Status Update for Algorithm Transition for the RPKI (draft-ietf-sidr-algorithm-agility) Steve Kent Roque Gagliano Sean Turner.

Slides:

Advertisements

Similar presentations

A Threat Model for BGPSEC

Advertisements

A Threat Model for BGPSEC Steve Kent BBN Technologies.

RPKI Standards Activity Geoff Huston APNIC February 2010.

Local TA Management A TA is a public key and associated data used as the starting point for certificate path validation It need not be a self-signed certificate.

RPKI Certificate Policy Status Update Stephen Kent.

1 ABCs of PKI TAG Presentation 18 th May 2004 Paul Butler.

© NLnet Labs, Licensed under a Creative Commons Attribution 3.0 Unported License.Creative Commons Attribution 3.0 Unported License DNSSEC ROLLING.

Cryptography and Network Security Third Edition by William Stallings Lecture slides by Lawrie Brown.

© 3GPP 2009 Mobile World Congress, Barcelona, 19 th February 2009© 3GPP GPP The Training Course / Module 10 1 All you always wanted to know about.

RPKI Certificate Policy Stephen Kent, Derrick Kong, Ronald Watro, Karen Seo July 21, 2010.

Extended Validation Models in PKI Alternatives and Implications Marc Branchaud John Linn

Resource Certificate Profile Geoff Huston, George Michaelson, Rob Loomans APNIC IETF 67.

Cryptography and Network Security Third Edition by William Stallings Lecture slides by Lawrie Brown.

Geneva, Switzerland, 2 June 2014 Introduction to public-key infrastructure (PKI) Erik Andersen, Q.11 Rapporteur, ITU-T Study Group 17 ITU Workshop.

Public Key Management and X.509 Certificates

Review of draft-ietf-sidr-arch-01.txt Steve Kent BBN Technologies.

Local TA Management In prior WG meetings I presented a model for local management of trust anchors for the RPKI In response to these presentations, a.

MPKI Interoperability I-D ChangeLog from -01 to -02 Jan 16, 2004 Masaki SHIMAOKA SECOM Trust.net.

Resource PKI: Certificate Policy & Certification Practice Statement Dr. Stephen Kent Chief Scientist - Information Security.

November 1, 2006Sarah Wahl / Graduate Student UCCS1 Public Key Infrastructure By Sarah Wahl.

Resource Certificate Profile SIDR WG Meeting IETF 66, July 2006 draft-ietf-sidr-res-certs-01 Geoff Huston Rob Loomans George Michaelson.

Wed 28 Jul 2010SIDR IETF 78 Maastricht, NL1 SIDR Working Group IETF 78 Maastricht, NL Wednesday, 28 Jul 2010.

Long-term Archive Service Requirements draft-ietf-ltans-reqs-00.txt.

Controller of Certifying Authorities PKI Technology - Role of CCA Assistant Controller (Technology) Controller of Certifying Authorities Ministry of Communications.

Digital Signature Technologies & Applications Ed Jensen Fall 2013.

Objectives of the Lecture :

APNIC eLearning: Intro to RPKI 10 December :30 PM AEST Brisbane (UTC+10)

SIP working group status Keith Drage, Dean Willis.

Introduction to Secure Messaging The Open Group Messaging Forum April 30, 2003.

Public Key Infrastructure (X509 PKI) Presented by : Ali Fanian.

National Institute of Advanced Industrial Science and Technology Brief status report of AIST GRID CA APGridPMA Singapore September 16 Yoshio.

Wed 31 Jul & Fri 2 Aug 2013SIDR IETF 87 Berlin, German1 SIDR Working Group IETF 87 Berlin, Germany Wednesday, 31 Jul 2013 Friday, 2 Aug 2013.

CDB Chris Bonatti (IECA, Inc.) Tel: (+1) Proposed PKI4IPSEC Certificate Management Requirements Document IETF #59 – PKI4IPSEC Working.

A Brief Overview of draft-ietf-sidr-cp-01.txt draft-ietf-sidr-cps-rirs-01.txt draft-ietf-sidr-cps-isp-00.txt Steve Kent BBN Technologies.

Public Key Infrastructure (X509 PKI) Presented by : Ali Fanian

1. 2 Overview In Exchange security is managed by assigning permissions in Active Directory Exchange objects are secured with DACL and ACEs Permissions.

BGPSEC Router Key Roll-over draft-rogaglia-sidr-bgpsec-rollover-00 Roque Gagliano Keyur Patel Brian Weis.

© 2003 The MITRE Corporation. All rights reserved For Internal MITRE Use Addressing ISO-RTO e-MARC Concerns: Clarifications and Ramifications Response.

Updates to the RPKI Certificate Policy I-D Steve Kent BBN Technologies.

WG Document Status 192nd IETF TEAS Working Group.

Electronic signature Validity Model 1. Shell model Certificate 1 Certificate 2 Certificate 3 Signed document Generate valid signature validCheck invalidCheck.

BGPSEC router key rollover as an alternative to beaconing Roque Gagliano Keyur Patel Brian Weis draft-ietf-sidr-bgpsec-rollover-01.

Researcher training for ACAP © Created by Isaac P. E. Mailleue Research Integrity Coordinator University of North Carolina at Greensboro September 2013.

Manifests (and Destiny?) Stephen Kent BBN Technologies.

Draft-huston-sidr-rfc6490-bis Geoff Huston Slide 1/6.

The original Internationalized Domain Name (IDN) WG set the requirements for international characters in domain names in RFC 3454, RFC3490, RFC3491 and.

Status Report SIDR and Origination Validation Geoff Huston SIDR WG, IETF 71 March 2008.

LTANS-NOTAREQS-02 Larry Masinter “Requirements for Data Validation and Certification Services” Adobe Systems 8/1/2005.

Wed 24 Mar 2010SIDR IETF 77 Anaheim, CA1 SIDR Working Group IETF 77 Anaheim, CA Wednesday, Mar 24, 2010.

Wed 31 Jul & Fri 2 Aug 2013SIDR IETF 87 Berlin, German1 SIDR Working Group IETF 87 Berlin, Germany Wednesday, 31 Jul 2013 Friday, 2 Aug 2013.

HITPC Meaningful Use Stage 3 RFC Comments July 22, 2013 Information Exchange Workgroup Micky Tripathi.

Comments on draft-ietf-pkix-rfc3280bis-01.txt IETF PKIX Meeting Paris - August 2005 Denis Pinkas

1 Public Key Infrastructure Dr. Rocky K. C. Chang 25 February, 2002.

RPKI Certificate Policy Status Update Stephen Kent.

Emergency Context Resolution with Internet Technologies (ecrit) Hannes Tschofenig, Marc Linsner IETF 65.

EGI-InSPIRE RI EGI (IGTF Liaison Function) EGI-InSPIRE RI IGTF EUGridPMA status update SHA-2, OCSP, and more David.

Resource Certificate Provisioning Protocol Geoff Huston IETF 70 December 2007.

18 th EUGridPMA, Dublin / SRCE CA Self Audit SRCE CA Self Audit Emir Imamagić SRCE Croatia.

News from EUGridPMA EGI OMB, 22 Jan 2013 David Kelsey (STFC) Using notes from David Groep 22/01/20131EUGridPMA News.

Mon 23 Mar 2015SIDR IETF 92 Dallas, TX, US1 SIDR Working Group IETF 92 Dallas, TX, US Monday, 23 Mar 2015.

Key Rollover for the RPKI Steve Kent (Channeling Geoff Huston )

TAG Presentation 18th May 2004 Paul Butler

Cryptography and Network Security

TAG Presentation 18th May 2004 Paul Butler

IETF 84 Vancouver, BC, CA Wednesday, 1 Aug 2012

Resource Certificate Profile

Resource Certificate Profile SIDR WG Meeting IETF 66, July 2006

Web-based Imaging Management System Working Group - WIMS

draft-ietf-dtn-bpsec-06

OCSP Requirements GGF13.

Presentation transcript:

Status Update for Algorithm Transition for the RPKI (draft-ietf-sidr-algorithm-agility) Steve Kent Roque Gagliano Sean Turner

Algorithm Transition Document SIDR agreed to adopt this as a WG item, and a new version appeared in late February Target is a standards track RFC from SIDR The document describes – What CAs have to do to effect algorithm transition – What RPs can expect during algorithm transition – How transition interacts with repository structure – How algorithm transition and key rollover interact 2

Changes from the Individual Submission Adopted top-down transition model The document now describes – Multi-algorithm support in the provisioning protocol – Dealing with multiple instances of signed products – Use of independent publication points – Key rollover is independent per algorithm suite – Parallel certificates MUST be revoked together Added Security Considerations & Acknowledgements sections 3

Terminology Algorithm A - the current signature and hash algorithm suite Algorithm B - the next signature and hash algorithm suite 4

CA & RP Transition Phases 5 Algorithm Document & CP update CA B Ready CA B Go A Twilight A EOL RP B Ready Phase 0Phase 1Phase 2Phase 3Phase 0Phase 4

Algorithm Transition Milestones (1/2) Steady state (using algorithm A) Update algorithm specification and CP CA Algorithm B Ready – all CAs are ready to process a certificate request for a certificate containing an Algorithm B key, signed under Algorithm B CA Algorithm B Go – all CAs reissue all signed products under Algorithm B (and continue issuing under Algorithm A) 6

Algorithm Transition Milestones (2/2) RP Ready Algorithm B – all RPs are ready to process signed products using Algorithm B Twilight Algorithm A – CAs MAY stop issuing signed products using Algorithm A, and RPs MAY cease validating signed products under Algorithm A EOL Algorithm A – CAs no longer issue signed products using Algorithm A, and RPs reject any signed product under Algorithm A 7

A A B B A A B B CA X CA Y A A CA Z B B If each CA issues certificates that use the same algorithm for certificate signing and for the key in the certificate, then directory growth is at most 2X. Top-down Transition Model CA X’s parent has to issue an Algorithm B certificate to CA X before that CA can issue an Algorithm B certificate to CA Y

Repository Management The transition process requires CAs to publish signed products under both algorithms During “CA Algorithm B Ready” there may be only a few products (CA certificates) under Algorithm B, so the duplication is not complete By “CA Algorithm B Go” a full, duplicate product set exists, 2X repository size Using separate publication points makes life simpler 9

Relying Parties This design provides RPs with signed products under the current and new algorithms for a while, because we assume that it will take a while for ALL RPs to be able to make the transition This imposes a burden on CAs to maintain parallel signed product sets from “CA Algorithm B Go” until “Algorithm A Twilight” If an RP fetches both product sets, and either set is OK, then that’s good enough! 10

Observations This is still a new document, and thus needs review and comments from the WG It is only a 25 page document, but the process is complex, so it calls for careful reading We have had almost no comments from the broad WG population so far Please read and provide feedback! 11