[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Sip] Review of draft-kupwade-sip-iba-00

To: Hadriel Kaplan <HKaplan at acmepacket.com>
Subject: Re: [Sip] Review of draft-kupwade-sip-iba-00
From: Eric Rescorla <ekr at networkresonance.com>
Date: Wed, 27 Feb 2008 06:14:31 -0800
Cc: "sip at ietf.org" <sip at ietf.org>, "draft-kupwade-sip-iba at tools.ietf.org" <draft-kupwade-sip-iba at tools.ietf.org>
Delivered-to: ietfarch-sip-web-archive at core3.amsl.com
Delivered-to: sip at core3.amsl.com
In-reply-to: <E6C2E8958BA59A4FB960963D475F7AC30BC778D633 at mail.acmepacket.com>
List-help: <mailto:sip-request@ietf.org?subject=help>
List-id: Session Initiation Protocol <sip.ietf.org>
List-post: <mailto:sip@ietf.org>
List-subscribe: <https://www.ietf.org/mailman/listinfo/sip>, <mailto:sip-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www.ietf.org/mailman/listinfo/sip>, <mailto:sip-request@ietf.org?subject=unsubscribe>
References: <20080227003651.265505081A at romeo.rtfm.com> <E6C2E8958BA59A4FB960963D475F7AC30BC778D633 at mail.acmepacket.com>
Sender: sip-bounces at ietf.org
User-agent: Wanderlust/2.14.0 (Africa) Emacs/21.3 Mule/5.0 (SAKAKI)

At Wed, 27 Feb 2008 01:47:23 -0500,
Hadriel Kaplan wrote:
> 
> Cool.  So if I understand this right (and I probably don't),
> ignoring rfc4474 identity and IBS for a moment and instead thinking
> about SRTP and IBE: I could use IBE to encrypt the
> security-descriptions attribute value using the intended target's
> SIP URI as a key, and only someone owning that URI (and sharing the
> same KG) or the KG itself could decrypt it to learn the sec-desc
> cleartext to use?

Yeah. This is how Voltage's email system works. (Seriously,
read the blog post I pointed at, whcih explains all this).
But of course this doesn't work correctly with a bunch of
retargeting scenarios. This is basically orthogonal to
MIKEY RSA mdoe, except that instead of doing certificate
retrieval you need to do parameter retrieval, and only
once for the domain.

Another sort-of-weird feature here is that you can encrypt to
someone who hasn't registered with the system, and then
they can register *afterward*. That works with email but
of course is too slow for VoIP.

> -hadriel p.s. the KG would actually be a problem for IBE, wouldn't
> it?  I mean the KG can always decrypt it. (at which point they would
> be the Key Generator Backdoor - aka, the KGB ;)

Yeah. This feature is generally referred to as "escrow" and is
one of the reasons why people don't want to have a single 
global KG.

-Ekr
_______________________________________________
Sip mailing list  https://www.ietf.org/mailman/listinfo/sip
This list is for NEW development of the core SIP Protocol
Use sip-implementors at cs.columbia.edu for questions on current sip
Use sipping at ietf.org for new developments on the application of sip

Follow-Ups:
- Re: [Sip] Review of draft-kupwade-sip-iba-00
  - From: Harsh Kupwade

References:
- [Sip] Review of draft-kupwade-sip-iba-00
  - From: Eric Rescorla
- Re: [Sip] Review of draft-kupwade-sip-iba-00
  - From: Hadriel Kaplan

Prev by Date: Re: [Sip] Updated hitchhikers guide
Next by Date: Re: [Sip] Review of draft-kupwade-sip-iba-00
Previous by thread: Re: [Sip] Review of draft-kupwade-sip-iba-00
Next by thread: Re: [Sip] Review of draft-kupwade-sip-iba-00
Index(es):
- Date
- Thread