Presentation is loading. Please wait.

Presentation is loading. Please wait.

1 The HIP Diet Exchange HIP DEX Robert Moskowitz Verizon Telcom and Business Innovation Group March 29, 2011

Published byDebra Maud Horton Modified over 9 years ago

Similar presentations

Presentation on theme: "1 The HIP Diet Exchange HIP DEX Robert Moskowitz Verizon Telcom and Business Innovation Group March 29, 2011"— Presentation transcript:

1 1 The HIP Diet Exchange HIP DEX Robert Moskowitz Verizon Telcom and Business Innovation Group March 29, 2011 rgm@labs.htt-consult.com

2 2 Purpose of this presentation An update on HIP DEX progress – Status of Draft – Issues with new HIP Parameters – Implication of 'loss' of HIP Packet signing Only MACing available – Next steps

3 3 Status of HIP DEX? Draft updated – 05.txt – An another in the pipe Need to reconcile common text with 5201-bis – Many paragraphs to review Need review of KDF function based on CMAC – E.G. Additional info part of extract phase which is not included in draft SP800-56C Need to solidify HIT derivation Need additional review – Welcome a co-author

4 4 Status of HIP DEX? Added Pair-wise and Group Security Association management HIP generated keying material ONLY used to protect HIP packets – Increases longevity of keying material Key wrapping of 'session' keys – Need review of wrapping

5 5 Issues with HIP Parameters A number of new Parameters – Variants/replacement for BEX Parameters – Frequently the same function but MACing replacing SIGNing – Is text needed to explain this phenomenon? – Type assignments?

6 6 Implication of loss of SIGNing DEX does NOT provide for SIGNing – SIGNing REQUIRES a Cryptographic Hash Existential Forgeries Replacing SIGNing with MACing results in – Loss of non-repudiation Managed in Base exchange Major impact to UPDATE packets – Note that UPDATE packets are now used to distribute pair-wise and group keys

7 7 Next Steps CORE – CORE is the application protocol for sensors running over 6lowpan Basically a subset of HTTP – CORE has selected DTLS for their security protocol over ESP, as the app has direct knowledge of the presence or lack of security – If certificates are supported in the sensor, then EAP-TTLS will be used for the KMP – If no certificates then DTLS-PSK will be used – CORE MUST specify a KMP for DTLS-PSK

8 8 Next Steps CORE – Work on CORE bootstraping of DTLS PSK using HIP DEX – More an issue of how to use HIP in general for CORE bootstraping 'Mother-Duckling' model HIP Rendezvous server as the 'Mother'? HIP Registration using DEX limitations? – Add this into HIP DEX draft or separate document? – If selected by CORE will require HIP DEX to be Standards track – Looking for participants in CORE A couple already

9 9 Next Steps IEEE 802.15.4 – 802.15.4 has a MAC security framework, but specifies the KMP as 'out of scope' But still needs one – Zigbee specifies PANA EAP-TTLS for KMP This is recognized as 'too big' for many sensors – Desire for a KMP that will work on battery powered, constrained, sensors

10 10 Next Steps IEEE 802.15.4 – Addendum 15.4e adds Information Elements to 15.4 Basically a TLV in management frames – Using IEs can make adding HIP DEX for 15.4 KMP a 'recommended practice' document, not an addendum – Need to deal with HIP packets carried over a set of 15.4 management frames This actually is a broader issue in 15.4g

11 11 Questions?

Download ppt "1 The HIP Diet Exchange HIP DEX Robert Moskowitz Verizon Telcom and Business Innovation Group March 29, 2011"

Similar presentations

1 IETF KEYPROV WG Protocol Basis and Characteristics IEEE P1619.3 April 11, 2007 Andrea Doherty.

1 IETF KEYPROV WG Protocol Basis and Characteristics IEEE P April 11, 2007 Andrea Doherty.
Doc.: IEEE 802.11-09/0413r0 Submission March 2009 Dan Harkins, Aruba NetworksSlide 1 A Study Group for Enhanced 802.11 Security Date: 2009-03-13 Authors:

Doc.: IEEE /0413r0 Submission March 2009 Dan Harkins, Aruba NetworksSlide 1 A Study Group for Enhanced Security Date: Authors:
Doc.: IEEE 802.15-10-0412-06-wng0 Submission June 2010 Robert Moskowitz (ICSAlabs/VzB)Slide 1 Project: IEEE P802.15 Working Group for Wireless Personal.

Doc.: IEEE wng0 Submission June 2010 Robert Moskowitz (ICSAlabs/VzB)Slide 1 Project: IEEE P Working Group for Wireless Personal.
Doc.: IEEE 802.11-09/0283r0 Submission March 2009 Dan Harkins, Aruba NetworksSlide 1 Suggested Changes to the Abbreviated Handshake Date: 2009-03-08 Authors:

Doc.: IEEE /0283r0 Submission March 2009 Dan Harkins, Aruba NetworksSlide 1 Suggested Changes to the Abbreviated Handshake Date: Authors:
Doc.: IEEE 15-13-0677-02-0009-tg9-proposed-document-changes Submission Nov 2013 Robert Moskowitz, VerizonSlide 1 Project: IEEE P802.15 Working Group for.

Doc.: IEEE tg9-proposed-document-changes Submission Nov 2013 Robert Moskowitz, VerizonSlide 1 Project: IEEE P Working Group for.
Doc.: IEEE 15-15-0427-00-007a-Updating-15-7-security Submission May 2015 Robert Moskowitz, HTT ConsultingSlide 1 Project: IEEE P802.15 Working Group for.

Doc.: IEEE a-Updating-15-7-security Submission May 2015 Robert Moskowitz, HTT ConsultingSlide 1 Project: IEEE P Working Group for.
Doc.: IEEE privecsg-14-0026-01-Rnd-Modr-MAC-Addr Submission Jan 2015 Robert Moskowitz, HTT Consulting Slide 1 Project: IEEE 802 EC Privacy Recommendation.

Doc.: IEEE privecsg Rnd-Modr-MAC-Addr Submission Jan 2015 Robert Moskowitz, HTT Consulting Slide 1 Project: IEEE 802 EC Privacy Recommendation.
Key Management Guidelines. 1. Introduction 2. Glossary of Terms and Acronyms 3. Cryptographic Algorithms, Keys and Other Keying Material 4. Key Management.

Key Management Guidelines. 1. Introduction 2. Glossary of Terms and Acronyms 3. Cryptographic Algorithms, Keys and Other Keying Material 4. Key Management.
Doc.: IEEE 802.11-11/1066r2 Submission July 2011 Robert Moskowitz, VerizonSlide 1 Link Setup Flow Date: 2011-05-10 Authors: NameCompanyAddressPhoneemail.

Doc.: IEEE /1066r2 Submission July 2011 Robert Moskowitz, VerizonSlide 1 Link Setup Flow Date: Authors: NameCompanyAddressPhone .
Doc.: IEEE 802.15-15-12- 0162-00-0009 Submission March 2012 Jani Pellikka, Andrei Gurtov (University of Oulu)Slide 1 Project: IEEE P802.15 Working Group.

Doc.: IEEE Submission March 2012 Jani Pellikka, Andrei Gurtov (University of Oulu)Slide 1 Project: IEEE P Working Group.
Doc.: IEEE 802.11-07/2901r06 Submission November 2007 Doug Kavner, RaytheonSlide 1 Use of BSSID in WAVE Date: 2007-12-06 Authors:

Doc.: IEEE /2901r06 Submission November 2007 Doug Kavner, RaytheonSlide 1 Use of BSSID in WAVE Date: Authors:
Doc.: IEEE15-14-0327-01-0009-Hop-Discuss Submission July 2014 Robert Moskowitz, Verizon Slide 1 Project: IEEE P802.15 Working Group for Wireless Personal.

Doc.: IEEE Hop-Discuss Submission July 2014 Robert Moskowitz, Verizon Slide 1 Project: IEEE P Working Group for Wireless Personal.
Doc.: IEEE15-12-0458-00-0009-Moving-KMP-Forward Submission September 2012 Robert Moskowitz, Verizon Slide 1 Project: IEEE P802.15 Working Group for Wireless.

Doc.: IEEE Moving-KMP-Forward Submission September 2012 Robert Moskowitz, Verizon Slide 1 Project: IEEE P Working Group for Wireless.
Session Peering Protocol over SOAP I-D ( draft-ietf-drinks-spp-over-soap-01) draft-ietf-drinks-spp-over-soap-01 0 Presenter: Vikas Bhatia (On behalf of.

Session Peering Protocol over SOAP I-D ( draft-ietf-drinks-spp-over-soap-01) draft-ietf-drinks-spp-over-soap-01 0 Presenter: Vikas Bhatia (On behalf of.
1 Local Security Association (LSA) The Temporary Shared Key (TSK) draft-le-aaa-lsa-tsk-00.txt Stefano M. Faccin, Franck Le.

1 Local Security Association (LSA) The Temporary Shared Key (TSK) draft-le-aaa-lsa-tsk-00.txt Stefano M. Faccin, Franck Le.
Doc.: IEEE15-12-0373-01-0009-KMP-Transport-Joint-802.1 Submission July 2012 Robert Moskowitz, Verizon Slide 1 Project: IEEE P802.15 Working Group for Wireless.

Doc.: IEEE KMP-Transport-Joint Submission July 2012 Robert Moskowitz, Verizon Slide 1 Project: IEEE P Working Group for Wireless.
Doc.: IEEE 802.15-09-0791-01-0006 Submission November 2009 Robert Moskowitz (ICSAlabs/VzB)Slide 1 Project: IEEE P802.15 Working Group for Wireless Personal.

Doc.: IEEE Submission November 2009 Robert Moskowitz (ICSAlabs/VzB)Slide 1 Project: IEEE P Working Group for Wireless Personal.
Doc.: IEEE15-12-0231-00-0009-HIP-over-TG9 Submission May 2012 Robert Moskowitz, Verizon Slide 1 Project: IEEE P802.15 Working Group for Wireless Personal.

Doc.: IEEE HIP-over-TG9 Submission May 2012 Robert Moskowitz, Verizon Slide 1 Project: IEEE P Working Group for Wireless Personal.
Doc.: IEEE 802.11-10/0980r0 Submission August 2010 Marc Emmelmann, Fraunhofer FOKUSSlide 1 Summary & Comments FIA Security Analysis Bob Moskowitz Date:

Doc.: IEEE /0980r0 Submission August 2010 Marc Emmelmann, Fraunhofer FOKUSSlide 1 Summary & Comments FIA Security Analysis Bob Moskowitz Date:
1 /10 Pascal URIEN, IETF 80 th, Tuesday 29 th March 2011, Prague, Czech Republic draft-irtf-hiprg-rfid-02 HIP support for RFIDs

1 /10 Pascal URIEN, IETF 80 th, Tuesday 29 th March 2011, Prague, Czech Republic draft-irtf-hiprg-rfid-02 HIP support for RFIDs

Similar presentations

Ads by Google