[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: uniqueness of Message IDs and related issues

To: "'Dan Harkins'" <dharkins@cips.nokia.com>, "Andrew Krywaniuk" </o=TimeStepCorporation/ou=TIMESTEP/cn=Recipients/cn=akrywaniuk@ns01.newbridge.com>
Subject: RE: uniqueness of Message IDs and related issues
From: andrew.krywaniuk@alcatel.com
Date: Thu, 22 Jun 2000 14:28:51 -0400
Cc: "'IPsec List'" <ipsec@lists.tislabs.com>
Importance: Normal
In-Reply-To: <200006221725.KAA15437@potassium.network-alchemy.com>
Reply-To: <andrew.krywaniuk@alcatel.com>
Sender: owner-ipsec@lists.tislabs.com

>   The MUST clause is not hyperbole. It states that the
> message ID of the
> notify MUST NOT be the same as the message ID of the Quick
> Mode exchange
> that generated the error. This is because, as you noted, the
> message ID
> is used to demultiplex the exchanges that two peers may be engaging in
> at any one moment-- this can be more than 1. This verbage resolved an
> interoperability issue some time ago.

Sure, but I was actually refering to this quote:

   The message ID used for all non-Phase 1 exchanges MUST be pseudo-
   randomly generated using a strong random number generator.

I think that's a bit of hyperbole. As you mentioned, the important thing is
that the Message ID is not used for two exchanges which occur in temporal
proximity (if you'll excuse the Star Trek-ish terminology).

>   Also, if the message ID has no cryptographic significance
> then it does
> not need to be based off a "truely random seed".

Okay, sure. The point of my original message was that you don't need to keep
adding entropy for every Message ID you generate. You just need a stream of
unpredictable data; it doesn't have to be truly random. (and to defeat an
adversary who can guess your entire state you need a truly random seed)

Andrew
--------------------------------------
Beauty with out truth is insubstantial.
Truth without beauty is unbearable.


> -----Original Message-----
> From: Dan Harkins [mailto:dharkins@cips.nokia.com]
> Sent: Thursday, June 22, 2000 1:26 PM
> To: andrew.krywaniuk@alcatel.com
> Cc: 'IPsec List'
> Subject: Re: uniqueness of Message IDs and related issues
>
>
>   OK, I'll disagree with some of it.
>
>   The MUST clause is not hyperbole. It states that the
> message ID of the
> notify MUST NOT be the same as the message ID of the Quick
> Mode exchange
> that generated the error. This is because, as you noted, the
> message ID
> is used to demultiplex the exchanges that two peers may be engaging in
> at any one moment-- this can be more than 1. This verbage resolved an
> interoperability issue some time ago.
>
>   Also, if the message ID has no cryptographic significance
> then it does
> not need to be based off a "truely random seed".
>
>   Dan.
>
> On Thu, 22 Jun 2000 12:44:50 EDT you wrote
> >
> > I believe the MUST clause in the draft is a slight bit of hyperbole.
> >
> > Anyone want to add to/disagree with any of this?
> >
> > Andrew
>

References:

Re: uniqueness of Message IDs and related issues

From: Dan Harkins <dharkins@cips.nokia.com>

Prev by Date: RE: group 10 and above?
Next by Date: RE: Minimum IP Compression Algorithm for Interoperability
Prev by thread: Re: uniqueness of Message IDs and related issues
Next by thread: SCEP
Index(es):
- Main
- Thread