[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[dhcwg] 3315 - Reconfigure Key Protocol

To: "Ralph Droms \(rdroms\)" <rdroms at cisco.com>, <dhcwg at ietf.org>
Subject: [dhcwg] 3315 - Reconfigure Key Protocol
From: "Bernie Volz \(volz\)" <volz at cisco.com>
Date: Tue, 26 Dec 2006 14:18:58 -0500
Authentication-results: rtp-dkim-2; header.From=volz@cisco.com; dkim=pass (s ig from cisco.com/rtpdkim2001 verified; );
Cc:
Dkim-signature: v=0.5; a=rsa-sha256; q=dns/txt; l=2038; t=1167160740; x=1168024740; c=relaxed/simple; s=rtpdkim2001; h=Content-Type:From:Subject:Content-Transfer-Encoding:MIME-Version; d=cisco.com; i=volz@cisco.com; z=From:=20=22Bernie=20Volz=20\(volz\)=22=20<volz@cisco.com> |Subject:=203315=20-=20Reconfigure=20Key=20Protocol |Sender:=20 |To:=20=22Ralph=20Droms=20\(rdroms\)=22=20<rdroms@cisco.com>, =20<dhcwg@ie tf.org>; bh=ymTva2PRW04n0p0aqmEz7cKk5F5HuZD/nosWdApc32o=; b=LFTtWWyLvDG+i+8BPRBsPNeep7OA3TeKTyrfUL6uD/cjGS5l+4dydTaFMeYR1WiFAWUrWN/d PbSzE1JgMuGU2MM3RCi2WzPaExnR2TZG6KTvfxtIy7lrJQKCG3iYkP5Z;
List-help: <mailto:dhcwg-request@ietf.org?subject=help>
List-id: dhcwg.ietf.org
List-post: <mailto:dhcwg@ietf.org>
List-subscribe: <https://www1.ietf.org/mailman/listinfo/dhcwg>, <mailto:dhcwg-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www1.ietf.org/mailman/listinfo/dhcwg>, <mailto:dhcwg-request@ietf.org?subject=unsubscribe>
Thread-index: AccpIrF9CwarY2y6Q6WcvVZ7mc41og==
Thread-topic: 3315 - Reconfigure Key Protocol

Ralph, et al:

I presume that the reconfigure key should be be part of the HMAC-MD5
calculation. However, in the text below it never says how to do that
calculation -- I would have thought that the key should be placed in the
Auth option's HMAC-MD5 field but it says below to zero that field? That
seems wrong to me?

21.5.2. Server considerations for Reconfigure Key protocol

   The server selects a Reconfigure Key for a client during the
   Request/Reply, Solicit/Reply or Information-request/Reply message
   exchange.  The server records the Reconfigure Key and transmits that
   key to the client in an Authentication option in the Reply message.

   The Reconfigure Key is 128 bits long, and MUST be a cryptographically
   strong random or pseudo-random number that cannot easily be
   predicted.

   To provide authentication for a Reconfigure message, the server
   selects a replay detection value according to the RDM selected by the
   server, and computes an HMAC-MD5 of the Reconfigure message using the
-> Reconfigure Key for the client.  The server computes the HMAC-MD5
-> over the entire DHCP Reconfigure message, including the
-> Authentication option; the HMAC-MD5 field in the Authentication
-> option is set to zero for the HMAC-MD5 computation.  The server
   includes the HMAC-MD5 in the authentication information field in an
   Authentication option included in the Reconfigure message sent to the
   client.

"The server computes the HMAC-MD5 over the entire DHCP Reconfigure
message, including the Authentication option with the Auth-Info Type of
2 and the Reconfigure Key in the HMAC-MD5 field. The server then places
the resulting computed HMAC-MD5 value in the HMAC-MD5 field."

I guess this is another errata for 3315bis?

---

The client would then copy the HMAC-MD5 value out of this area, place
the Reconfigure Key there, do the calculation and if the computed
HMAC-MD5 value matches the copied out value, the Reconfigure message
authenticates.

- Bernie

_______________________________________________
dhcwg mailing list
dhcwg at ietf.org
https://www1.ietf.org/mailman/listinfo/dhcwg

Follow-Ups:
- RE: [dhcwg] 3315 - Reconfigure Key Protocol
  - From: Bernie Volz \(volz\)

Prev by Date: [dhcwg] Revised DHCPv6 Leasequery Draft
Next by Date: RE: [dhcwg] WG last calls on several WG documents
Previous by thread: [dhcwg] Revised DHCPv6 Leasequery Draft
Next by thread: RE: [dhcwg] 3315 - Reconfigure Key Protocol
Index(es):
- Date
- Thread