Re: [TLS] Draft TLS Extension for Path Validation

2022-05-25 Thread Robert Moskowitz
I am working with Ashley and Rob Segers of FAA on this.  I don't make any claims of being able to comment on the TLS content.  I am providing IETF mentoring.  I work with Rob in ICAO TFSG items. We want this discussed at IETF114.  Perhaps in SECDISPATCH if it does not need its own BOF.  Or as

Re: [TLS] Draft TLS Extension for Path Validation

2022-05-26 Thread Robert Moskowitz
Peter, SCVP *IS* being used in aviation applications today in ground-to-ground cases.  But the comm cost for air-to-ground is excessive.  So this is directly what at least US FAA and EU EUROCONTROL are implementing. Aviation, through ICAO, is building their own PKI.  The CP is in final draft

Re: [TLS] Draft TLS Extension for Path Validation

2022-05-26 Thread Robert Moskowitz
Oh, and it is this community's input to see that this is well designed as once something is put into a plane, it tends to be there for years... On 5/26/22 04:46, Peter Gutmann wrote: An indirect question on the overall premise here: Given that SCVP is essentially nonexistent (unless there's som

Re: [TLS] Draft TLS Extension for Path Validation

2022-05-26 Thread Robert Moskowitz
This is the Aviation use case I mentioned in earlier mails. I will be submitting a BOF request tomorrow, performa. Of course it is for the ADs to decide if this is a standalone BOF or a 20min slot in SECDISPATCH. How much time people want to discuss it is in large measure related to the disc

[TLS] Fwd: New BOF request revision uploaded: bofreq-moskowitz-scvp-validation-request-tls-extension-00

2022-05-27 Thread Robert Moskowitz
2022 05:40:58 -0700 From: IETF Secretariat To: The IAB , The IESG , r...@labs.htt-consult.com Robert Moskowitz has uploaded bofreq-moskowitz-scvp-validation-request-tls-extension-00 See https://datatracker.ietf.org/doc/bofreq-moskowitz-scvp-validation-request-tls-extension

[TLS] SCHC for DTLS

2022-05-27 Thread Robert Moskowitz
Is there any activity to define SCHC rules for DTLS? I want this for Unmanned Aircraft (UA) Network Remote ID (Net-RID) communications from the UA to the Net-RID Service Provider (SP). See https://datatracker.ietf.org/doc/draft-moskowitz-drip-secure-nrid-c2/ I am compressing ESP traffic usin

Re: [TLS] SCHC for DTLS

2022-05-30 Thread Robert Moskowitz
ress (when using DTLS 1.3)? *From:* TLS *On Behalf Of * Eric Rescorla *Sent:* Friday, May 27, 2022 5:30 PM *To:* Robert Moskowitz *Cc:* *Subject:* Re: [TLS] SCHC for DTLS On Fri, May 27, 2022 at 6:27 AM Robert Moskowitz wrote: Is there any activity to define SCHC rules for DTLS?

Re: [TLS] SCHC for DTLS

2022-05-30 Thread Robert Moskowitz
w.rfc-editor.org/rfc/rfc9147.html#name-the-dtls-record-layer Specifically, the longest header (w/o CID) is 5 octets and the shortest is 2 octets. The sequence number is used for the IV, so there's no extra there. -Ekr On Mon, May 30, 2022 at 6:28 AM Robert Moskowitz wrote: Greeti

Re: [TLS] SCHC for DTLS

2022-05-30 Thread Robert Moskowitz
On 5/30/22 13:03, Eric Rescorla wrote: On Mon, May 30, 2022 at 9:38 AM Robert Moskowitz wrote: Great to know.  thanks.  My feable attempts to find this were coming up empty.  But now I should be able to put some things together. I am assuming that the DTLS header is part

[TLS] Fwd: New Version Notification for draft-moskowitz-lpwan-ipnumber-00.txt

2022-06-03 Thread Robert Moskowitz
Notification for draft-moskowitz-lpwan-ipnumber-00.txt Date: Fri, 03 Jun 2022 08:33:59 -0700 From: internet-dra...@ietf.org To: Robert Moskowitz A new version of I-D, draft-moskowitz-lpwan-ipnumber-00.txt has been successfully submitted by Robert Moskowitz and posted to the IETF

[TLS] DTLS support of SCHC

2022-06-14 Thread Robert Moskowitz
I have been doing more research on using SCHC with DTLS for general UDP applications. For this I am using MAVlink https://mavlink.io/en/ As my UDP app example. I see EKR's point on the small header design of DTLS 1.3 per RFC9147 fig 3.  I will use: 2-byte CID 1-byte Seq# (same as MAVlink)

[TLS] Why TLSA RR and not CERT RR?

2022-06-26 Thread Robert Moskowitz
Recently I have been in a discussion about DNS RR that hold X.509 certificates. I am asking this here, as I *Think* there may be some knowledge here without me joining other lists... I was aware of DANE's rfc6698 that holds both X.509 certs or SubjectPublicKeyInfo. But I was pointed at rfc

Re: [TLS] Why TLSA RR and not CERT RR?

2022-06-26 Thread Robert Moskowitz
s are acceptable rather than to convey them, as TLS already knows how to convey them. -Ekr On Sun, Jun 26, 2022 at 5:05 AM Robert Moskowitz wrote: Recently I have been in a discussion about DNS RR that hold X.509 certificates. I am asking this here, as I *Think* there may be

Re: [TLS] Why TLSA RR and not CERT RR?

2022-06-26 Thread Robert Moskowitz
Ah, RFC 6944... Yes, not a TLS issue; did not think it was, directly.  But I see. DIG, dig, dig.. On 6/26/22 09:32, Robert Moskowitz wrote: Kind of thought so. So where do I ask where CERT records are being used? thanks On 6/26/22 09:22, Eric Rescorla wrote: Well, this really isn

Re: [TLS] Why TLSA RR and not CERT RR?

2022-06-26 Thread Robert Moskowitz
entors can proceed with their PoC. And most likely take it to a DNS list.  And hall talk at 114! Bob On 6/26/22 16:14, Eric Rescorla wrote: I'm not aware of any major application which uses CERT records. -Ekr On Sun, Jun 26, 2022 at 6:41 AM Robert Moskowitz wrote: Ah, RFC 6944..

Re: [TLS] Why TLSA RR and not CERT RR?

2022-06-26 Thread Robert Moskowitz
be done in drip-registries. So there is a part of this which is TLS (and IPsec and HIP) and a part which is custom design work to fit into the mandated Unmanned Aircraft comm. Fun to be had. Bob On 6/26/22 16:55, Viktor Dukhovni wrote: On Sun, Jun 26, 2022 at 04:29:38PM -0400, Robert

Re: [TLS] Why TLSA RR and not CERT RR?

2022-06-26 Thread Robert Moskowitz
On 6/26/22 17:40, Jim Reid wrote: On 26 Jun 2022, at 14:32, Robert Moskowitz wrote: So where do I ask where CERT records are being used? Maybe in the dnsop WG. Or at the DNS-OARC meeting immediately after IETF114. And I am splitting early Friday morning

Re: [TLS] Why TLSA RR and not CERT RR?

2022-06-26 Thread Robert Moskowitz
NOW. So I keep working on all drafts in parallel. Bob On 6/26/22 16:55, Viktor Dukhovni wrote: On Sun, Jun 26, 2022 at 04:29:38PM -0400, Robert Moskowitz wrote: I will use them in draft-ietf-drip-registries for our X.509 certs and our 'custom' attestation certs (private OID will be ne

[TLS] TLS ECDSA nonce reuse attack?

2022-08-15 Thread Robert Moskowitz
I contact pointed me to the following: https://medium.com/asecuritysite-when-bob-met-alice/the-state-of-tls-ecdsa-nonce-reuse-1489ab86e488 The article is unclear if this is a TLS 1.2 and/or 1.3 problem.  It does claim that 1.3 does not fix all problems with TLS. It also seems this is a librar

[TLS] Re: DTLS 1.3 bis

2024-11-13 Thread Robert Moskowitz
The ICAO Communication Panel has specified DTLS for air-to-ground security.  That won't change without a major lift effort, lots of years, and for many of them QUIC is too new and unproven. :) Actually there are good reasons for use of CoAP over-the-air.  Of course CoAP specifies DTLS... FU