Integrating Identity based Cryptosystem IBC with CGA in Mobile IPv6 draftcaomipshopibccga00'txt - PowerPoint PPT Presentation

About This Presentation
Title:

Integrating Identity based Cryptosystem IBC with CGA in Mobile IPv6 draftcaomipshopibccga00'txt

Description:

Auto-configure. Big Integer Factoring. Attacks. n: public key length ... Vogt, James Kempf, Wassim Haddad in the ML, thanks for your comments and advice. ... – PowerPoint PPT presentation

Number of Views:74
Avg rating:3.0/5.0
Slides: 11
Provided by: ietf
Learn more at: https://www.ietf.org
Category:

less

Transcript and Presenter's Notes

Title: Integrating Identity based Cryptosystem IBC with CGA in Mobile IPv6 draftcaomipshopibccga00'txt


1
Integrating Identity based Cryptosystem (IBC)
with CGA in Mobile IPv6draft-cao-mipshop-ibc-cga-
00.txt
  • Zhen Cao
  • Hui Deng
  • IETF 67

2
Outline
  • Issues with CGA-based drafts
  • Issues with address ownership problem
  • On our draft IBC-CGA

3
Problem with CGA-based draftsQuote from RFC
3972 Section 7.4
  • A strong cautionary note has to be made about
    using CGA for purpose other than SEND
  • Each protocol MUST define its own type tag
    values as explained to defend against related
    protocol attacks
  • The minimum RSA key length of 384 bits may be
    too short for many applications and the impact of
    key compromise on the particular protocol must be
    evaluated more considerations are necessary
  • If the goal is not to verify claims about IPv6
    addresses, CGA signatures are probably not the
    right solution not a sufficient security
    mechanism

4
Several attacks to CGA
n public key length H hash extension provided
by CGA
5
Address ownership problem
  • By signing a message with a private key, the CGA
    verifier asserts that
  • (a) the address is owned by somebody
  • (b) the message is coming from the address owner
  • It cannot tell whether the address owner is a
    trusted party. How to address this trust
    relationship problem is an issue.

6
What is IBC ?
  • Identity Based Cryptosystem a cryptosystem in
    which the public key is retrieved from an
    identity of the entity, and the private key is
    securely distributed by the Key Distribution
    Center.
  • K F (pub, ID), pub is publicly known
  • K- F (sec, ID), sec is known only to KDC and
    the client
  • Is not new to IETF

7
What is IBC-CGA ?
  • Using IBC to broke trust relations through a
    trusted third party (e.g. Key Distribution
    Center)
  • IBC-CGA
  • MN registers IBC-ID on KDC, get K and K-
  • Get CGA CGA F (K)
  • Signature CGA-Sign (K-, M)
  • IBC-CGA parameter containing an IBC-ID instead
    of a public key
  • Trust by verifying the CGA signature, the
    verifier can convince whether the sender is an
    entity trusted by the KDC as well as address
    ownership

8
Comparison
9
Acknowledgement
  • Discussion with Christian Vogt, James Kempf,
    Wassim Haddad in the ML, thanks for your comments
    and advice.

10
Thanks for your attention
  • Questions ?
Write a Comment
User Comments (0)
About PowerShow.com
Home About Us Terms and Conditions Privacy Policy Presentation Removal Request Contact Us
Copyright 2024 CrystalGraphics, Inc. — All rights Reserved. PowerShow.com is a trademark of CrystalGraphics, Inc.
The PowerPoint PPT presentation: "Integrating Identity based Cryptosystem IBC with CGA in Mobile IPv6 draftcaomipshopibccga00'txt" is the property of its rightful owner.
Do you have PowerPoint slides to share? If so, share your PPT presentation slides online with PowerShow.com. It's FREE!