[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: pre-established key mode as additional requirement?

To: "Dan Wing" <dwing@xxxxxxxxx>
Subject: Re: pre-established key mode as additional requirement?
From: David R Oran <oran@xxxxxxxxx>
Date: Tue, 20 Feb 2007 07:45:36 -0500
Authentication-results: rtp-dkim-2; header.From=oran@xxxxxxxxx; dkim=pass (s ig from cisco.com/rtpdkim2001 verified; );
Cc: <ietf-rtpsec@xxxxxxx>
Dkim-signature: v=0.5; a=rsa-sha256; q=dns/txt; l=1775; t=1171975597; x=1172839597; c=relaxed/simple; s=rtpdkim2001; h=Content-Type:From:Subject:Content-Transfer-Encoding:MIME-Version; d=cisco.com; i=oran@xxxxxxxxx; z=From:=20David=20R=20Oran=20<oran@xxxxxxxxx> |Subject:=20Re=3A=20pre-established=20key=20mode=20as=20additional=20requ irement? |Sender:=20 |To:=20=22Dan=20Wing=22=20<dwing@xxxxxxxxx>; bh=lvF/MlmndkWN/q7CpjpMIf1ukSjff2YICOJuahKImQ4=; b=vqrcAkeVX5JVrsgt5gR6hEWmKKdYAgyiBV9CKOtjzxKXm98OMsVWBe10VnHFhysmZ/ocFkBS Y3WCOlwSCN1UU828fKm5N3Di3WOoGxyxOl7/qp698IRrVNA6d6Ty2DpR;
In-reply-to: <01e201c75493$e985bc50$c2f0200a@xxxxxxxxxxxxxx>
List-archive: <http://www.imc.org/ietf-rtpsec/mail-archive/>
List-id: <ietf-rtpsec.imc.org>
List-unsubscribe: <mailto:ietf-rtpsec-request@imc.org?body=unsubscribe>
References: <01e201c75493$e985bc50$c2f0200a@xxxxxxxxxxxxxx>
Sender: owner-ietf-rtpsec@xxxxxxxxxxxx



On Feb 19, 2007, at 9:07 PM, Dan Wing wrote:

I would like to see if there is consensus for a new requirement forRTPSEC.
Specialized devices may need to avoid public key operations or
Diffie-Hellman operations because of the computational cost orbecause ofthe additional call setup delay. For example, it can take a secondor twoto perform a Diffie-Hellman operation in certain devices. Examplesof thesespecialized devices would include some handsets, intelligent SIMs,PSTNgateways, and SBCs. For the typical case because a phone callhasn't yetbeen established, ancillary processing cycles can be utilized toperform thePK or DH operation; for example, in a PSTN gateway the DSP (whichisn't yet
involved with typical DSP operations) could be used to perform the
calculation, so as to avoid having the central host processorperform thecalculation. Some devices, such as SBCs, handsets, and intelligentSIMs do
not have such ancillary processing capability.
Thus, it seems a useful optimization to securely set up a call thefirsttime with a remote endpoint, and thereafter, when communicatingwith the
same remote endpoint, to leverage the DH or PK that was performed
previously.

Thoughts?

It seems eminently reasonable to support key management schemes forrtpsec that can leverage cached/stored keying material from priorsessions to derive new keys for the current session without requiringexpensive cryptographic authentication operations.


Are you thinking of this as a MAY, a SHOULD, or a MUST?

Would you consider the TLS "session restart" machinery as qualifyingto meet this requirement?

-d

Follow-Ups:
- AW: pre-established key mode as additional requirement?
  - From: Dittmann, Werner
- RE: pre-established key mode as additional requirement?
  - From: Dan Wing

References:
- pre-established key mode as additional requirement?
  - From: Dan Wing

Prev by Date: RE: [Sip] RE: connected-identity before 200 Ok
Next by Date: RE: [Sip] RE: connected-identity before 200 Ok
Previous by thread: pre-established key mode as additional requirement?
Next by thread: RE: pre-established key mode as additional requirement?
Index(es):
- Date
- Thread