Presentation is loading. Please wait.

Presentation is loading. Please wait.

Doc.: 11-13-0201-00 Submission February 5, 2013 René Struik (Struik Security Consultancy)Slide 1 FILS Handling of Large Objects Date: 2013-02-05 Authors:

Published byAlexis Owen Modified over 8 years ago

Similar presentations

Presentation on theme: "Doc.: 11-13-0201-00 Submission February 5, 2013 René Struik (Struik Security Consultancy)Slide 1 FILS Handling of Large Objects Date: 2013-02-05 Authors:"— Presentation transcript:

1 doc.: 11-13-0201-00 Submission February 5, 2013 René Struik (Struik Security Consultancy)Slide 1 FILS Handling of Large Objects Date: 2013-02-05 Authors: NameCompanyAddressPhoneemail René StruikStruik Security Consultancy Toronto ON, CanadaUSA: +1 (415) 690-7363 Toronto: +1 (647) 867-5658 Skype: rstruik rstruik.ext@gmail.com

2 doc.: 11-13-0201-00 Submission February 5, 2013 Review Comments on 802.11ai – D0.2 Ref: 13/0036r09 (tgai-draft-review-combined-comments) CID #242 (David Goodall, 13/0016r0): Comment (8.4.2.184): An X.509v3 certificate may be longer than 253 bytes and therefore requires fragmentation across multiple elements. A certificate chain may require additional fragmentation. Proposed change: 11ai will need to provide a mechanism for fragmenting certificates and certificate chains. It may be possible to adopt a mechanism from 11af etc. Generalized Problem Statement 1)What to handle large objects that fit within a single frame? 2)How to fragment FILS frames, if these become too long due to large objects?

3 doc.: 11-13-0201-00 Submission February 5, 2013 Outline 1.Protocol recap 2.Constructs from 802.11-2012  Frame fragmentation/defragmentation  Management frame body components 3.Application to FILS protocol  Handling of large objects  Handling of “foreign” objects (e.g., higher-layer “piggy-backed data” along key confirmation flows) Note: Our exposition is relative to certificate-based public-key protocol (i.e., without online third party), but does leave out details not necessary for current discussion

4 doc.: 11-13-0201-00 Submission February 5, 2013 Frame Fragmentation (802.11-2012) Conceptual Channel 802.11 Channel w/Fragmentation Notes:  Headers contain Sequence Control Field that indicates fragment# (4-bits) and sequence # (12-bits)  Originator (A) partitions frame body and sends individual segments in separate frames, in order  Recipient (B) reconstructs original (conceptual) frame from received segments, in order  When secure channel used, each segment is individually secured (by originator) or unsecured (by recipient)  Duplicate segments and segments received after time-out are acknowledged 802.11-2012 allows fragmentation/defragmentation with individually addressed MSDUs and MMPDUs HDR Body 2 FCS AB HDR 1 Body 1 FCS 1 AB HDR 3 Body 3 FCS 3 HDR 2 Body 2 FCS 2 Body 3 Body 1 A A B B

5 doc.: 11-13-0201-00 Submission February 5, 2013 Management Frame Body Components (802.11-2012) Information Elements (8.4.2): Named objects with format (Type, Length, Value), where  Type: Element-ID (1-octet field);  Length: Octet-length of Value field (1-octet field);  Value: Variable field. Non-Information Elements (8.4.1): Specified objects with tailored length and value attributes Notes:  Information elements cannot have size larger than 255 octets, whereas non-information elements can. With 802.11-2012, Authentication frames (8.3.3.11) are specified with field elements that are non-IEs, as is the case with some field elements specified with association request frames (8.3.3.5) and Association Response frames (8.3.3.6).

6 doc.: 11-13-0201-00 Submission February 5, 2013 René Struik (Struik Security Consultancy)Slide 6 Protocol Recap Notes: Our exposition is relative to certificate-based public-key protocol (i.e., without online third party), but does leave out details not necessary for current discussion A Random X, Nonce N A {N A, N B,[Cert CA (Id A,Q A ), sign A ]} KEK2 Key Establishment Key Confirmation B Random Y, Nonce N B {N B, N A,[Cert CA (Id B,Q B ), sign B ]} KEK2 STAAP

7 doc.: 11-13-0201-00 Submission February 5, 2013 René Struik (Struik Security Consultancy)Slide 7 Protocol Recap w/ “Piggy-Backed Info” Notes:  Key confirmation messages can become quite large, due to accumulation of  certificates;  Signature;  “piggy-backed info”.  Certificate (chain) verification has to happen after completion of the key computation (thus, forcing a serialized implementation (optionally carrying out computations between A and B in parallel). A Random X, Nonce N A {N A, N B,[Cert CA (Id A,Q A ), sign A, Text A ]} KEK2 Key Establishment Key Confirmation B Random Y, Nonce N B STAAP {N B, N A,[Cert CA (Id B,Q B ), sign B, Text B ]} KEK2

8 doc.: 11-13-0201-00 Submission February 5, 2013 René Struik (Struik Security Consultancy)Slide 8 Suggested Protocol Flows Notes:  Easy fragmentation/defragmentation of Authentication frames (since no 802.11-2012 frame protection);  Fragmentation on Association frames possible (since no 802.11-2012 frame protection of those frames);  All objects that do not fit restrictions of IEs can easily be represented as field elements (in 802.11-2012’s 8.4.1 sense).  Intra-frame fragmentation of higher-layer TLV objects (13/133r3) can be handled uniformly and aligned with 802.11-2012 fragmentation/re-assembly approach (details in next version) A Random X, Nonce N A, {N A, N B,[Cert CA (Id A,Q A ), sign A, Text A ]} KEK2 Key Establishment Key Confirmation B Random Y, Nonce N B STAAP {N B, N A,[Cert CA (Id B,Q B ), sign B, Text B ]} KEK2 Cert CA (Id A,Q A ) Cert CA (Id B,Q B )

Download ppt "Doc.: 11-13-0201-00 Submission February 5, 2013 René Struik (Struik Security Consultancy)Slide 1 FILS Handling of Large Objects Date: 2013-02-05 Authors:"

Similar presentations

Doc.: IEEE 802.11-09/1012r0 Submission September 2009 Dan Harkins, Aruba NetworksSlide 1 Suite-B Compliance for a Mesh Network Date: 2009-09-15 Authors:

Doc.: IEEE /1012r0 Submission September 2009 Dan Harkins, Aruba NetworksSlide 1 Suite-B Compliance for a Mesh Network Date: Authors:
Chapter 14 – Authentication Applications

Chapter 14 – Authentication Applications
Authentication Applications. will consider authentication functions will consider authentication functions developed to support application-level authentication.

Authentication Applications. will consider authentication functions will consider authentication functions developed to support application-level authentication.
Submission doc.: IEEE 11-13/0487r0 May 2013 Dan Harkins, Aruba NetworksSlide 1 How To Fragment An IE Date: 2013-05-07 Authors:

Submission doc.: IEEE 11-13/0487r0 May 2013 Dan Harkins, Aruba NetworksSlide 1 How To Fragment An IE Date: Authors:
IETF-91, DICE Working Group November 10, 2014 René Struik (Struik Security Consultancy)Slide 1 Multicast Security  Quo Vadis?  René Struik.

IETF-91, DICE Working Group November 10, 2014 René Struik (Struik Security Consultancy)Slide 1 Multicast Security  Quo Vadis?  René Struik.
Computer Networks20-1 Chapter 20. Network Layer: Internet Protocol 20.1 Internetworking 20.2 IPv4 20.3 IPv6.

Computer Networks20-1 Chapter 20. Network Layer: Internet Protocol 20.1 Internetworking 20.2 IPv IPv6.
IP Fragmentation. MTU Maximum Transmission Unit (MTU) –Largest IP packet a network will accept –Arriving IP packet may be larger IP Packet MTU.

IP Fragmentation. MTU Maximum Transmission Unit (MTU) –Largest IP packet a network will accept –Arriving IP packet may be larger IP Packet MTU.
SSL CS772 Fall 2011. Secure Socket layer Design Goals: SSLv2) SSL should work well with the main web protocols such as HTTP. Confidentiality is the top.

SSL CS772 Fall Secure Socket layer Design Goals: SSLv2) SSL should work well with the main web protocols such as HTTP. Confidentiality is the top.
Transport Layer Security (TLS) Protocol Introduction to networks and communications(CS555) Prof : Dr Kurt maly Student:Abhinav y.

Transport Layer Security (TLS) Protocol Introduction to networks and communications(CS555) Prof : Dr Kurt maly Student:Abhinav y.
Cryptography and Network Security Third Edition by William Stallings Lecture slides by Lawrie Brown.

Cryptography and Network Security Third Edition by William Stallings Lecture slides by Lawrie Brown.
CSCE 715: Network Systems Security Chin-Tser Huang University of South Carolina.

CSCE 715: Network Systems Security Chin-Tser Huang University of South Carolina.
Chapter 14 From Cryptography and Network Security Fourth Edition written by William Stallings, and Lecture slides by Lawrie Brown, the Australian Defence.

Chapter 14 From Cryptography and Network Security Fourth Edition written by William Stallings, and Lecture slides by Lawrie Brown, the Australian Defence.
Chapter 4 Authentication Applications. Objectives: authentication functions developed to support application-level authentication & digital signatures.

Chapter 4 Authentication Applications. Objectives: authentication functions developed to support application-level authentication & digital signatures.
Chapter 5 Network Security Protocols in Practice Part I

Chapter 5 Network Security Protocols in Practice Part I
Submission doc.: IEEE 11-14/0141r0 January 2014 Jarkko Kneckt (Nokia)Slide 1 Element Fragmentation Date: 2014-01-21 Authors:

Submission doc.: IEEE 11-14/0141r0 January 2014 Jarkko Kneckt (Nokia)Slide 1 Element Fragmentation Date: Authors:
IP Security IPSec 2 * Essential Network Security Book Slides. IT352 | Network Security |Najwa AlGhamdi 1.

IP Security IPSec 2 * Essential Network Security Book Slides. IT352 | Network Security |Najwa AlGhamdi 1.
Lecture 5: Email security: PGP Anish Arora CIS694K Introduction to Network Security.

Lecture 5: security: PGP Anish Arora CIS694K Introduction to Network Security.
Source Port # (16)Destination Port # (16) Sequence Number (32 bits) Acknowledgement Number (32 bits) Hdr Len (4) Flags (6)Window Size (16) Options (if.

Source Port # (16)Destination Port # (16) Sequence Number (32 bits) Acknowledgement Number (32 bits) Hdr Len (4) Flags (6)Window Size (16) Options (if.
Gursharan Singh Tatla Transport Layer 16-May-2011 1

Gursharan Singh Tatla Transport Layer 16-May
Computer Science Public Key Management Lecture 5.

Computer Science Public Key Management Lecture 5.

Similar presentations

Ads by Google