New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Checking G_X in EDHOC Message 1 #243
Comments
Yes, let's clarify that. |
It would also help narrowing that statement to where it is actually relevant. Reading over "all the state" in a system can be costly, and becomes less and less well-defined the more a system becomes distributed. Reading (for example, if that is the case) over "all the state of exchanges that use a particular PSK" would be more doable. |
|
I agree. The G_X is a leftover from the time when we had a PSK mode, It was left as it theoretically is a nice way to stop selfie-attacks for future methods. Given the practical problems and that this is not needed for any of the current methods with mutual authentication I think it should be removed from processing and moved back to security considerations.
|
Removed the G_X checking that is heavy for implementations. That was a left over from the PSK mehtod.
I made a PR which should address all the aspects of this issue.
Added the following text
Should it be mentioned in message_2 processing? Should it be MUST? Should it take specifically about TOFU? |
…#243 Checking G_X in EDHOC Message 1 #243
Addresses Marcos comments. Seems to be agreement on new text. Merging and closing |
In the Editor's copy, the second bullet point at [1] says:
Could you clarify the exact meaning of "simultaneous EDHOC message exchange" and which of the existing EDHOC sessions should be checked?
In particular, is this limited to checking the sessions that the Responder has started but are still not completed, while simply skipping all the other ones? If so, can a session be considered completed when TH_4 has been computed and stored, or even earlier than that?
[1] https://lake-wg.github.io/edhoc/draft-ietf-lake-edhoc.html#section-5.2.3
The text was updated successfully, but these errors were encountered: