Re: I-D ACTION:draft-laganier-ipv6-khi-00.txt

To: "Christian Huitema" <huitema at windows.microsoft.com>
Subject: Re: I-D ACTION:draft-laganier-ipv6-khi-00.txt
From: Francis Dupont <Francis.Dupont at enst-bretagne.fr>
Date: Wed, 07 Sep 2005 17:53:34 +0200
Cc: Pekka Nikander <pekka.nikander at nomadiclab.com>, ipv6 at ietf.org
In-reply-to: Your message of Tue, 06 Sep 2005 21:31:32 PDT. <DAC3FCB50E31C54987CD10797DA511BA10ADBD86@WIN-MSG-10.wingroup.windeploy.ntdev.microsoft.com>
List-help: <mailto:ipv6-request@ietf.org?subject=help>
List-id: "IP Version 6 Working Group \(ipv6\)" <ipv6.ietf.org>
List-post: <mailto:ipv6@ietf.org>
List-subscribe: <https://www1.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www1.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
Sender: ipv6-bounces at ietf.org

 In your previous mail you wrote:

   I am supportive of the genral idea of reserving a prefix for
   "statistically unique identifiers" that are derived from some kind of
   cryptographic ID.

=> thanks

   However, I have a problem with the specified syntax:
   
      Input      :=  any bitstring
      Hash Input :=  Context ID | Input
      Hash       :=  SHA1( Expand( Hash Input ) )
      KHI        :=  Prefix | Encode_n( Hash )
   
   This syntax includes a static reference to the SHA1 hash function and to
   the "encode_n" extraction function. As a general rule, hard coding a
   specific cryptographic algorithm in a standard is a very bad idea. In
   fact, SHA1 is already suspect.

=> security considerations explain that:
 - SHA1 can be replaced by something else
 - SHA1 is still good for this usage
 - if SHA1 or another important detail is changed then another prefix
   must be used.

   The syntax should allow for an
   identification of the algorithm as part of the "hash input".
   
=> the document explains why this is a bad idea.

Thanks

Francis.Dupont at enst-bretagne.fr

--------------------------------------------------------------------
IETF IPv6 working group mailing list
ipv6 at ietf.org
Administrative Requests: https://www1.ietf.org/mailman/listinfo/ipv6
--------------------------------------------------------------------

References:
- RE: I-D ACTION:draft-laganier-ipv6-khi-00.txt
  - From: Christian Huitema

Prev by Date: Re: "Link-Local" clarification in <draft-ietf-ipv6-addr-arch-v4-0 4.txt> (is Link-Local fe80::/10 or fe80::/64 ?)
Next by Date: RE: I-D ACTION:draft-laganier-ipv6-khi-00.txt
Previous by thread: Re: I-D ACTION:draft-laganier-ipv6-khi-00.txt
Next by thread: RE: I-D ACTION:draft-laganier-ipv6-khi-00.txt
Index(es):
- Date
- Thread

Re: I-D ACTION:draft-laganier-ipv6-khi-00.txt

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.