<hats off>
Regarding formal security proofs, I strongly disagree.
The current wording is extremely mild. It does not require an actual
security proof (which would not be realistic), but says "The solution
should be in line with current best practices, including ... possible
formal protocol security proofs."
This to me means that people have looked at the modified protocol and
can say that the new stuff does not inhibit such a security proof in the
future, and that we formally understand the security properties that are
supposed to be provided by the protocol.
We are making a major change to IKE, and as much as I care about its
goals, we should try to do it right. Relying on "the security afforded
by DH" is not easy when in the real world, both peers might be reusing
exponents and/or using too short DH groups.
Thanks,
Yaron
On 11/07/2014 01:36 AM, Dan Harkins wrote:
On Tue, November 4, 2014 7:21 pm, Brian Weis wrote:
On Oct 31, 2014, at 4:05 PM, Kathleen Moriarty
<[email protected]> wrote:
Hi,
The chairs provided text for an updated charter in line with the newly
adopted working group items. The recharter text has been posted and
I'd like to give the WG a little time to comment prior to adding this
to a telechat for review.
I support the work item looking at defending against DDoS, and have no
objection to the opportunistic work item (after omitting the wording on
channel binding).
+1
How about we also get rid of the mention of a formal security proof
of opportunistic encryption? The security is just that afforded by D-H.
Dan.
Brian
Here is a link:
http://datatracker.ietf.org/doc/charter-ietf-ipsecme/
Thanks.
--
Best regards,
Kathleen
_______________________________________________
IPsec mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/ipsec
--
Brian Weis
Security, Enterprise Networking Group, Cisco Systems
Telephone: +1 408 526 4796
Email: [email protected]
_______________________________________________
IPsec mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/ipsec
_______________________________________________
IPsec mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/ipsec
_______________________________________________
IPsec mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/ipsec
