AES-CCM Cipher Suites Daniel Bailey Matthew Campagna David McGrew

Slides:

Advertisements

Similar presentations

Crash course on SSL/TLS Ran Canetti December 2009 ( Based on slided by Jörg Schwenk)

Advertisements

Web security: SSL and TLS

©2011 ZigBee Alliance. All rights reserved. 1 The ZigBee IP Stack IPv6-based stack for networks Robert Cragie Pacific Gas and Electric Company.

Proposal for WAP-IETF co- operation on a wireless friendly TLS Tim Wright, Vodafone and chair WAP Security Group

Version 1 of EAP-TTLS draft-ietf-pppext-eap-ttls-05.txt Paul Funk Funk Software.

17.1 Copyright © The McGraw-Hill Companies, Inc. Permission required for reproduction or display. Chapter 17 Security at the Transport Layer: SSL and TLS.

Transport Layer Security (TLS) Bill Burr November 2, 2001.

Socket Layer Security. In this Presentation: need for web security SSL/TLS transport layer security protocols HTTPS secure shell (SSH)

An Introduction to Secure Sockets Layer (SSL). Overview Types of encryption SSL History Design Goals Protocol Problems Competing Technologies.

Real-world cryptography – SSL/TLS Joshua Davies Director of Architecture – 2Xoffice Author of “Implementing SSL/TLS Using Cryptography and PKI”

ITA, , 8-TLS.pptx 1 Internet Security 1 (IntSi1) Prof. Dr. Andreas Steffen Institute for Internet Technologies and Applications (ITA) 8 Transport.

© 2004, The Technology Firm SSL Packet Decodes From Wikipedia, the free encyclopedia.  Secure Sockets Layer (SSL) is a cryptographic.

1 Performance Investigations Hannes Tschofenig, Manuel Pégourié-Gonnard 25 th March 2015.

Cryptography and Network Security (CS435) Part Ten (Hash and MAC algorithms)

Cryptography and Network Security Chapter 12 Fourth Edition by William Stallings Lecture slides by Lawrie Brown.

Seguridad en Sistemas de Información Francisco Rodríguez Henríquez SSL/TLS: An Introduction.

Doc.: IEEE /0946r3 Submission August 2012 A proposal for next generation security in built on changes in ac 23 August 2012 Slide.

ATS SSL Updates ATS Summit Spring 2015 Susan Hinrichs.

SSL and https for Secure Web Communication CSCI 5857: Encoding and Encryption.

Secure Socket Layer (SSL)

Private Key Algorithms RSA SSL

Doc: Submission September 2003 Dorothy Stanley (Agere Systems) IETF Liaison Report September 2003 Dorothy Stanley – Agere Systems IEEE.

1 September, 2002 doc:.: /386r0 Daniel V. Bailey, William Whyte, Ari Singer, NTRU 1 Project: IEEE P Working Group for Wireless Personal.

© 2015 Cisco System Inc. All rights reserved Cisco Confidential 1 © 2015 Cisco System Inc. All rights reserved. 1 Next Generation Security Support in Unity.

RADIUS Crypto-Agility Requirements November 18, 2008 David B. Nelson IETF 73 Minneapolis.

1 July, 2002 doc:.: /275r0 Daniel V. Bailey, Ari Singer, NTRU 1 Project: IEEE P Working Group for Wireless Personal Area Networks (WPANs)

EAP-FAST Version 2 draft-zhou-emu-eap-fastv2-00.txt Hao Zhou Nancy Cam-Winget Joseph Salowey Stephen Hanna March 2011.

David Adrian, Karthikeyan Bhargavan, etc. Presented by Eunyoung Cho.

1 /10 Pascal URIEN, IETF 72 rd, Monday July 28 th Dublin, Ireland draft-urien-tls-keygen-00.txt TLS Key Generation

Moving HIP to Standards Track Robert Moskowitz ICSAlabs an Independent Div of Verizon Business Systems March 25, 2010

Doc.: IEEE e Submission Project: IEEE P Working Group for Wireless Personal Area Networks (WPANs) Submission Title: [Security.

IEEE MEDIA INDEPENDENT HANDOVER DCN: xx-ECDSA Title: Discussion on introducing ECDSA to d for group management Date Submitted: July.

Emu wg, IETF 70 Steve Hanna, EAP-TTLS draft-funk-eap-ttls-v0-02.txt draft-hanna-eap-ttls-agility-00.txt emu wg, IETF 70 Steve Hanna,

A Cross-Protocol Attack on the TLSProtocol Nikos Mavrogiannopoulos, Frederik Vercauteren, VesselinVelichkov, Bart Preneel. Presented by: Nitin Subramanian.

ANSI X9.44 and IETF TLS Russ Housley and Burt Kaliski RSA Laboratories November 2002.

Session Traversal Utilities for NAT (STUN) IETF-92 Dallas, March 26, 2015 draft-ietf-tram-stunbis Marc Petit-Huguenin, Gonzalo Salgueiro.

Design Guidelines Thursday July 26, 2007 Bernard Aboba IETF 69 Chicago, IL.

Requirements and Selection Process for RADIUS Crypto-Agility December 5, 2007 David B. Nelson IETF 70 Vancouver, BC.

Transport Layer Security (TLS) Chairs: Eric Rescorla Joe Salowey.

Moving HIP to Standards Track Robert Moskowitz ICSAlabs an Independent Div of Verizon Business Systems July 30, 2009 Slides presented.

1 Certification Issue : how do we confidently know the public key of a given user? Authentication : a process for confirming or refuting a claim of identity.

RSA-AES-SIV TLS Ciphersuites Dan Harkins. RSA-AES-SIV Ciphersuites What is being proposed? –New ciphersuites for TLS using SIV mode of authenticated encryption.

CSCE 715: Network Systems Security Chin-Tser Huang University of South Carolina.

Transport Layer Security (TLS) IETF 73 Thursday, November Chairs: Eric Rescorla Joe Salowey.

Doc.: IEEE /0946r1 Submission July 2012 A proposal for next generation security in built on changes in ac 16 July 2012 Slide 1 Authors:

Transport Layer Security (TLS) IETF-78 Chairs Joe Salowey Eric Rescorla

@Yuan Xue CS 285 Network Security Secure Socket Layer Yuan Xue Fall 2013.

CFRG discussion on ChaCha20 TLS Working IETF 89.

Cryptography CSS 329 Lecture 13:SSL.

November 14, 2016 Secure MAC algorithms for use with NTP draft-aanchal4-ntp-mac-03 CFRG: IETF97 Aanchal Malhotra Sharon Goldberg.

Donald E. Eastlake 3rd TSIG SHA etc. Donald E. Eastlake 3rd March.

BPSEC Updates Edward Birrane

<month year> doc.: IEEE < e> <May 2018>

TLS 1.3: What has changed Dmitry Belyavskiy Cryptocom.

<month year> doc.: IEEE < e> <July 2018>

<month year> doc.: IEEE < e> <May 2018>

CSCE 815 Network Security Lecture 16

July 2010 doc.: IEEE /0903r0 A proposal for next generation security in built on changes in ac 23 August 2012 Authors: Name Company.

November 2018 Project: IEEE P Working Group for Wireless Personal Area Networks (WPANs) Submission Title: [SG SECN Amendment text] Date Submitted:

December 2015 Project: IEEE P Working Group for Wireless Personal Area Networks (WPANs) Submission Title: [Security considerations for 15.3e] Date.

IEEE MEDIA INDEPENDENT HANDOVER DCN: sec

<month year> doc.: IEEE < e> <July 2018>

IEEE MEDIA INDEPENDENT HANDOVER DCN: xx-00-sec

draft-ietf-dtn-bpsec-06

Socket Extensions for OnDemand Mobility Management

Presentation transcript:

AES-CCM Cipher Suites Daniel Bailey Matthew Campagna David McGrew Robert Dugal

draft-mcgrew-tls-aes-ccm-ecc-01 Specifies the use of 4 new ciphersuites TLS_ECDHE_ECDSA_WITH_AES_128_CCM = {TBD1,TBD1} TLS_ECDHE_ECDSA_WITH_AES_256_CCM = {TBD2,TBD2} TLS_ECDHE_ECDSA_WITH_AES_128_CCM_8 = {TBD3,TBD3} TLS_ECDHE_ECDSA_WITH_AES_256_CCM_8 = {TBD4,TBD 4} Similar to the GCM ECC cipher suites. Since Maastricht (IETF 78) – Changes for clients to use TLS client hello extensions (should be same as RFC 4492) – Analogous change that a server MUST support the use of these extensions

draft-mcgrew-tls-aes-ccm-01 Specifies 16 new cipher suites of the form – RSA with and without DHE, with AES CCM using 128 and 256 bit block ciphers. – Pre-shared Key with and without DHE, with AES CCM using 128 and 256 bit block ciphers Updated draft contains very few differences from previous draft. Attempts made to reduce the number of suites by using default TLS 1.2 PRF Both drafts use the AEAD specifications from RFC 5116, and in TLS 1.2 (RFC 5246)

Proposal Accept these two drafts as TLS Working Group Items – ZigBee Smart Energy 2.0 is expecting to use these specifications and has done some initial interop testing – The Standards for Efficient Cryptography Group (SECG) will host a test server for the ECC algorithms at the existing interop site Accessed via