All, As per the interim call last Friday, attached is an example I suggest to be included in draft-ietf-6tisch-minimal.
Summary: - Uses KeyIdMode ’01' for both K1 and K2 as a tradeoff between flexibility and overhead. (Option 2 from http://www.ietf.org/mail-archive/web/6tisch/current/msg03579.html) - Elides frame counter from the frame, as per TSCH mode (cf. Sec 7.3.2 of 154E std) - Uses implicit frame counter size of 5 bytes, and nonce creation from 5 byte ASN, as per TSCH mode (cf. Sec 7.4.1.4 of 15.4E std) Mališa ===================== NEW: 10.4. Example 4. Auxiliary Security Header The example illustrates content of the Auxiliary Security Header as mandated by this draft, if security is enabled. Security Level in the example is set to ENC-MIC-32 (5). 1 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ |L = 5|M=1|1|1|0|Key Index = KID| +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ Stream of bytes (in LSB format) that derive from the schematic header: 6D KID#0 Description of the fields in the example: #Security Control (1 byte) L = Security Level ENC-MIC-32 (5) M = Key Identifier Mode (0x01) Frame Counter Suppression = 1 (omitting Frame Counter field) Frame Counter Size = 1 (construct Nonce from 5 byte ASN) Reserved = 0 #Key Identifier (1 byte) Key Index = KID (deployment-specific KeyIndex parameter that identifies the cryptographic key) _______________________________________________ 6tisch mailing list [email protected] https://www.ietf.org/mailman/listinfo/6tisch
