Presentation is loading. Please wait.

Presentation is loading. Please wait.

Dynamic Symmetric Key Provisioning Protocol (DSKPP)

Published byJustin Zimmerman Modified over 10 years ago

Similar presentations

Presentation on theme: "Dynamic Symmetric Key Provisioning Protocol (DSKPP)"— Presentation transcript:

1 Dynamic Symmetric Key Provisioning Protocol (DSKPP)
Andrea Doherty Mingliang Pei Salah Machani Magnus Nyström IETF 74 San Francisco, USA 24 March 2009

2 Document Status Version -07 submitted February 9th
Made the document more readable Explained how protocol entities interact with the outside world Reduced the number of options for client authentication Modified conformance requirements to recommend all three key wrapping mechanisms (kw-aes128 w/ and w/out padding, aes-128-cbc)

3 Readability and Implement-ability
Described how the DSKPP model interacts with application Described protocol entities in language geared for application developers: When and why a message is used Inputs – Processing - Outputs Eliminated forward references, e.g., MAC Calculations Key Protection Methods Moved Usage Scenarios to an appendix Simplified description of authentication code format

4 Interoperability Previously, developers could implement client authentication using any of at least 25 combinations of the following options: Authentication Code (one-time secret value, delivered to the user out-of-band before DSKPP starts) Passphrase-Based Key Wrap (another one-time secret value, delivered to user out-of-band before DSKPP starts) Web-based authentication (authenticate user with a web mechanism, then use TriggerNonce as one-time secret) Client certificate/key pair, used with TLS client authN Client certificate/key pair, used for DSKPP Key Transport Pre-existing symmetric key

5 Interoperability (cont’d)
Improved interoperability by reducing the number of allowable options for client authentication Eliminated client authentication options that relied on client cert/key pair used with TLS client auth For two-pass, Security Considerations still recommends running protocol over transport channel that can provide confidentiality Combined authentication code and PBKW since both use a one-time secret value Replaced trigger nonce in <KeyProvTrigger> with authentication data (which is derived from authentication code)

6 Key Wrap Protection Method
Do not limit developer to one algorithm. If algorithm is deprecated later, want developers to have alternative option(s) rather than waiting for the RFC to be revised The following algorithms are recommended: kw-aes128 without padding (xmlenc#kw-aes128) kw-aes128 with padding (draft-housley-aes-key-wrap-with-pad-01) AES-CBC-128 (FIPS197-AES)

7 New Comments Received Add “Principal syntax is XML and it is layered on a transport mechanism such as HTTP” to Section 3.1. Add text to Basic DSKPP Exchange describing beginning, middle, end of protocol exchange; as well as what an attacker can/cannot do Remove <TokenPlatformInfoType> and <PlatformType>; these entities can be handled by <ClientInfoType> Editorial (clean up Figure 3, remove “NOTES” and forward references, fix hanging indents) Terminology alignment with PSKC

8 Next Steps Submit -08 draft Update DSKPP based on comments received
Finalize terminology alignment with PSKC

Download ppt "Dynamic Symmetric Key Provisioning Protocol (DSKPP)"

Similar presentations

1 IETF KEYPROV WG Protocol Basis and Characteristics IEEE P1619.3 April 11, 2007 Andrea Doherty.

1 IETF KEYPROV WG Protocol Basis and Characteristics IEEE P April 11, 2007 Andrea Doherty.
Doc.: IEEE 802.11-01/147March 2000 TGe SecuritySlide 1 The Status of TGe S Draft Text Jesse Walker Intel Corporation (503) 712-1849.

Doc.: IEEE /147March 2000 TGe SecuritySlide 1 The Status of TGe S Draft Text Jesse Walker Intel Corporation (503)
XML Encryption and Derived Keys: Suggestion For a Minor Addition Magnus Nyström RSA.

XML Encryption and Derived Keys: Suggestion For a Minor Addition Magnus Nyström RSA.
The Cryptographic Token Key Initialization Protocol (CT-KIP) OTPS Workshop February 2006.

The Cryptographic Token Key Initialization Protocol (CT-KIP) OTPS Workshop February 2006.
CT-KIP Magnus Nyström, RSA Security 23 May 2005. Overview A client-server protocol for initialization (and configuration) of cryptographic tokens —Intended.

CT-KIP Magnus Nyström, RSA Security 23 May Overview A client-server protocol for initialization (and configuration) of cryptographic tokens —Intended.
CT-KIP Magnus Nyström, RSA Security OTPS Workshop, October 2005.

CT-KIP Magnus Nyström, RSA Security OTPS Workshop, October 2005.
Copyright © 2003 Colin Perkins SDP Specification Update Colin Perkins

Copyright © 2003 Colin Perkins SDP Specification Update Colin Perkins
TLS. 14.1 Introduction 14.2 TLS Record Protocol 14.3 TLS Handshake Protocol 14.4 Summary.

TLS Introduction 14.2 TLS Record Protocol 14.3 TLS Handshake Protocol 14.4 Summary.
Cryptography and Network Security

Cryptography and Network Security
Socket Layer Security. In this Presentation: need for web security SSL/TLS transport layer security protocols HTTPS secure shell (SSH)

Socket Layer Security. In this Presentation: need for web security SSL/TLS transport layer security protocols HTTPS secure shell (SSH)
7-1 Chapter 7 – Web Security Use your mentality Wake up to reality —From the song, I've Got You under My Skin“ by Cole Porter.

7-1 Chapter 7 – Web Security Use your mentality Wake up to reality —From the song, "I've Got You under My Skin“ by Cole Porter.
CSE 461 Section. “Transport Layer Security” protocol Standard protocol for encrypting Internet traffic Previously known as SSL (Secure Sockets Layer),

CSE 461 Section. “Transport Layer Security” protocol Standard protocol for encrypting Internet traffic Previously known as SSL (Secure Sockets Layer),
Internet Engineering Task Force Provisioning of Symmetric Keys Working Group www.oasis-open.org Hannes Tschofenig.

Internet Engineering Task Force Provisioning of Symmetric Keys Working Group Hannes Tschofenig.
CSCE 790: Computer Network Security Chin-Tser Huang University of South Carolina.

CSCE 790: Computer Network Security Chin-Tser Huang University of South Carolina.
Chapter 8 Web Security.

Chapter 8 Web Security.
1 The Cryptographic Token Key Initialization Protocol (CT-KIP) Web Service Description KEYPROV WG IETF-68 Prague March 2007 Andrea Doherty.

1 The Cryptographic Token Key Initialization Protocol (CT-KIP) Web Service Description KEYPROV WG IETF-68 Prague March 2007 Andrea Doherty.
Key Management Guidelines. 1. Introduction 2. Glossary of Terms and Acronyms 3. Cryptographic Algorithms, Keys and Other Keying Material 4. Key Management.

Key Management Guidelines. 1. Introduction 2. Glossary of Terms and Acronyms 3. Cryptographic Algorithms, Keys and Other Keying Material 4. Key Management.
The Dynamic Symmetric Key Provisioning Protocol (DSKPP)

The Dynamic Symmetric Key Provisioning Protocol (DSKPP)
Russ Housley IETF Chair Founder, Vigil Security, LLC 8 June 2009 NIST Key Management Workshop Key Management in Internet Security Protocols.

Russ Housley IETF Chair Founder, Vigil Security, LLC 8 June 2009 NIST Key Management Workshop Key Management in Internet Security Protocols.
SSL / TLS in ITDS Arun Vishwanathan 23 rd Dec 2003.

SSL / TLS in ITDS Arun Vishwanathan 23 rd Dec 2003.

Similar presentations

Ads by Google