Thread Links Date Links
Thread Prev Thread Next Thread Index Date Prev Date Next Date Index

[STDS-802-16-MOBILE] [security] Revised Security Adhoc Document includes Replay protection



The latest revision of the Security Adhoc working document includes
revisions for Replay protection.

I made the following changes to JunHyuk's text:

1.  Binding of the Frame Number in the HMAC (ie. "cryptosynchronized")
must always be performed in PKMv2.  So it doesn't need to be an option
in SBC-REQ/RSP.

2.  The HMAC function can accept an arbitrarily long text, so we might
as well prepend the PHY Sync field  to the message text (rather than
applying XOR).

Comments.are invited.  There is also some initial text about AES-MAC
which I invite people to review.

- Jeff Mandin
Security Adhoc chair