Transcript 幻灯片 1 - IETF Tools

Open Source Project
SEND & Extensions
Yuhong LI (Speaker) Wendong WANG
Guangxue SU
Quanchao HUI
Beijing University of Posts & Telecommunications
HUAWEI
4/6/2016
CSI WG/IETF76
1
Contents
•
•
•
•
•
Project overview
Basic and extended functions
Implementations
Tests
Future work
Project Overview
• Project began from Nov. 2008
• GPL-style License
• Code
– Plan to put at Google Code (http://code.google.com)
• Platforms
– Host
– Router
Linux*
Quagga over Linux*
Linux*
Linux Kernel 2.6.24.6
Ubuntu 8.04
4/6/2016
CSI WG/IETF76
3
Basic Functions
• Implementations of RFCs:
– RFC3971 - Secure Neighbor Discovery (SEND)
– RFC3972 - Cryptographically Generated Addresses (CGAs)
– RFC3779 - X.509 Extensions for IP Addresses and AS Identifiers
• Supported features:
– Processing CPS/CPA messages (Authorization Delegation Discovery)
•
•
•
•
Configuration of trust anchor & certificate path
Adding IP Address Extensions to certificates
Handling of the certificate path
…
– Processing ND messages with SEND options
•
•
•
•
4/6/2016
Generation & Verification of CGA and CGA parameters
Generation & Verification of the RSA signature
Handling the Nonce & Timestamp options
…
CSI WG/IETF76
4
Extended Functions
• Supports
– ECDSA as an alternative of RSA
• Based on draft-shen-csi-ecc-01 ( the revised
version in draft-cheneau-csi-ecc-sig-agility-00)
– CRL verification
4/6/2016
CSI WG/IETF76
5
Implementations
• SEND Kernel module
– Embedded into IPv6 module of Linux kernel
– About 6K lines of C++
• SEND Daemon module
– Cryptographical procedures are implemented
in user space in the form of Daemon
– About 7K lines of C++
4/6/2016
CSI WG/IETF76
6
Software Prototype ---- Host
Command line
User space
SEND Daemon:
SEND config:
CGA gen/ver;
RSA/ECDSA gen/ver;
Certificate ver
...
CGA SEC,
Key-pair
…
Sysfs
Netlink msg
Kernel space
IPv6
module
SEND protocol
NDP protocol
ND/SEND msg
Network
4/6/2016
CSI WG/IETF76
7
Software Prototype –--- Router
Command line
User space
SEND Daemon:
CGA gen/ver;
RSA/ECDSA gen/ver;
Certificate ver
...
Quagga
Daemons
SEND config:
CGA SEC,
Key-pair
…
Netlink msg
Sysfs
Kernel space
IPv6
module
SEND protocol
ND
msg
NDP protocol
BGP, OSPF ...
ND/SEND msg
Network
4/6/2016
CSI WG/IETF76
8
Tests of SEND & Extensions
• Performed in a link-local environment
Host A
Host B
Router C
• 72 function tests for SEND and extensions
• Performance tests on CGA and RSA/ECDSA
Test scenario 1:
nodes support only SEND
• Messages from the original NDP nodes are
considered insecure and are discarded
– Neighbor Discovery
• SEND nodes discard ND messages without SEND options.
– Router Discovery
• SEND nodes send CPS to routers to require CPA;
• Routes are considered insecure and will be ignored if routes
do not respond CPA messages
– Redirect
• SEND nodes ignore Redirect messages from NDP nodes
Test scenario 2:
nodes work in compatible mode
• SEND nodes in compatible mode accept NDP
nodes, but mark them as insecure
– Neighbor Discovery
• SEND nodes on link are marked as secure
• NDP nodes on the link are marked as insecure
– Router Discovery
• Routers which pass CPA verification are marked as secure
• Other routers are marked as insecure
• secure routers have higher priority when routing
– Redirect
• Both SEND/ND redirect messages are accepted.
Test results of CGA generating time
• Platform:
– An Intel Duo2 (2.53GHz) workstation
• Results of average CGA generating time
– SEC=0: 100 μs
– SEC=1: 60 ms;
– SEC=2: 2000s (varies from 100~7000sec)
– SEC=3: N/A
• Theoretically estimating, more than 30000 hours
are required.
Performance comparisons
of RSA and ECDSA
RSA-1024 and ECDSA-192 is of the
same security strength.
Generated sig length
140
120
100
80
60
40
20
0
/Bytes
Ref: draft-shen-csi-ecc-01 ( the revised
version in draft-cheneau-csi-ecc-sigagility-00)
ECDSA has a shorter signature length,
and a less signature generating time.
RSA-512
RSA-1024
Generation time test
ECC-192
Verification time test
Generation time cost
Verification time cost
4500
4000
3500
3000
2500
2000
1500
1000
500
0
2500
(u-seconds)
(/u-seconds)
ECC-160
2000
1500
1000
500
0
RSA-512
RSA-1024
ECDSA-160
ECDSA-192
RSA-512
RSA-1024
ECC-160
ECC-192
Future work
• Supports signature algorithm agility based on
– draft-cheneau-csi-cga-pk-agility-00
• Support for Multiple Signature Algorithms in Cryptographically Generated
Addresses (CGAs)
• Proposed in Oct. 12, 2009 by Huawei
• Support multiple signature algorithms through providing multiple public keys
in CGA
– draft-cheneau-csi-send-sig-agility-00
• Signature Algorithm Agility in the Secure Neighbor Discovery (SEND)
Protocol
• Proposed in Oct. 12, 2009 by Huawei
• Add Supported Signature Algorithm Option, provide agility to SEND
– draft-cheneau-csi-ecc-sig-agility-00
• ECC public key and signature support in Cryptographically Generated
Addresses (CGA) and in the Secure Neighbor Discovery (SEND)
• Proposed in Oct. 12, 2009 by Huawei
• E.g. how to use ECC public key in CGA etc.
4/6/2016
CSI WG/IETF76
14
Thanks!
Questions/Comments?
• Contact us
– Yuhong Li:
– Wendong Wang:
[email protected]
[email protected]
– Guangxue Su:
[email protected]
– Quanchao Hui:
[email protected]