Re: [Mobopts] [IRSG] IRSG Poll forI-D:draft-irtf-mobopts-location-privacy-solutions

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Mobopts] [IRSG] IRSG Poll forI-D:draft-irtf-mobopts-location-privacy-solutions

To: "Eddy, Wesley M. (GRC-RCN0)[Verizon]" <wesley.m.eddy at nasa.gov>
Subject: Re: [Mobopts] [IRSG] IRSG Poll forI-D:draft-irtf-mobopts-location-privacy-solutions
From: Stephen Farrell <stephen.farrell at cs.tcd.ie>
Date: Wed, 11 Mar 2009 16:12:03 +0000
Cc: "irsg at ISI.EDU" <irsg at ISI.EDU>, "mobopts at irtf.org" <mobopts at irtf.org>, "Basavaraj.Patil at nokia.com" <Basavaraj.Patil at nokia.com>
Delivered-to: mobopts at core3.amsl.com
In-reply-to: <C304DB494AC0C04C87C6A6E2FF5603DB220C9F0127 at NDJSSCC01.ndc.nasa.gov>
List-archive: <http://www.irtf.org/mail-archive/web/mobopts>
List-help: <mailto:mobopts-request@irtf.org?subject=help>
List-id: Mobility Optimizations <mobopts.irtf.org>
List-post: <mailto:mobopts@irtf.org>
List-subscribe: <http://www.irtf.org/mailman/listinfo/mobopts>, <mailto:mobopts-request@irtf.org?subject=subscribe>
List-unsubscribe: <http://www.irtf.org/mailman/listinfo/mobopts>, <mailto:mobopts-request@irtf.org?subject=unsubscribe>
References: <4D35478224365146822AE9E3AD4A266606FBB312 at exchtewks3.starentnetw orks.com> <FAAB54171A6C764E969E6B4CB3C2ADD206E4878DC9 at NOK-EUMSG-03.mgdnok.nokia.com> <C304DB494AC0C04C87C6A6E2FF5603DB220C9F0127 at NDJSSCC01.ndc.nasa.gov>
User-agent: Thunderbird 2.0.0.16 (X11/20080707)

Eddy, Wesley M. (GRC-RCN0)[Verizon] wrote:
> You can record a vote for "ready to publish" from me.

Same here.

My non-blocking comments are below. Feel free to take 'em
on board or not, as you see fit.

Stephen.

#1 Its a bit surprising that active attackers aren't considered.
Maybe adding a justification for that would be good? I guess the
danger is that someone goes and implements all of this and claims
to have produced a "secure" solution, but in fact has only produced
something good against passive attacks.

#2 section 5.1, what mode of operation is used for the generation
of the encrypted home address? For AES I think ECB is ok, but if
a block cipher with a smaller block (e.g.  3DES) is used, then you
should probably not use ECB as that'd expose some information if
Kpm is re-used and if the home address structure is sensitive.
I've no idea if that's significant or not, but specifying CBC mode
for shorter-block ciphers would I think remove the potential
vulnerability. (3DES with ECB mode might also allow some non-obvious
cut'n'paste attacks if Kpm is re-used, though those'd be active
attacks and so presumably out of scope.)

Nits:

#1 1st sentence of section 1 is missing a word, maybe "problem"

#2, p12: s/If such/If so/

Follow-Ups:
- Re: [Mobopts] [IRSG] IRSG PollforI-D:draft-irtf-mobopts-location-privacy-solutions
  - From: QIU Ying

References:
- Re: [Mobopts] IRSG Poll for I-D:draft-irtf-mobopts-location-privacy-solutions
  - From: Basavaraj.Patil
- Re: [Mobopts] IRSG Poll forI-D:draft-irtf-mobopts-location-privacy-solutions
  - From: Eddy, Wesley M. (GRC-RCN0)[Verizon]

Prev by Date: Re: [Mobopts] IRSG Poll forI-D:draft-irtf-mobopts-location-privacy-solutions
Next by Date: [Mobopts] Mobiarch
Previous by thread: Re: [Mobopts] IRSG Poll forI-D:draft-irtf-mobopts-location-privacy-solutions
Next by thread: Re: [Mobopts] [IRSG] IRSG PollforI-D:draft-irtf-mobopts-location-privacy-solutions
Index(es):
- Date
- Thread

Re: [Mobopts] [IRSG] IRSG Poll forI-D:draft-irtf-mobopts-location-privacy-solutions

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.