<html xmlns:o="urn:schemas-microsoft-com:office:office" xmlns:w="urn:schemas-microsoft-com:office:word" xmlns:m="http://schemas.microsoft.com/office/2004/12/omml" xmlns="http://www.w3.org/TR/REC-html40"><head><meta http-equiv=Content-Type content="text/html; charset=utf-8"><meta name=Generator content="Microsoft Word 15 (filtered medium)"><style><!--
/* Font Definitions */
@font-face
{font-family:Wingdings;
panose-1:5 0 0 0 0 0 0 0 0 0;}
@font-face
{font-family:"Cambria Math";
panose-1:2 4 5 3 5 4 6 3 2 4;}
@font-face
{font-family:DengXian;
panose-1:2 1 6 0 3 1 1 1 1 1;}
@font-face
{font-family:Calibri;
panose-1:2 15 5 2 2 2 4 3 2 4;}
@font-face
{font-family:Consolas;
panose-1:2 11 6 9 2 2 4 3 2 4;}
@font-face
{font-family:"\@DengXian";
panose-1:2 1 6 0 3 1 1 1 1 1;}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
{margin:0in;
margin-bottom:.0001pt;
font-size:11.0pt;
font-family:"Calibri",sans-serif;}
a:link, span.MsoHyperlink
{mso-style-priority:99;
color:blue;
text-decoration:underline;}
a:visited, span.MsoHyperlinkFollowed
{mso-style-priority:99;
color:#954F72;
text-decoration:underline;}
p.MsoListParagraph, li.MsoListParagraph, div.MsoListParagraph
{mso-style-priority:34;
margin-top:0in;
margin-right:0in;
margin-bottom:0in;
margin-left:.5in;
margin-bottom:.0001pt;
mso-add-space:auto;
line-height:105%;
font-size:11.0pt;
font-family:"Calibri",sans-serif;}
p.MsoListParagraphCxSpFirst, li.MsoListParagraphCxSpFirst, div.MsoListParagraphCxSpFirst
{mso-style-priority:34;
mso-style-type:export-only;
margin-top:0in;
margin-right:0in;
margin-bottom:0in;
margin-left:.5in;
margin-bottom:.0001pt;
mso-add-space:auto;
line-height:105%;
font-size:11.0pt;
font-family:"Calibri",sans-serif;}
p.MsoListParagraphCxSpMiddle, li.MsoListParagraphCxSpMiddle, div.MsoListParagraphCxSpMiddle
{mso-style-priority:34;
mso-style-type:export-only;
margin-top:0in;
margin-right:0in;
margin-bottom:0in;
margin-left:.5in;
margin-bottom:.0001pt;
mso-add-space:auto;
line-height:105%;
font-size:11.0pt;
font-family:"Calibri",sans-serif;}
p.MsoListParagraphCxSpLast, li.MsoListParagraphCxSpLast, div.MsoListParagraphCxSpLast
{mso-style-priority:34;
mso-style-type:export-only;
margin-top:0in;
margin-right:0in;
margin-bottom:0in;
margin-left:.5in;
margin-bottom:.0001pt;
mso-add-space:auto;
line-height:105%;
font-size:11.0pt;
font-family:"Calibri",sans-serif;}
span.pl-smi
{mso-style-name:pl-smi;}
span.pl-c1
{mso-style-name:pl-c1;}
span.pl-s
{mso-style-name:pl-s;}
span.pl-pds
{mso-style-name:pl-pds;}
.MsoChpDefault
{mso-style-type:export-only;}
@page WordSection1
{size:8.5in 11.0in;
margin:1.0in 1.0in 1.0in 1.0in;}
div.WordSection1
{page:WordSection1;}
/* List Definitions */
@list l0
{mso-list-id:763067988;
mso-list-type:hybrid;
mso-list-template-ids:-2086905042 -1 67698713 67698715 67698703 67698713 67698715 67698703 67698713 67698715;}
@list l0:level1
{mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;}
@list l0:level2
{mso-level-number-format:alpha-lower;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;}
@list l0:level3
{mso-level-number-format:roman-lower;
mso-level-tab-stop:none;
mso-level-number-position:right;
text-indent:-9.0pt;}
@list l0:level4
{mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;}
@list l0:level5
{mso-level-number-format:alpha-lower;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;}
@list l0:level6
{mso-level-number-format:roman-lower;
mso-level-tab-stop:none;
mso-level-number-position:right;
text-indent:-9.0pt;}
@list l0:level7
{mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;}
@list l0:level8
{mso-level-number-format:alpha-lower;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;}
@list l0:level9
{mso-level-number-format:roman-lower;
mso-level-tab-stop:none;
mso-level-number-position:right;
text-indent:-9.0pt;}
@list l1
{mso-list-id:1421175527;
mso-list-type:hybrid;
mso-list-template-ids:-988231734 -1019982570 67698713 67698715 67698703 67698713 67698715 67698703 67698713 67698715;}
@list l1:level1
{mso-level-text:%1-;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;}
@list l1:level2
{mso-level-number-format:alpha-lower;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;}
@list l1:level3
{mso-level-number-format:roman-lower;
mso-level-tab-stop:none;
mso-level-number-position:right;
text-indent:-9.0pt;}
@list l1:level4
{mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;}
@list l1:level5
{mso-level-number-format:alpha-lower;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;}
@list l1:level6
{mso-level-number-format:roman-lower;
mso-level-tab-stop:none;
mso-level-number-position:right;
text-indent:-9.0pt;}
@list l1:level7
{mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;}
@list l1:level8
{mso-level-number-format:alpha-lower;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;}
@list l1:level9
{mso-level-number-format:roman-lower;
mso-level-tab-stop:none;
mso-level-number-position:right;
text-indent:-9.0pt;}
ol
{margin-bottom:0in;}
ul
{margin-bottom:0in;}
--></style></head><body lang=EN-US link=blue vlink="#954F72"><div class=WordSection1><p class=MsoNormal>Hi Omar</p><p class=MsoNormal><o:p> </o:p></p><p class=MsoNormal>1.</p><p class=MsoNormal>You can request a certificate on <a href="http://ndncert.named-data.net">http://ndncert.named-data.net</a></p><p class=MsoNormal>See also <a href="https://yoursunny.com/t/2016/nfd-prefix/">https://yoursunny.com/t/2016/nfd-prefix/</a> and <a href="https://yoursunny.com/t/2016/ndncert/">https://yoursunny.com/t/2016/ndncert/</a></p><p class=MsoNormal><o:p> </o:p></p><p class=MsoNormal>2.</p><p class=MsoNormal>Yes, this identity can be used for authentication, because every certificate is a Data packet which has a Name.</p><p class=MsoNormal>See also <a href="http://named-data.net/doc/ndn-cxx/current/tutorials/security-library.html">http://named-data.net/doc/ndn-cxx/current/tutorials/security-library.html</a></p><p class=MsoNormal><o:p> </o:p></p><p class=MsoNormal>3.</p><p class=MsoNormal>Command Interests are not encrypted. They are signed to ensure it comes from the signer; they carry timestamps to prevent replay attacks.</p><p class=MsoNormal>See also <a href="https://redmine.named-data.net/projects/ndn-cxx/wiki/SignedInterest">https://redmine.named-data.net/projects/ndn-cxx/wiki/SignedInterest</a> and <a href="https://redmine.named-data.net/projects/ndn-cxx/wiki/CommandInterest">https://redmine.named-data.net/projects/ndn-cxx/wiki/CommandInterest</a></p><p class=MsoNormal><o:p> </o:p></p><p class=MsoNormal>Yours, Junxiao<o:p></o:p></p><p class=MsoNormal><o:p> </o:p></p><p class=MsoNormal><o:p> </o:p></p><p class=MsoNormal><span style='font-size:12.0pt;font-family:"Times New Roman",serif'><o:p> </o:p></span></p><div style='mso-element:para-border-div;border:none;border-top:solid #E1E1E1 1.0pt;padding:3.0pt 0in 0in 0in'><p class=MsoNormal style='border:none;padding:0in'><b>From: </b><a href="mailto:omarilias.elmimouni@nist.gov">El Mimouni, Omar Ilias (IntlAssoc)</a><br><b>Sent: </b>Monday, August 8, 2016 07:18<br><b>To: </b><a href="mailto:shijunxiao@email.arizona.edu">Junxiao Shi</a><br><b>Subject: </b>NFD: register a prefix remotely</p></div><p class=MsoNormal><span style='font-size:12.0pt;font-family:"Times New Roman",serif'><o:p> </o:p></span></p><p class=MsoNormal>Hi Junxiao,</p><p class=MsoNormal><o:p> </o:p></p><p class=MsoNormal>I was thinking of registering a prefix remotely on an NFD. A quick search on google led me to this repository (<a href="https://github.com/yoursunny/ndn6-tools/blob/master/remote-register-prefix.cpp">https://github.com/yoursunny/ndn6-tools/blob/master/remote-register-prefix.cpp</a> ) which I believe is yours. And I have some questions regarding security.</p><p class=MsoNormal><o:p> </o:p></p><p class=MsoNormal>When you use <span style='font-size:9.0pt;font-family:Consolas;color:#333333;background:silver;mso-highlight:silver'>security::SigningInfo signingInfo</span><span style='font-size:9.0pt;font-family:Consolas;color:#333333;background:white'> </span>to sign your interest:</p><p class=MsoNormal><o:p> </o:p></p><p class=MsoNormal style='text-indent:.5in'><span style='font-family:Consolas;color:#333333;background:white'>Constructing signature from a Name </span><span style='font-family:Wingdings;color:#333333;background:white'>à</span><span style='font-family:Consolas;color:#333333;background:white'> <span style='background:silver;mso-highlight:silver'>opt.<span class=pl-smi>signingInfo</span> = </span></span><span class=pl-c1><span style='font-family:Consolas;color:#0086B3;background:silver;mso-highlight:silver'>signingByIdentity</span></span><span style='font-family:Consolas;color:#333333;background:silver;mso-highlight:silver'>(vm[</span><span class=pl-pds><span style='font-family:Consolas;color:#183691;background:silver;mso-highlight:silver'>"</span></span><span class=pl-s><span style='font-family:Consolas;color:#183691;background:silver;mso-highlight:silver'>identity</span></span><span class=pl-pds><span style='font-family:Consolas;color:#183691;background:silver;mso-highlight:silver'>"</span></span><span style='font-family:Consolas;color:#333333;background:silver;mso-highlight:silver'>].<span class=pl-smi>as</span><Name>());</span><span style='font-family:Consolas;color:#333333;background:white'><o:p></o:p></span></p><p class=MsoNormal style='text-indent:.5in'><span style='font-family:Consolas;color:#333333;background:white'>Signing your interest </span><span style='font-family:Wingdings;color:#333333;background:white'>à</span><span style='font-family:Consolas;color:#333333;background:white'> <span style='background:silver;mso-highlight:silver'>m_keyChain.</span></span><span style='color:#333333;background:silver;mso-highlight:silver'>sign</span><span style='font-family:Consolas;color:#333333;background:silver;mso-highlight:silver'>(*m_commandInterest, m_options.</span><span style='background:silver;mso-highlight:silver'>signingInfo</span><span style='font-family:Consolas;color:#333333;background:silver;mso-highlight:silver'>);</span> <o:p></o:p></p><p class=MsoNormal><o:p> </o:p></p><p class=MsoListParagraphCxSpFirst style='text-indent:-.25in;mso-list:l1 level1 lfo1'><![if !supportLists]><span style='mso-list:Ignore'>1-<span style='font:7.0pt "Times New Roman"'> </span></span><![endif]>In a typical NDN network, who will grant you your identity? </p><p class=MsoListParagraphCxSpMiddle style='text-indent:-.25in;mso-list:l1 level1 lfo1'><![if !supportLists]><span style='mso-list:Ignore'>2-<span style='font:7.0pt "Times New Roman"'> </span></span><![endif]>Can this identity mechanism be used for authentication and how? (Is it really you or someone else?)</p><p class=MsoListParagraphCxSpLast style='text-indent:-.25in;mso-list:l1 level1 lfo1'><![if !supportLists]><span style='mso-list:Ignore'>3-<span style='font:7.0pt "Times New Roman"'> </span></span><![endif]>When you use a signature, the Interest is encrypted during the communication. If I was an attacker who is sniffing, what are my chances to corrupt your command?</p><p class=MsoNormal><o:p> </o:p></p><p class=MsoNormal>Thanks in advance. Your reply would be greatly appreciated.</p><p class=MsoNormal><o:p> </o:p></p><p class=MsoNormal>Cheers,</p><p class=MsoNormal>Omar</p><p class=MsoNormal><o:p> </o:p></p></div></body></html>