Thread Links			Date Links
Thread Prev	Thread Next	Thread Index	Date Prev	Date Next	Date Index

Re: [P1619-2] Question: Should we only allow one data unit size within a key scope?

To: P1619-2@xxxxxxxxxxxxxxxxx
Subject: Re: [P1619-2] Question: Should we only allow one data unit size within a key scope?
From: "Robert A. (Bob) Lockhart" <rlockhart@xxxxxxxx>
Date: Fri, 23 Oct 2009 11:07:57 -0700
Delivered-to: mhonarc@xxxxxxxxxxxxxxxx
In-reply-to: <ed843b100910230951p19f99f03kb449bbed7182cf10@xxxxxxxxxxxxxx>
List-help: <http://listserv.ieee.org/cgi-bin/wa?LIST=P1619-2>, <mailto:LISTSERV@LISTSERV.IEEE.ORG?body=INFO%20P1619-2>
List-owner: <mailto:P1619-2-request@LISTSERV.IEEE.ORG>
List-subscribe: <mailto:P1619-2-subscribe-request@LISTSERV.IEEE.ORG>
List-unsubscribe: <mailto:P1619-2-unsubscribe-request@LISTSERV.IEEE.ORG>
References: <ed843b100910230951p19f99f03kb449bbed7182cf10@xxxxxxxxxxxxxx>
Reply-to: "Robert A. (Bob) Lockhart" <rlockhart@xxxxxxxx>
User-agent: Thunderbird 2.0.0.23 (Windows/20090812)

Matt,

If I understand what you are asking I think this is an implementation issue and not a specific mode issue. If someone wants to build an implementation that makes use of variable data unit sizes that should be their call as long as they can determine the sizes of the data units.

Doesn't do much for interoperability but it does leave the mode extensible for different applications and open to other standards to make use of it in a way that suits their needs.

Bob L.

Robert A. (Bob) Lockhart
Senior Solutions Architect
Thales Information Systems Security

Matt Ball wrote:

Hi Folks,

One of the questions from the P1619.2 sponsor ballot is as follows:

(Page 4, Subclause 5, line 12): Note that for IEEE Std 1619-2007, all data units within a particular key scope are required to have the same size. The sentence here allows for them to be different sizes. Do we want this? If different sizes are allowed, how does an implementation track each size, and are there security implications with an adversary being potentially able to change these sizes, since there is no authentication in this system?

What are the thoughts from the group?

--
Thanks!

Matt Ball, Chair, IEEE P1619 Security in Storage Working Group
Staff Engineer, Sun Microsystems, Inc.
500 Eldorado Blvd, Bldg #5 BRM05-212, Broomfield, CO 80021
Work: 303-272-7580, Cell: 303-717-2717

Follow-Ups:
- Re: [P1619-2] Question: Should we only allow one data unit size within a key scope?
  - From: Matt Ball

References:
- [P1619-2] Question: Should we only allow one data unit size within a key scope?
  - From: Matt Ball

Prev by Date: Re: [P1619-2] Question: Should we only allow one data unit size within a key scope?
Next by Date: [P1619-2] Question: Should we only allow one data unit size within a key scope?
Previous by thread: [P1619-2] Question: Should we only allow one data unit size within a key scope?
Next by thread: Re: [P1619-2] Question: Should we only allow one data unit size within a key scope?
Index(es):
- Date
- Thread