Scheme ------ -------- ------------------ -------------------------------- MUST ISO 10589/ SHOULD NOT Clear Text Password (1) RFC 1195 MUST RFC 3567 MUST- HMAC-MD5 -- -- SHOULD+ Cryptographic Auth (2) Used mostly to avoid accidental introduction of router in a domain. Not useful if security is required Bhatia, M., Manral, V. and White, R. " IS-IS HMAC Cryptographic Authentication”, Work in Progress, draft-ietf-isis-hmac-sha-01.txt

Authentication Algo Selection Old Old New Req RFC Requirement Authentication Algorithm ------ -------- ------------------ -------------------------------- MUST 3567 MUST- HMAC-MD5 - - SHOULD+ HMAC-SHA-1 (1) - - MAY+ HMAC-SHA-256/ HMAC-SHA-384/ HMAC-SHA-512 (1) Bhatia, M., Manral, V. and White, R. " IS-IS HMAC Cryptographic Authentication”, Work in Progress

Feedback?