IETF Logo Mail Archive

Re: [auth48] AUTH48: RFC-to-be 9383 <draft-bar-cfrg-spake2plus-08> for your review

Christopher Wood <caw@heapingbits.net> Tue, 02 May 2023 10:18 UTC

Return-Path: <caw@heapingbits.net>
X-Original-To: auth48archive@ietfa.amsl.com
Delivered-To: auth48archive@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 5CF0CC14CE54; Tue, 2 May 2023 03:18:53 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.798
X-Spam-Level:
X-Spam-Status: No, score=-2.798 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_LOW=-0.7, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=heapingbits.net header.b="AvNb/Zlp"; dkim=pass (2048-bit key) header.d=messagingengine.com header.b="JluCKjB3"
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id BC_MPS3lgUuT; Tue, 2 May 2023 03:18:48 -0700 (PDT)
Received: from wout5-smtp.messagingengine.com (wout5-smtp.messagingengine.com [64.147.123.21]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 6F48EC14CE4C; Tue, 2 May 2023 03:18:48 -0700 (PDT)
Received: from compute5.internal (compute5.nyi.internal [10.202.2.45]) by mailout.west.internal (Postfix) with ESMTP id 0A38B3200949; Tue, 2 May 2023 06:18:46 -0400 (EDT)
Received: from mailfrontend1 ([10.202.2.162]) by compute5.internal (MEProxy); Tue, 02 May 2023 06:18:47 -0400
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=heapingbits.net; h=cc:cc:content-transfer-encoding:content-type:content-type :date:date:from:from:in-reply-to:in-reply-to:message-id :mime-version:references:reply-to:sender:subject:subject:to:to; s=fm3; t=1683022726; x=1683109126; bh=3WNRO3y8nLoj5dPZDqw5awPkv O1DLKIQeIfVG8YDoLE=; b=AvNb/Zlp3V4S0dySwjb15a2XedoBWumSlP4jViuLs 6AFV7I1EpXZOd5W5xlFN4xHdAA84SAouGzsUSL6uW9FUmHof/+JgHcRlR9Llp6af e5/tzlEeUDVZ45x4bmc/Z1xdoUHTyivL92G/XyEsJv5fBxLq0sUj9f+5HURwP261 B6dVm0zKGcOG4MJSfCGaIbtPPVixQmvMdWkvJxFLK7pSMkXDgBHFFfDjxDv0vi38 tDX/Y9L3gJSPK6lepTh6ypoRBDqwQr9ZE0ky1VFW1A9LXRVwM0UodwTVsF1+hIhr Ggav85vsdTJnqcmlTYTLHStioWIcKL8KeWOERuNpfs9Dg==
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d= messagingengine.com; h=cc:cc:content-transfer-encoding :content-type:content-type:date:date:feedback-id:feedback-id :from:from:in-reply-to:in-reply-to:message-id:mime-version :references:reply-to:sender:subject:subject:to:to:x-me-proxy :x-me-proxy:x-me-sender:x-me-sender:x-sasl-enc; s=fm3; t= 1683022726; x=1683109126; bh=3WNRO3y8nLoj5dPZDqw5awPkvO1DLKIQeIf VG8YDoLE=; b=JluCKjB3oOcZNXqPJgvPy5R4ehSNdHOaiHOeXIRYmu4OftOJWRA yExnT6zQqbEuWPlDHrIXdx0Jyxf/CiUJq06nkNN/GRwnYRaXf1XssVQnet0AoEEx V+UoStLrpAVxEkrlYE3V++xNaVmuboAagojPRYnUAV/IfDMyi6p5GXxaHTvYX3Ba nc6Frigq8FqVKcQI1GCa/u0ybTx1UEYyF/4wXresACT+UAKn2eZ4i8th7vWxb7Rx LYKRmJtlT7gOZ+cfWvjGvMriEoLdpXPZnuokR/vJ8xpLkRn+qg082wY9purxUf1A qROd86pYDJhNqUoqxQNm9sjvj19aHd4T3/g==
X-ME-Sender: <xms:huNQZMuzhjxL4EXyLl3wMkpmQGvOH6fMbMDu-hpP6pYroQ5RRbKDGg> <xme:huNQZJcL_dtZ1YmkmMiNZyn1oRYoRoF6pzoJgx9YC_eu-JxoDbkBDZmwmQxgack9E X2EqI43acTEtepvPq8>
X-ME-Received: <xmr:huNQZHzxu5vEz870CaxoHwVr3HFyvTSLDZlxOZEtzIBOLXPKKhnhp1G8HdF4tnjBXWQT-tF0OOJ-kxFC5EP-zwKsH3wNMFUmUmSE>
X-ME-Proxy-Cause: gggruggvucftvghtrhhoucdtuddrgedvhedrfedviedgvdejucetufdoteggodetrfdotf fvucfrrhhofhhilhgvmecuhfgrshhtofgrihhlpdfqfgfvpdfurfetoffkrfgpnffqhgen uceurghilhhouhhtmecufedttdenucesvcftvggtihhpihgvnhhtshculddquddttddmne cujfgurheptgfghfggufffkfhfvegjvffosehtqhhmtdhhtdejnecuhfhrohhmpeevhhhr ihhsthhophhhvghrucghohhougcuoegtrgifsehhvggrphhinhhgsghithhsrdhnvghtqe enucggtffrrghtthgvrhhnpeehvddvheeijeetkeevffekvdevhefgfffhfeeuvedthefg jeevveefheekffegheenucffohhmrghinheprhhftgdqvgguihhtohhrrdhorhhgnecuve hluhhsthgvrhfuihiivgeptdenucfrrghrrghmpehmrghilhhfrhhomheptggrfieshhgv rghpihhnghgsihhtshdrnhgvth
X-ME-Proxy: <xmx:huNQZPOlLpUVlW-lSGxSyITHQp8mgEUAbKXg4PZ6u_gUpTAHggxlqQ> <xmx:huNQZM--PGDdzzHGOAFeZjJ2jpZ4YfXCBV5oVRnE6BPf0svd1JYb9g> <xmx:huNQZHXUBXdYUfFrT_YQoimgvIbRM3WXiDr2JPpJ4EkH42eTd3lz9w> <xmx:huNQZLZzRjypgIhOTftqieIDVsh6JnDJJ2ESz1fbHbVUq8j_M8qAKA>
Feedback-ID: i2f494406:Fastmail
Received: by mail.messagingengine.com (Postfix) with ESMTPA; Tue, 2 May 2023 06:18:46 -0400 (EDT)
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: quoted-printable
From: Christopher Wood <caw@heapingbits.net>
Mime-Version: 1.0 (1.0)
Date: Tue, 02 May 2023 06:18:35 -0400
Message-Id: <B64380D7-2AA3-4DB7-9531-F35C2DD5545D@heapingbits.net>
References: <8C3BC6F2-32BC-4601-968C-0A0F414D65B0@amsl.com>
Cc: "Independent Submissions Editor (Eliot Lear)" <rfc-ise@rfc-editor.org>, Tim Taubert <ttaubert=40apple.com@dmarc.ietf.org>, rfc-editor@rfc-editor.org, auth48archive@rfc-editor.org
In-Reply-To: <8C3BC6F2-32BC-4601-968C-0A0F414D65B0@amsl.com>
To: Lynne Bartholomew <lbartholomew@amsl.com>
X-Mailer: iPhone Mail (20E252)
Archived-At: <https://mailarchive.ietf.org/arch/msg/auth48archive/4P9hCGDOBure40-FLCrps08iB14>
Subject: Re: [auth48] AUTH48: RFC-to-be 9383 <draft-bar-cfrg-spake2plus-08> for your review
X-BeenThere: auth48archive@rfc-editor.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "Archiving AUTH48 exchanges between the RFC Production Center, the authors, and other related parties" <auth48archive.rfc-editor.org>
List-Unsubscribe: <https://mailman.rfc-editor.org/mailman/options/auth48archive>, <mailto:auth48archive-request@rfc-editor.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/auth48archive/>
List-Post: <mailto:auth48archive@rfc-editor.org>
List-Help: <mailto:auth48archive-request@rfc-editor.org?subject=help>
List-Subscribe: <https://mailman.rfc-editor.org/mailman/listinfo/auth48archive>, <mailto:auth48archive-request@rfc-editor.org?subject=subscribe>
X-List-Received-Date: Tue, 02 May 2023 10:18:53 -0000

I do not feel strongly about the parenthetical. I defer to the RPC and their expertise here.

> 
> On May 1, 2023, at 8:26 PM, Lynne Bartholomew <lbartholomew@amsl.com> wrote:
> 
> Hi, Eliot, Tim, and Chris.
> 
> Tim and Chris, please advise regarding Eliot's question, bearing in mind that companion document RFC-to-be 9382 still has
> "(set up the protocol)" in its corresponding diagram.
> 
> In the meantime, it appears that the following is another good catch by Watson; we changed "therefore prevent" to "therefore prevents" in this document, as it appears to us that the meaning in this document is the same:
> 
>> From: Watson Ladd <watsonbladd@gmail.com>
>> Subject: One last nit (was Re: AUTH48: RFC-to-be 9382 <draft-irtf-cfrg-spake2-26> for your review)
>> Date: May 1, 2023 at 4:45:03 PM PDT
>> To: RFC Errata System <rfc-editor@rfc-editor.org>
>> Cc: Benjamin Kaduk <kaduk@mit.edu>, Info <irsg@irtf.org>, Станислав Смышляев <smyshsv@gmail.com>, auth48archive@rfc-editor.org
>> 
>> Section 3.2
>> OLD:  "Including this list would ensure that both parties agree upon the
>>  same set of supported protocols and therefore prevent downgrade
>>  attacks."
>> 
>> NEW: "Including this list would ensure that both parties agree upon the
>>  same set of supported protocols and therefore prevents downgrade attacks"
>> 
>> NOTE: this changes the subject from the parties to the inclusion. The
>> difference is the s on prevents.
> 
> The latest files are posted here:
> 
>   https://www.rfc-editor.org/authors/rfc9383.txt
>   https://www.rfc-editor.org/authors/rfc9383.pdf
>   https://www.rfc-editor.org/authors/rfc9383.html
>   https://www.rfc-editor.org/authors/rfc9383.xml
>   https://www.rfc-editor.org/authors/rfc9383-diff.html
>   https://www.rfc-editor.org/authors/rfc9383-rfcdiff.html
>   https://www.rfc-editor.org/authors/rfc9383-auth48diff.html
>   https://www.rfc-editor.org/authors/rfc9383-lastdiff.html
>   https://www.rfc-editor.org/authors/rfc9383-lastrfcdiff.html
> 
>   https://www.rfc-editor.org/authors/rfc9383-xmldiff1.html
>   https://www.rfc-editor.org/authors/rfc9383-xmldiff2.html
> 
> Please let us know if we updated in error.
> 
> Thank you!
> 
> RFC Editor/lb
> 
> 
>> On May 1, 2023, at 4:59 PM, Independent Submissions Editor (Eliot Lear) <rfc-ise@rfc-editor.org> wrote:
>> 
>> Lynn,
>> 
>> I think this was a good catch by Watson.  But now I wonder if that parenthetical is even needed.  The phrase is not used above, and it seems simply to clutter the diagram.  Could the authors respond on this point?
>> 
>> Eliot
>> 
>>> On 02.05.23 00:41, Lynne Bartholomew wrote:
>>> Dear Tim, Chris, and Eliot,
>>> 
>>> Per feedback from Watson Ladd re. companion document RFC-to-be 9382, we changed "(setup protocol)" to "(set up the protocol)" in the trace diagram in Section 3.1.  Please let us know any concerns.
>>> 
>>> The latest files are posted here.  Please refresh your browser:
>>> 
>>>   https://www.rfc-editor.org/authors/rfc9383.txt
>>>   https://www.rfc-editor.org/authors/rfc9383.pdf
>>>   https://www.rfc-editor.org/authors/rfc9383.html
>>>   https://www.rfc-editor.org/authors/rfc9383.xml
>>>   https://www.rfc-editor.org/authors/rfc9383-diff.html
>>>   https://www.rfc-editor.org/authors/rfc9383-rfcdiff.html
>>>   https://www.rfc-editor.org/authors/rfc9383-auth48diff.html
>>>   https://www.rfc-editor.org/authors/rfc9383-lastdiff.html
>>>   https://www.rfc-editor.org/authors/rfc9383-lastrfcdiff.html
>>> 
>>>   https://www.rfc-editor.org/authors/rfc9383-xmldiff1.html
>>>   https://www.rfc-editor.org/authors/rfc9383-xmldiff2.html
>>> 
>>> Thank you!
>>> 
>>> RFC Editor/lb
>>> 
>>>> On Apr 11, 2023, at 3:47 PM, Lynne Bartholomew <lbartholomew@amsl.com> wrote:
>>>> 
>>>> Hi, Eliot and Chris.  Thanks for the quick replies!
>>>> 
>>>> Eliot, thanks also for the clarifications.
>>>> 
>>>> Regarding the following:
>>>> 
>>>>>> I believe RFC 9383 is correct, and is how NIST refers to the curves.
>>>> I will pass this info. on (i.e., adding the hyphens in the "For P..." entries) to the folks working on RFC 9382.
>>>> 
>>>> 
>>>>>> I hope it got corrected in production, but 9282 had "Table Table 1" in Section 6
>>>> It was indeed fixed; RFC 9382 looks fine.
>>>> 
>>>> Thanks again!
>>>> 
>>>> RFC Editor/lb
>>>> 
>>>> 
>>>>> On Apr 11, 2023, at 3:32 PM, Christopher Wood <caw@heapingbits.net> wrote:
>>>>> 
>>>>> +1 to Elliot. P-256 with the hyphen is correct.
>>>>> 
>>>>>> On Apr 11, 2023, at 6:10 PM, Independent Submissions Editor (Eliot Lear) <rfc-ise@rfc-editor.org> wrote:
>>>>>> 
>>>>>> 
>>>>>>> On 11.04.23 22:46, Lynne Bartholomew wrote:
>>>>>>> Hi, Eliot.
>>>>>>> 
>>>>>>> We have noted your approval on the AUTH48 status page:
>>>>>>> 
>>>>>>> https://www.rfc-editor.org/auth48/rfc9383
>>>>>>> 
>>>>>>> Please note that if we later pick up on any changes to any lines containing "seed" in either of these documents, we will ask the authors about such changes.
>>>>>> Ok.
>>>>>> 
>>>>>> 
>>>>>>> In the meantime, apologies, but we're not sure what "it may be good to reference such values" means in your note below.
>>>>>> Apologies.  What I meant was that the authors could have referenced the appropriate section of RFc 9382 instead of repeating the values.  Let me tell you all what fun it was to compare several long strings of numbers ;-)
>>>>>> 
>>>>>> As to this:
>>>>>> 
>>>>>>> rfc9382.txt:   For P256:
>>>>>>> rfc9382.txt:   For P384:
>>>>>>> rfc9382.txt:   For P521:
>>>>>>> rfc9383.txt:   For P-256:
>>>>>>> rfc9383.txt:   For P-384:
>>>>>>> rfc9383.txt:   For P-521:
>>>>>> I believe RFC 9383 is correct, and is how NIST refers to the curves.
>>>>>> 
>>>>>> Also, as an aside, I hope it got corrected in production, but 9282 had "Table Table 1" in Section 6 of https://www.rfc-editor.org/internet-drafts/draft-irtf-cfrg-spake2-26.txt.
>>>>>> 
>>>>>> Eliot
>>>>>> 
>> 
>

v2.23.0 | Report a Bug | By Email