ASF Specification v2.0 DSP0136 - DMTF

More documents

Recommendations

Info

Alert Standard Format (ASF) Specification v2.0 DMTF Document DSP0136 After receiving Message 2, the management console verifies that the value SID M is active and that GUID C matches the managed client that the management console is expecting to communicate with. The management console then validates the HMAC. If the HMAC is valid, the management console creates the Session Integrity Key (SIK) by generating an HMAC per [RFC2104] of the concatenation of R M , R C , Role M , ULength M , and (optional) UName M using key K G (note – no truncation). SIK = HMAC KG (R M | R C | Role M | ULength M | < UName M >) Then the management console sends to the managed client as Message 3 the value SID C and the HMAC per [RFC2404] of the values (R C , SID M , Role M , ULength M , < UName M >) generated using key K O or K A selected by the requested role, Role M . Message 3: Mgt Console —► Managed Client SID C , HMAC KO or KA (R C , SID M , Role M , ULength M , < UName M >) After receiving Message 3, the managed client verifies that the value SID C is active and then validates the HMAC. If the HMAC is valid, the managed client creates the SIK by generating an HMAC per [RFC2104] of the concatenation of R M , R C , Role M , ULength M , and (optional) UName M using key K G (note – no truncation). SIK = HMAC KG (R M | R C | Role M | ULength M | < UName M >) If the specific session integrity algorithm negotiated between the management console and the managed client requires more keying material than that provided by SIK, additional keying material can be derived by using an HMAC per [RFC2104], keyed by SIK, to process a predefined set of constants. K 1 = HMAC SIK (const 1) K 2 = HMAC SIK (const 2) K 3 = HMAC SIK (const 3) These constants are constructed using a hexadecimal octet value repeated up to the HMAC block size in length starting with the constant 01h. This mechanism can be used to derive up to 255 HMAC-block-length pieces of keying material from a single SIK. Const 1 = 0x01010101010101010101 01010101010101010101 Const 2 = 0x02020202020202020202 02020202020202020202 Const 3 = 0x03030303030303030303 03030303030303030303 . . . Const 255 = 0xFFFFFFFFFFFFFFFFFFFF FFFFFFFFFFFFFFFFFFFF DSP0136 23 April 2003 Page 31 of 94
Alert Standard Format (ASF) Specification v2.0 DMTF Document DSP0136 Algorithms such as RAKP depend on "quality" random numbers for their security. Quality in this context means that the numbers must be random in a cryptographic sense (i.e., they must be genuinely unpredictable). To ensure that a baseline-level of quality random numbers are provided for management consoles and managed clients, this specification defines the following algorithm that RAKP implementations must use if no other higher-quality source of random numbers is available (e.g., a hardware random number generator). In addition to the three previously defined RAKP keys (i.e., K A , K O , and K G ), a Management Console generates an additional 160-bit key, K R , which is unique for each managed client. The value of this key cannot be reused during the lifetime of K A , K O , and K G . During installation after all of the RAKP keys have been loaded into non-volatile storage, the managed client creates two (2) 32 bit counters, C P and C Q and sets the value of each counter to zero (0). C P is used to count the number of device power cycles and its value is saved in non-volatile storage. Once initialized, C P is incremented by one (1) after each power cycle and its new value is again saved in non-volatile storage. C Q is used to count the number of random number generation requests per power cycle. Once initialized, C Q is incremented by one (1) after each random number generation request. After each power cycle, the value of C Q is set to zero (0) (i.e., its value is not saved across power cycles). If during a given power cycle, C Q rolls-over back to zero, the managed client must increment C P by one (1) and save its new value back into non volatile storage. The managed client creates a random number by generating an HMAC per [RFC2104] of the concatenation of C P and C Q using key K R . Random Number = HMAC KR (C P | C Q ) 3.2.3.5.1 RSSP and RAKP Message Status Codes The table below lists the status codes for specific RSSP and RAKP messages. Status Code Description Message 43h 44h C1h C2h 00h No errors X X X X 01h Insufficient resources to create a session X 02h Invalid session ID X X X X 03h Invalid payload type X 04h Invalid authentication algorithm X 05h Invalid integrity algorithm X 06h No matching authentication payload X 07h No matching integrity payload X 08h Inactive session ID X X X 09h Invalid role X 0Ah Unauthorized role X 0Bh Insufficient resources to create a session at the requested role X 0Ch Invalid name length X 0Dh Unauthorized name X 0Eh Unauthorized GUID X 0Fh Invalid integrity check value X DSP0136 23 April 2003 Page 32 of 94
Page 1 and 2: Alert Standard Format Specification
Page 3 and 4: Alert Standard Format (ASF) Specifi
Page 11 and 12: R Alert Standard Format (ASF) Speci
Page 35: Alert Standard Format (ASF) Specifi
Page 87 and 88:
Alert Standard Format (ASF) Specifi
Page 89 and 90:
Page 91 and 92:
Page 93 and 94:
Page 95 and 96:
Page 97 and 98:
Page 99:
show all

ASF Specification v2.0 DSP0136 - DMTF

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?