Provisioning of Symmetric Keys (keyprov)

IETF Forms New Working Group on Provisioning of Symmetric Keys

The IESG Secretary announced the formation of a new IETF in the Security Area: Provisioning of Symmetric Keys (keyprov).

Provisioning of Symmetric Keys (keyprov)

Current Status: Active Working Group

Chair(s):
Phillip Hallam-Baker <pbaker@verisign.com>
Hannes Tschofenig <Hannes.Tschofenig@gmx.net>

Security Area Director(s):
Russ Housley <housley@vigilsec.com>
Sam Hartman <hartmans-ietf@mit.edu>

Security Area Advisor:
Russ Housley <housley@vigilsec.com>

Mailing Lists:
General Discussion: ietf-keyprov@safehaus.org
To Subscribe: http://www.safehaus.org/mailman/listinfo/ietf-keyprov
Archive: http://www.safehaus.org/pipermail/ietf-keyprov/

Description

Background

Current developments in deployment of Shared Symmetric Key (SSK) tokens have highlighted the need for a standard protocol for provisioning symmetric keys.

The need for provisioning protocols in PKI architectures has been recognized for some time. Although the existence and architecture of these protocols provides a feasibility proof for the KEYPROV work assumptions built into these protocols mean that it is not possible to apply them to symmetric key architectures without substantial modification.

In particular the ability to provision symmetric keys and associated attributes dynamically to already issued devices such as cell phones and USB drives is highly desirable. The working group will develop the necessary protocols and data formats required to support provisioning and management of symmetric key authentication tokens, both proprietary and standards based.

Input Documents

The following Internet drafts have been proposed by their authors as input documents:

Dynamic Symmetric Key Provisioning Protocol (M. Pei, S. Machani)
Portable Symmetric Key Container (A. Vassilev, J. Martinsson, M. Pei, P. Hoyer, S. Machani)
Extensions to CT-KIP to Support One- and Two-Pass Key Initialization (M. Nystroem, S. Machani)

Scope and Deliverables

The scope of the working group shall be to define protocols and data formats necessary for provisioning of symmetric cryptographic keys and associated attributes.

The group shall consider use cases related to use of Shared Symmetric Key Tokens. Other use cases may be considered for the purpose of avoiding unnecessary restrictions in the design and ensure the potential for future extensibility.

The working group will produce the following deliverables:

Portable Symmetric Key Container
Dynamic Symmetric Key Provisioning Protocol

Milestones

June 2007 WG Last Call Portable Symmetric Key Container
June 2007 WG Last Call Dynamic Symmetric Key Provisioning Protocol
August 2007 IETF Last Call Portable Symmetric Key Container
August 2007 IETF Last Call Dynamic Symmetric Key Provisioning Protocol
Jan 2008 Complete implementation and interoperability tests
June 2008 WG documents to DRAFT Standard Status

References

Source: IETF-Announce mailing list (IETF-Announce@ietf.org )

Prepared by Robin Cover for The XML Cover Pages archive. See also XML and Security Standards.

SEARCH Advanced Search ABOUT Site Map CP RSS Channel Contact Us Sponsoring CP About Our Sponsors NEWS Cover Stories Articles & Papers Press Releases CORE STANDARDS XML SGML Schemas XSL/XSLT/XPath XLink XML Query CSS SVG TECHNOLOGY REPORTS XML Applications General Apps Government Apps Academic Apps EVENTS LIBRARY Introductions FAQs Bibliography Technology and Society Semantics Tech Topics Software Related Standards Historic	Provisioning of Symmetric Keys (keyprov) IETF Forms New Working Group on Provisioning of Symmetric Keys The IESG Secretary announced the formation of a new IETF in the Security Area: Provisioning of Symmetric Keys (keyprov). Provisioning of Symmetric Keys (keyprov) Current Status: Active Working Group Chair(s): Phillip Hallam-Baker <pbaker@verisign.com> Hannes Tschofenig <Hannes.Tschofenig@gmx.net> Security Area Director(s): Russ Housley <housley@vigilsec.com> Sam Hartman <hartmans-ietf@mit.edu> Security Area Advisor: Russ Housley <housley@vigilsec.com> Mailing Lists: General Discussion: ietf-keyprov@safehaus.org To Subscribe: http://www.safehaus.org/mailman/listinfo/ietf-keyprov Archive: http://www.safehaus.org/pipermail/ietf-keyprov/ Description Background Current developments in deployment of Shared Symmetric Key (SSK) tokens have highlighted the need for a standard protocol for provisioning symmetric keys. The need for provisioning protocols in PKI architectures has been recognized for some time. Although the existence and architecture of these protocols provides a feasibility proof for the KEYPROV work assumptions built into these protocols mean that it is not possible to apply them to symmetric key architectures without substantial modification. In particular the ability to provision symmetric keys and associated attributes dynamically to already issued devices such as cell phones and USB drives is highly desirable. The working group will develop the necessary protocols and data formats required to support provisioning and management of symmetric key authentication tokens, both proprietary and standards based. Input Documents The following Internet drafts have been proposed by their authors as input documents: Dynamic Symmetric Key Provisioning Protocol (M. Pei, S. Machani) Portable Symmetric Key Container (A. Vassilev, J. Martinsson, M. Pei, P. Hoyer, S. Machani) Extensions to CT-KIP to Support One- and Two-Pass Key Initialization (M. Nystroem, S. Machani) Scope and Deliverables The scope of the working group shall be to define protocols and data formats necessary for provisioning of symmetric cryptographic keys and associated attributes. The group shall consider use cases related to use of Shared Symmetric Key Tokens. Other use cases may be considered for the purpose of avoiding unnecessary restrictions in the design and ensure the potential for future extensibility. The working group will produce the following deliverables: Portable Symmetric Key Container Dynamic Symmetric Key Provisioning Protocol Milestones June 2007 WG Last Call Portable Symmetric Key Container June 2007 WG Last Call Dynamic Symmetric Key Provisioning Protocol August 2007 IETF Last Call Portable Symmetric Key Container August 2007 IETF Last Call Dynamic Symmetric Key Provisioning Protocol Jan 2008 Complete implementation and interoperability tests June 2008 WG documents to DRAFT Standard Status References The IETF Security Area IETF Security Area Working Groups Source: IETF-Announce mailing list (IETF-Announce@ietf.org ) Prepared by Robin Cover for The XML Cover Pages archive. See also XML and Security Standards.