Re: [P2PSIP] Key refresh for P2PSIP overlays

Mon, 01 Mar 2010 10:17:35 -0800 

Dear Sun Chongwei,
Thank you for your interest. In our I-D "Security Mechanisms and Key Refresh for P2PSIP Overlays" we propose a refresh mechanism suitable for RELOAD. Each peer periodically generates new public/private key pairs. The peer's ID is bound to its new public key via certificates that are signed by trusted online super peers or via self-signed certificates. We can discuss any issue regarding the details of the proposed extensions. 

BR,
Konstantinos Birkos

Sun Chongwei wrote:

Dear Konstantinos Birkos

 
I feel interest about your thoughts.
 
Key refreshment  is an important issue to promise security of P2P 
overlay network as well as other types of networks. Cost of key 
refreshment mechanism, the architecture of key management, etc, lots 
of work should be done.



2010/2/25 Konstantinos Birkos <[email protected] 
<mailto:[email protected]>>


    Dear all,

    I would like to discuss the possibility of periodically refreshing
    the keying material of the participating peers in the overlay as
    well as certificate revocation in case malicious activity is detected.
    I am talking about each peer periodically creating new
    public/private key pairs and producing or receiving new
    certificates that bind its NodeID to the new public keys. A key
    refresh mechanism would put a barrier to attackers who could have
    compromised certain peers and would make attacks based on
    cryptanalysis tools even  more difficult.
    We are actually developing  a mechanism and we would like to
    discuss its applicability and its importance with the WG.

    Kind Regards,
    Konstantinos Birkos

    -- 
    Konstantinos Birkos

    PhD Candidate
    Wireless Telecommunication Laboratory
    Department of Electrical and Computer Engineering
    University of Patras
    Patras, Greece
    Tel.: +30 2610 996465

    _______________________________________________
    P2PSIP mailing list
    [email protected] <mailto:[email protected]>
    https://www.ietf.org/mailman/listinfo/p2psip




--
Sun Chongwei
Mobile LIfe and New Media Lab
Beijing University of Posts and Telecommunications




_______________________________________________
P2PSIP mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/p2psip






















					Reply via email to