Re: [auth48] [Ben] AUTH48: RFC-to-be 9382 <draft-irtf-cfrg-spake2-26> for your review
Alanna Paloma <apaloma@amsl.com> Mon, 28 August 2023 21:17 UTC
Return-Path: <apaloma@amsl.com>
X-Original-To: auth48archive@ietfa.amsl.com
Delivered-To: auth48archive@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9B20AC1522AF; Mon, 28 Aug 2023 14:17:29 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.708
X-Spam-Level:
X-Spam-Status: No, score=-2.708 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3, RCVD_IN_SORBS_WEB=1.5, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=unavailable autolearn_force=no
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 8Bh4Ky7XtNkY; Mon, 28 Aug 2023 14:17:25 -0700 (PDT)
Received: from c8a.amsl.com (c8a.amsl.com [4.31.198.40]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 4A07FC1522B9; Mon, 28 Aug 2023 14:17:11 -0700 (PDT)
Received: from localhost (localhost [127.0.0.1]) by c8a.amsl.com (Postfix) with ESMTP id 3D2F3424FFE7; Mon, 28 Aug 2023 14:17:11 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
Received: from c8a.amsl.com ([127.0.0.1]) by localhost (c8a.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Z4TtavfDXaxu; Mon, 28 Aug 2023 14:17:11 -0700 (PDT)
Received: from [10.251.128.8] (unknown [130.65.254.12]) by c8a.amsl.com (Postfix) with ESMTPSA id 15957424CD3F; Mon, 28 Aug 2023 14:17:11 -0700 (PDT)
Content-Type: text/plain; charset="utf-8"
Mime-Version: 1.0 (Mac OS X Mail 13.4 \(3608.120.23.2.7\))
From: Alanna Paloma <apaloma@amsl.com>
In-Reply-To: <8267E345-7F0B-4110-80F8-96FCB1013F35@amsl.com>
Date: Mon, 28 Aug 2023 14:17:10 -0700
Cc: Watson Ladd <watsonbladd@gmail.com>, auth48archive <auth48archive@rfc-editor.org>, "Stanislav V. Smyshlyaev" <smyshsv@gmail.com>, Info <irsg@irtf.org>, Colin Perkins <csp@csperkins.org>, RFC Editor <rfc-editor@rfc-editor.org>
Content-Transfer-Encoding: quoted-printable
Message-Id: <A1A3CADC-5578-4364-9BD1-647137A6E211@amsl.com>
References: <ZHlwS9SzFtKnylPe@pleonasm.mit.edu> <CAMr0u6mfUBgHZc0H4caZL6YO14KR7h77r8p+vjfrThQB2BCdtg@mail.gmail.com> <CAMr0u6nSdXfZye0eSmRP6B48HzmWzBEj98NcKXzr3vyg0=T8DA@mail.gmail.com> <CC8015AB-3A39-439B-925F-E626014BBB27@amsl.com> <ZIdvxDaHBMUD7RaT@pleonasm.mit.edu> <F0A78218-1FC2-488E-B42C-25E17749A1CE@amsl.com> <52E006BB-1DF8-4302-8C8F-A4DFE1C48A2A@amsl.com> <008F2D5D-B3D3-4984-86E5-99C40EB36CEB@amsl.com> <1A103602-4496-4DFC-AB67-B62D2FD24876@amsl.com> <751742FB-E859-472C-B2FC-7FAE519125CD@amsl.com> <ZM1fO9Qjs/bBA6Uy@pleonasm.mit.edu> <FEC2FA5F-7746-40B8-ACA3-D2368680C4E6@amsl.com> <CEF52E2B-A14D-433E-884F-0DDCFB0DE1B0@amsl.com> <8267E345-7F0B-4110-80F8-96FCB1013F35@amsl.com>
To: Benjamin Kaduk <kaduk@mit.edu>
X-Mailer: Apple Mail (2.3608.120.23.2.7)
Archived-At: <https://mailarchive.ietf.org/arch/msg/auth48archive/tGAkxg6GPuzdtYmmR_7L8SDpfRE>
Subject: Re: [auth48] [Ben] AUTH48: RFC-to-be 9382 <draft-irtf-cfrg-spake2-26> for your review
X-BeenThere: auth48archive@rfc-editor.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "Archiving AUTH48 exchanges between the RFC Production Center, the authors, and other related parties" <auth48archive.rfc-editor.org>
List-Unsubscribe: <https://mailman.rfc-editor.org/mailman/options/auth48archive>, <mailto:auth48archive-request@rfc-editor.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/auth48archive/>
List-Post: <mailto:auth48archive@rfc-editor.org>
List-Help: <mailto:auth48archive-request@rfc-editor.org?subject=help>
List-Subscribe: <https://mailman.rfc-editor.org/mailman/listinfo/auth48archive>, <mailto:auth48archive-request@rfc-editor.org?subject=subscribe>
X-List-Received-Date: Mon, 28 Aug 2023 21:17:29 -0000
Hi Ben, This is another reminder that we await your updates to this document prior to moving forward with the publication process. Thank you, RFC Editor/ap > On Aug 21, 2023, at 10:16 AM, Alanna Paloma <apaloma@amsl.com> wrote: > > Hi Ben, > > This reminder that we await your updates to this document before moving forward with the publication process. > > Thank you, > RFC Editor/ap > >> On Aug 14, 2023, at 9:48 AM, Alanna Paloma <apaloma@amsl.com> wrote: >> >> Hi Ben, >> >> This is friendly reminder that we await your suggested updates to this document before continuing forward with the publication process. >> >> Thank you, >> RFC Editor/ap >> >>> On Aug 4, 2023, at 1:41 PM, Sandy Ginoza <sginoza@amsl.com> wrote: >>> >>> Hi Ben, >>> >>> Great - thanks for letting us know! We will wait to hear from you. >>> >>> Thanks! >>> Sandy >>> >>>> On Aug 4, 2023, at 1:27 PM, Benjamin Kaduk <kaduk@mit.edu> wrote: >>>> >>>> Hi Sandy, >>>> >>>> I looked through the diff last week and found some edits to make (at least one >>>> where an added comma changed the meaning). >>>> >>>> I'm queued up to read through the rendered doc maybe next week and plan to >>>> batch all suggested edits together. >>>> >>>> Thanks, >>>> >>>> Ben >>>> >>>> On Fri, Aug 04, 2023 at 01:21:44PM -0700, Sandy Ginoza wrote: >>>>> Hi Ben, >>>>> >>>>> This is a friendly reminder that we await your review. Note that your coauthor has approved the document for publication. >>>>> >>>>> Colin and Stanislav, we have not heard from Ben since mid-June. Please consider whether you would like to approve the document in Ben’s absence if we do not hear from him (see https://www.rfc-editor.org/faq/#missingauthor). >>>>> >>>>> The files are available here: >>>>> https://www.rfc-editor.org/authors/rfc9382.xml >>>>> https://www.rfc-editor.org/authors/rfc9382.txt >>>>> https://www.rfc-editor.org/authors/rfc9382.pdf >>>>> https://www.rfc-editor.org/authors/rfc9382.html >>>>> >>>>> AUTH48 diff: >>>>> https://www.rfc-editor.org/authors/rfc9382-auth48diff.html >>>>> >>>>> Comprehensive diffs: >>>>> https://www.rfc-editor.org/authors/rfc9382-diff.html >>>>> https://www.rfc-editor.org/authors/rfc9382-rfcdiff.html >>>>> >>>>> >>>>> Thank you, >>>>> RFC Editor/sg >>>>> >>>>> >>>>>> On Jul 12, 2023, at 8:56 AM, Alanna Paloma <apaloma@amsl.com> wrote: >>>>>> >>>>>> Hi Ben, >>>>>> >>>>>> Please let us know if you plan to review the document or if you would like to select one of the options that Stanislav has mentioned below. >>>>>> >>>>>>> Could you please choose between the two options (or suggest that we do something else if some other actions look better)? >>>>>>>>> Option 1: You confirm that you are OK with the draft, it allows Alanna to finish the AUTH48 and move the document forward immediately. >>>>>>>>> Option 2: You are removed as an author and are moved to the Contributors section. >>>>>> >>>>>> Thank you, >>>>>> RFC Editor/ap >>>>>> >>>>>>> On Jul 5, 2023, at 9:15 AM, Alanna Paloma <apaloma@amsl.com> wrote: >>>>>>> >>>>>>> Hi Ben, >>>>>>> >>>>>>> This is another friendly reminder that we await your choice regarding the two options that Stanislav has outlined below. >>>>>>> >>>>>>>> Could you please choose between the two options (or suggest that we do something else if some other actions look better)? >>>>>>>>>> Option 1: You confirm that you are OK with the draft, it allows Alanna to finish the AUTH48 and move the document forward immediately. >>>>>>>>>> Option 2: You are removed as an author and are moved to the Contributors section. >>>>>>> >>>>>>> Once you have made your choice, we will move this document forward in the publication process. >>>>>>> >>>>>>> Thank you, >>>>>>> RFC Editor/ap >>>>>>> >>>>>>>> On Jun 28, 2023, at 9:12 AM, Alanna Paloma <apaloma@amsl.com> wrote: >>>>>>>> >>>>>>>> Hi Ben, >>>>>>>> >>>>>>>> This is a friendly reminder that we await your choice of the options outlined by Stanislav: >>>>>>>> >>>>>>>>> Could you please choose between the two options (or suggest that we do something else if some other actions look better)? >>>>>>>>>>> Option 1: You confirm that you are OK with the draft, it allows Alanna to finish the AUTH48 and move the document forward immediately. >>>>>>>>>>> Option 2: You are removed as an author and are moved to the Contributors section. >>>>>>>> >>>>>>>> Best regards, >>>>>>>> RFC Editor/ap >>>>>>>> >>>>>>>>> On Jun 19, 2023, at 3:59 PM, Alanna Paloma <apaloma@amsl.com> wrote: >>>>>>>>> >>>>>>>>> Hi Ben, >>>>>>>>> >>>>>>>>> This is another friendly reminder that we await your choice regarding the two options that Stanislav has outlined below. >>>>>>>>>> Could you please choose between the two options (or suggest that we do something else if some other actions look better)? >>>>>>>>>>>> Option 1: You confirm that you are OK with the draft, it allows Alanna to finish the AUTH48 and move the document forward immediately. >>>>>>>>>>>> Option 2: You are removed as an author and are moved to the Contributors section. >>>>>>>>> >>>>>>>>> Thank you, >>>>>>>>> RFC Editor/ap >>>>>>>>> >>>>>>>>>> On Jun 12, 2023, at 12:19 PM, Benjamin Kaduk <kaduk@mit.edu> wrote: >>>>>>>>>> >>>>>>>>>> Hi Allana, Stanislav, >>>>>>>>>> >>>>>>>>>> I think my schedule is going to open up around Thursday this week; I will aim >>>>>>>>>> to take a closer look at the document and choose an option then. >>>>>>>>>> >>>>>>>>>> Sorry for all the delays, >>>>>>>>>> >>>>>>>>>> Ben >>>>>>>>>> >>>>>>>>>> On Mon, Jun 12, 2023 at 10:05:28AM -0700, Alanna Paloma wrote: >>>>>>>>>>> Hi Ben, >>>>>>>>>>> >>>>>>>>>>> This is a friendly reminder that we await your choice regarding the two options that Stanislav has outlined below. >>>>>>>>>>> >>>>>>>>>>>> Could you please choose between the two options (or suggest that we do something else if some other actions look better)? >>>>>>>>>>>>>> Option 1: You confirm that you are OK with the draft, it allows Alanna to finish the AUTH48 and move the document forward immediately. >>>>>>>>>>>>>> Option 2: You are removed as an author and are moved to the Contributors section. >>>>>>>>>>> >>>>>>>>>>> Best regards, >>>>>>>>>>> RFC Editor/ap >>>>>>>>>>> >>>>>>>>>>> >>>>>>>>>>>> On Jun 5, 2023, at 6:19 AM, Stanislav V. Smyshlyaev <smyshsv@gmail.com> wrote: >>>>>>>>>>>> >>>>>>>>>>>> Dear Ben, >>>>>>>>>>>> >>>>>>>>>>>> Could you please choose between the two options (or suggest that we do something else if some other actions look better)? >>>>>>>>>>>>>> Option 1: You confirm that you are OK with the draft, it allows Alanna to finish the AUTH48 and move the document forward immediately. >>>>>>>>>>>>>> Option 2: You are removed as an author and are moved to the Contributors section. >>>>>>>>>>>> >>>>>>>>>>>> Regards, >>>>>>>>>>>> Stanislav (for CFRG chairs) >>>>>>>>>>>> >>>>>>>>>>>> On Fri, Jun 2, 2023 at 8:09 AM Stanislav V. Smyshlyaev <smyshsv@gmail.com> wrote: >>>>>>>>>>>> Hi Ben, >>>>>>>>>>>> >>>>>>>>>>>> As I understand, essentially we have two options now: >>>>>>>>>>>> Option 1: You confirm that you are OK with the draft, it allows Alanna to finish the AUTH48 and move the document forward immediately. >>>>>>>>>>>> Option 2: You are removed as an author and are moved to the Contributors section. >>>>>>>>>>>> >>>>>>>>>>>> Could you please choose between these two options? >>>>>>>>>>>> >>>>>>>>>>>> P.S.: Another option, following the IESG Statement on AUTH48 (see https://www.ietf.org/about/groups/iesg/statements/auth48/), seems to be inapplicable now, since you have responded. >>>>>>>>>>>> >>>>>>>>>>>> >>>>>>>>>>>> Regards, >>>>>>>>>>>> Stanislav >>>>>>>>>>>> >>>>>>>>>>>> On Fri, Jun 2, 2023 at 7:30 AM Benjamin Kaduk <kaduk@mit.edu> wrote: >>>>>>>>>>>> Hi Alanna, >>>>>>>>>>>> >>>>>>>>>>>> I had replied to Chris Wood on a separate thread, but I'm in the process of >>>>>>>>>>>> moving house and will not be able to do anything useful with this document for >>>>>>>>>>>> another week or so. >>>>>>>>>>>> >>>>>>>>>>>> That said, I'm also not strongly attached to my name appearing on it, so if >>>>>>>>>>>> there is reason to publish quickly I'm willing to be demoted to a contributor >>>>>>>>>>>> or something. >>>>>>>>>>>> >>>>>>>>>>>> -Ben >>>>>>>>>>>> >>>>>>>>>>>> On Thu, Jun 01, 2023 at 02:08:18PM -0700, Alanna Paloma wrote: >>>>>>>>>>>>> Hi Stanislav, >>>>>>>>>>>>> >>>>>>>>>>>>> We have not yet heard from Ben Kaduk regarding this document's readiness for publication. Please consider whether you would like to approve in Ben's absence (see https://www.rfc-editor.org/faq/#missingauthor). >>>>>>>>>>>>> >>>>>>>>>>>>> Best regards, >>>>>>>>>>>>> RFC Editor/ap >>>>>>>>>>>>> >>>>>>>>>>>>>> On May 25, 2023, at 8:41 AM, Alanna Paloma <apaloma@amsl.com> wrote: >>>>>>>>>>>>>> >>>>>>>>>>>>>> Hi Ben, >>>>>>>>>>>>>> >>>>>>>>>>>>>> This is a friendly reminder that we await your approval prior to moving this document forward in the publication process. >>>>>>>>>>>>>> >>>>>>>>>>>>>> https://www.rfc-editor.org/authors/rfc9382.xml >>>>>>>>>>>>>> https://www.rfc-editor.org/authors/rfc9382.txt >>>>>>>>>>>>>> https://www.rfc-editor.org/authors/rfc9382.html >>>>>>>>>>>>>> https://www.rfc-editor.org/authors/rfc9382.pdf >>>>>>>>>>>>>> >>>>>>>>>>>>>> https://www.rfc-editor.org/authors/rfc9382-diff.html (comprehensive diff) >>>>>>>>>>>>>> https://www.rfc-editor.org/authors/rfc9382-auth48diff.html (AUTH48 changes) >>>>>>>>>>>>>> https://www.rfc-editor.org/authors/rfc9382-lastdiff.html (htmlwdiff diff between last version and this) >>>>>>>>>>>>>> https://www.rfc-editor.org/authors/rfc9382-lastrfcdiff.html (rfcdiff diff between last version and this) >>>>>>>>>>>>>> >>>>>>>>>>>>>> For the AUTH48 status of this document, please see: >>>>>>>>>>>>>> https://www.rfc-editor.org/auth48/rfc9382 >>>>>>>>>>>>>> >>>>>>>>>>>>>> Best regards, >>>>>>>>>>>>>> RFC Editor/ap >>>>>>>>>>>>>> >>>>>>>>>>>>>>> On May 17, 2023, at 8:20 AM, Alanna Paloma <apaloma@amsl.com> wrote: >>>>>>>>>>>>>>> >>>>>>>>>>>>>>> Hi Ben, >>>>>>>>>>>>>>> >>>>>>>>>>>>>>> Just a reminder that we await your approval prior to moving this document forward in the publication process. >>>>>>>>>>>>>>> >>>>>>>>>>>>>>> https://www.rfc-editor.org/authors/rfc9382.xml >>>>>>>>>>>>>>> https://www.rfc-editor.org/authors/rfc9382.txt >>>>>>>>>>>>>>> https://www.rfc-editor.org/authors/rfc9382.html >>>>>>>>>>>>>>> https://www.rfc-editor.org/authors/rfc9382.pdf >>>>>>>>>>>>>>> >>>>>>>>>>>>>>> https://www.rfc-editor.org/authors/rfc9382-diff.html (comprehensive diff) >>>>>>>>>>>>>>> https://www.rfc-editor.org/authors/rfc9382-auth48diff.html (AUTH48 changes) >>>>>>>>>>>>>>> https://www.rfc-editor.org/authors/rfc9382-lastdiff.html (htmlwdiff diff between last version and this) >>>>>>>>>>>>>>> https://www.rfc-editor.org/authors/rfc9382-lastrfcdiff.html (rfcdiff diff between last version and this) >>>>>>>>>>>>>>> >>>>>>>>>>>>>>> For the AUTH48 status of this document, please see: >>>>>>>>>>>>>>> https://www.rfc-editor.org/auth48/rfc9382 >>>>>>>>>>>>>>> >>>>>>>>>>>>>>> Best regards, >>>>>>>>>>>>>>> RFC Editor/ap >>>>>>>>>>>>>>> >>>>>>>>>>>>>>>> On May 10, 2023, at 11:00 AM, Alanna Paloma <apaloma@amsl.com> wrote: >>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>> Hi Ben, >>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>> This is a friendly reminder that we await your approval prior to moving this document forward in the publication process. >>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>> https://www.rfc-editor.org/authors/rfc9382.xml >>>>>>>>>>>>>>>> https://www.rfc-editor.org/authors/rfc9382.txt >>>>>>>>>>>>>>>> https://www.rfc-editor.org/authors/rfc9382.html >>>>>>>>>>>>>>>> https://www.rfc-editor.org/authors/rfc9382.pdf >>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>> https://www.rfc-editor.org/authors/rfc9382-diff.html (comprehensive diff) >>>>>>>>>>>>>>>> https://www.rfc-editor.org/authors/rfc9382-auth48diff.html (AUTH48 changes) >>>>>>>>>>>>>>>> https://www.rfc-editor.org/authors/rfc9382-lastdiff.html (htmlwdiff diff between last version and this) >>>>>>>>>>>>>>>> https://www.rfc-editor.org/authors/rfc9382-lastrfcdiff.html (rfcdiff diff between last version and this) >>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>> For the AUTH48 status of this document, please see: >>>>>>>>>>>>>>>> https://www.rfc-editor.org/auth48/rfc9382 >>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>> Best regards, >>>>>>>>>>>>>>>> RFC Editor/ap >>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>> On May 3, 2023, at 9:53 AM, Alanna Paloma <apaloma@amsl.com> wrote: >>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>> Hi Stanislav and Watson, >>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>> Thank you for your replies. We have removed the parenthetical text. The change can be see in the files below (please refresh your browser). >>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>> https://www.rfc-editor.org/authors/rfc9382.xml >>>>>>>>>>>>>>>>> https://www.rfc-editor.org/authors/rfc9382.txt >>>>>>>>>>>>>>>>> https://www.rfc-editor.org/authors/rfc9382.html >>>>>>>>>>>>>>>>> https://www.rfc-editor.org/authors/rfc9382.pdf >>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>> https://www.rfc-editor.org/authors/rfc9382-diff.html (comprehensive diff) >>>>>>>>>>>>>>>>> https://www.rfc-editor.org/authors/rfc9382-auth48diff.html (AUTH48 changes) >>>>>>>>>>>>>>>>> https://www.rfc-editor.org/authors/rfc9382-lastdiff.html (htmlwdiff diff between last version and this) >>>>>>>>>>>>>>>>> https://www.rfc-editor.org/authors/rfc9382-lastrfcdiff.html (rfcdiff diff between last version and this) >>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>> Best regards, >>>>>>>>>>>>>>>>> RFC Editor/ap >>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>> On May 3, 2023, at 9:35 AM, Stanislav V. Smyshlyaev <smyshsv@gmail.com> wrote: >>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>> No objections from me either. >>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>> Regards, >>>>>>>>>>>>>>>>>> Stanislav >>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>> On Wed, 3 May 2023 at 20:33, Watson Ladd <watsonbladd@gmail.com> wrote: >>>>>>>>>>>>>>>>>> Yes, I think that's a good idea. >>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>> On Wed, May 3, 2023 at 8:49 AM Alanna Paloma <apaloma@amsl.com> wrote: >>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>> Hi Watson, Ben, and Stanislav, >>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>> Per feedback from Eliot Lear re. companion document RFC-to-be 9383, may we remove the parenthetical “(set up the protocol”) from the diagram in Section 3.1? >>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>> On May 2, 2023, at 10:16 AM, Independent Submissions Editor (Eliot Lear) <rfc-ise@rfc-editor.org> wrote: >>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>> So, this really is editorial. The correction that Watson suggested is just fine, and consistency is useful. But if it's possibly to consistently remove across both, that would be good. >>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>> Best regards, >>>>>>>>>>>>>>>>>>> RFC Editor/ap >>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>> On May 2, 2023, at 8:58 AM, Alanna Paloma <apaloma@amsl.com> wrote: >>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>> Hi Stanislav, Watson, and Ben, >>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>> We have noted Stanislav’s and Watson’s approvals on the AUTH48 status page: >>>>>>>>>>>>>>>>>>>> https://www.rfc-editor.org/auth48/rfc9382 >>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>> Additionally, we have updated “therefore prevent” to “therefore prevents”, per the nit pointed out by Watson. >>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>> On May 1, 2023, at 4:45 PM, Watson Ladd <watsonbladd@gmail.com> wrote: >>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>> Section 3.2 >>>>>>>>>>>>>>>>>>>>> OLD: "Including this list would ensure that both parties agree upon the >>>>>>>>>>>>>>>>>>>>> same set of supported protocols and therefore prevent downgrade >>>>>>>>>>>>>>>>>>>>> attacks." >>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>> NEW: "Including this list would ensure that both parties agree upon the >>>>>>>>>>>>>>>>>>>>> same set of supported protocols and therefore prevents downgrade attacks" >>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>> NOTE: this changes the subject from the parties to the inclusion. The >>>>>>>>>>>>>>>>>>>>> difference is the s on prevents. >>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>> After that nit we can consider the document APPROVED. >>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>> The latest files are posted here. Please refresh your browser: >>>>>>>>>>>>>>>>>>>> https://www.rfc-editor.org/authors/rfc9382.xml >>>>>>>>>>>>>>>>>>>> https://www.rfc-editor.org/authors/rfc9382.txt >>>>>>>>>>>>>>>>>>>> https://www.rfc-editor.org/authors/rfc9382.html >>>>>>>>>>>>>>>>>>>> https://www.rfc-editor.org/authors/rfc9382.pdf >>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>> The relevant diff files have been posted here: >>>>>>>>>>>>>>>>>>>> https://www.rfc-editor.org/authors/rfc9382-diff.html (comprehensive diff) >>>>>>>>>>>>>>>>>>>> https://www.rfc-editor.org/authors/rfc9382-auth48diff.html (AUTH48 changes) >>>>>>>>>>>>>>>>>>>> https://www.rfc-editor.org/authors/rfc9382-lastdiff.html (htmlwdiff diff between last version and this) >>>>>>>>>>>>>>>>>>>> https://www.rfc-editor.org/authors/rfc9382-lastrfcdiff.html (rfcdiff diff between last version and this) >>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>> We will await any further changes you may have and approval from Ben prior to moving this document forward in the publication process. >>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>> Thank you, >>>>>>>>>>>>>>>>>>>> RFC Editor/ap >>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>> On May 1, 2023, at 8:21 PM, Stanislav V. Smyshlyaev <smyshsv@gmail.com> wrote: >>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>> Dear Alanna, >>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>> Thank you, I approve the changes. >>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>> Best regards, >>>>>>>>>>>>>>>>>>>>> Stanislav >>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>> On Tue, 2 May 2023 at 03:21, Alanna Paloma <apaloma@amsl.com> wrote: >>>>>>>>>>>>>>>>>>>>> Watson, Stanislav*, >>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>> *Stanislav - As Document Shepherd, please review the following changes and let us know if you approve. They can be seen in this file: https://www.rfc-editor.org/authors/rfc9382-auth48diff.html >>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>> 1) Section 3.3: updated text >>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>> Original: >>>>>>>>>>>>>>>>>>>>> This prevents man-in-the-middle attackers from inserting themselves into >>>>>>>>>>>>>>>>>>>>> the exchange. >>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>> Current: >>>>>>>>>>>>>>>>>>>>> This use of the transcript ensures any manipulation of the messages sent >>>>>>>>>>>>>>>>>>>>> is reflected in the keys. >>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>> 2) Section 9.2: added informative reference >>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>> [NIST.SP.800-56Ar3] >>>>>>>>>>>>>>>>>>>>> National Institute of Standards and Technology, >>>>>>>>>>>>>>>>>>>>> "Recommendation for Pair-Wise Key-Establishment Schemes >>>>>>>>>>>>>>>>>>>>> Using Discrete Logarithm Cryptography", Revision 3, NIST >>>>>>>>>>>>>>>>>>>>> Special Publication 800-56A, >>>>>>>>>>>>>>>>>>>>> DOI 10.6028/NIST.SP.800-56Ar3, April 2018, >>>>>>>>>>>>>>>>>>>>> <https://doi.org/10.6028/NIST.SP.800-56Ar3>. >>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>> 3) Appendix B: added sentence >>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>> Current: >>>>>>>>>>>>>>>>>>>>> Line breaks have been added due to line-length limitations. >>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>> Watson - Thank you for the quick reply. We have updated the files accordingly. >>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>> The latest files are posted here. Please refresh your browser: >>>>>>>>>>>>>>>>>>>>> https://www.rfc-editor.org/authors/rfc9382.xml >>>>>>>>>>>>>>>>>>>>> https://www.rfc-editor.org/authors/rfc9382.txt >>>>>>>>>>>>>>>>>>>>> https://www.rfc-editor.org/authors/rfc9382.html >>>>>>>>>>>>>>>>>>>>> https://www.rfc-editor.org/authors/rfc9382.pdf >>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>> The relevant diff files have been posted here: >>>>>>>>>>>>>>>>>>>>> https://www.rfc-editor.org/authors/rfc9382-diff.html (comprehensive diff) >>>>>>>>>>>>>>>>>>>>> https://www.rfc-editor.org/authors/rfc9382-auth48diff.html (AUTH48 changes) >>>>>>>>>>>>>>>>>>>>> https://www.rfc-editor.org/authors/rfc9382-lastdiff.html (last version to this one) >>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>> For the AUTH48 status of this document, please see: >>>>>>>>>>>>>>>>>>>>> https://www.rfc-editor.org/auth48/rfc9382 >>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>> Best regards, >>>>>>>>>>>>>>>>>>>>> RFC Editor/ap >>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>> On May 1, 2023, at 1:53 PM, Watson Ladd <watsonbladd@gmail.com> wrote: >>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>> On Mon, May 1, 2023, 1:24 PM Alanna Paloma <apaloma@amsl.com> wrote: >>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>> Hi Watson, >>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>> Thank you for your reply. We have updated the files accordingly. Please note that we have some follow-up queries and notes. >>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>> 1) Regarding your response to the query below, should this reference be listed as a normative or informative reference? >>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>> Informative >>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> 10) <!--[rfced] Should this sentence include a citation after "NIST.SP.800-56Ar3"? >>>>>>>>>>>>>>>>>>>>>>>>> If so, please provide the reference information. >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> Original: >>>>>>>>>>>>>>>>>>>>>>>>> Standards such as NIST.SP.800-56Ar3 >>>>>>>>>>>>>>>>>>>>>>>>> suggest taking mod p of a hash value that is 64 bits longer than that >>>>>>>>>>>>>>>>>>>>>>>>> needed to represent p to remove statistical bias introduced by the >>>>>>>>>>>>>>>>>>>>>>>>> modulation. >>>>>>>>>>>>>>>>>>>>>>>>> --> >>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>> Yes it should. citation information Barker, E. , Chen, L. , Roginsky, >>>>>>>>>>>>>>>>>>>>>>>> A. , Vassilev, A. and Davis, R. (2018), Recommendation for Pair-Wise >>>>>>>>>>>>>>>>>>>>>>>> Key-Establishment Schemes Using Discrete Logarithm Cryptography, >>>>>>>>>>>>>>>>>>>>>>>> Special Publication (NIST SP), National Institute of Standards and >>>>>>>>>>>>>>>>>>>>>>>> Technology, Gaithersburg, MD, [online], >>>>>>>>>>>>>>>>>>>>>>>> https://doi.org/10.6028/NIST.SP.800-56Ar3 >>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>> 2) Please carefully review the updated line breaks in the test vectors in Appendix B and let us know if further updates are necessary. >>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>> In >>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>> spake2: A='server', B='client' >>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>> There seems to be a spurious >>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>> 123456789012345678901234567890123456789012345678901234567890123456789012 >>>>>>>>>>>>>>>>>>>>>> after TT and then an empty line before HASH(TT), >>>>>>>>>>>>>>>>>>>>>> unlike the others. This should be removed. (Was in the original and I >>>>>>>>>>>>>>>>>>>>>> didn't see it). >>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>> 3) FYI, we have made the following updates in Section 6 to reflect RFC 9383. >>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>> Original: >>>>>>>>>>>>>>>>>>>>>>> For P256: >>>>>>>>>>>>>>>>>>>>>>> For P384: >>>>>>>>>>>>>>>>>>>>>>> For P521: >>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>> Current: >>>>>>>>>>>>>>>>>>>>>>> For P-256: >>>>>>>>>>>>>>>>>>>>>>> For P-384: >>>>>>>>>>>>>>>>>>>>>>> For P-521: >>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>> SGTM >>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>> The files have been posted here (please refresh): >>>>>>>>>>>>>>>>>>>>>>> https://www.rfc-editor.org/authors/rfc9382.xml >>>>>>>>>>>>>>>>>>>>>>> https://www.rfc-editor.org/authors/rfc9382.txt >>>>>>>>>>>>>>>>>>>>>>> https://www.rfc-editor.org/authors/rfc9382.html >>>>>>>>>>>>>>>>>>>>>>> https://www.rfc-editor.org/authors/rfc9382.pdf >>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>> The relevant diff files have been posted here: >>>>>>>>>>>>>>>>>>>>>>> https://www.rfc-editor.org/authors/rfc9382-diff.html (comprehensive diff) >>>>>>>>>>>>>>>>>>>>>>> https://www.rfc-editor.org/authors/rfc9382-auth48diff.html (AUTH48 changes) >>>>>>>>>>>>>>>>>>>>>>> https://www.rfc-editor.org/authors/rfc9382-lastdiff.html (last version to this one) >>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>> Please review the document carefully and contact us with any further updates you may have. Note that we do not make changes once a document is published as an RFC. >>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>> We will await approvals from each party listed on the AUTH48 status page below prior to moving this document forward in the publication process. >>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>> One more version, and then I will take a very careful look and likely >>>>>>>>>>>>>>>>>>>>>> approve unless I see anything else. >>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>> For the AUTH48 status of this document, please see: >>>>>>>>>>>>>>>>>>>>>>> https://www.rfc-editor.org/auth48/rfc9382 >>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>> Thank you, >>>>>>>>>>>>>>>>>>>>>>> RFC Editor/ap >>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>> On May 1, 2023, at 9:11 AM, Watson Ladd <watsonbladd@gmail.com> wrote: >>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>> Here is the response to the questions. Apologies for the delays >>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>> On Tue, Apr 4, 2023 at 1:07 AM <rfc-editor@rfc-editor.org> wrote: >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> Authors, >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> While reviewing this document during AUTH48, please resolve (as necessary) the following questions, which are also in the XML file. >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> 1) <!--[rfced] Please ensure that the guidelines listed in Section 2.1 of RFC 5743 >>>>>>>>>>>>>>>>>>>>>>>>> have been adhered to in this document. --> >>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>> They have been. >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> 2) <!--[rfced] May we update the title as follows? >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> Original: >>>>>>>>>>>>>>>>>>>>>>>>> SPAKE2, a PAKE >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> Perhaps: >>>>>>>>>>>>>>>>>>>>>>>>> Symmetric Password-Authenticated Key Exchange (SPAKE2) >>>>>>>>>>>>>>>>>>>>>>>>> --> >>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>> How about "SPAKE2, a Password-Authenticated Key Exchange"? >>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> 3) <!-- [rfced] Please insert any keywords (beyond those that appear in the title) for use on https://www.rfc-editor.org/search. --> >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> 4) <!--[rfced] FYI, we have expanded "SPAKE2" as "symmetric password-authenticated >>>>>>>>>>>>>>>>>>>>>>>>> key exchange". Please let us know if you prefer otherwise. >>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>> I'd prefer to leave it as SPAKE2: there are many symmetric >>>>>>>>>>>>>>>>>>>>>>>> password-authenticated key exchanges out there. >>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> Original: >>>>>>>>>>>>>>>>>>>>>>>>> This document describes SPAKE2 which is a protocol for two parties >>>>>>>>>>>>>>>>>>>>>>>>> that share a password to derive a strong shared key without >>>>>>>>>>>>>>>>>>>>>>>>> disclosing the password. >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> Current: >>>>>>>>>>>>>>>>>>>>>>>>> This document describes the symmetric password-authenticated key exchange (SPAKE2), >>>>>>>>>>>>>>>>>>>>>>>>> which is a protocol for two parties that share a password to derive a strong >>>>>>>>>>>>>>>>>>>>>>>>> shared key without disclosing the password. >>>>>>>>>>>>>>>>>>>>>>>>> --> >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> 5) <!--[rfced] For clarity, may we update this sentence as follows? >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> Original: >>>>>>>>>>>>>>>>>>>>>>>>> Applications that need a symmetric PAKE (password authenticated key exchange) >>>>>>>>>>>>>>>>>>>>>>>>> and where hashing onto an elliptic curve at execution time is not >>>>>>>>>>>>>>>>>>>>>>>>> possible can use SPAKE2. >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> Perhaps: >>>>>>>>>>>>>>>>>>>>>>>>> Applications that need a symmetric PAKE, but are unable to hash onto an >>>>>>>>>>>>>>>>>>>>>>>>> elliptic curve at execution time, can use SPAKE2. >>>>>>>>>>>>>>>>>>>>>>>>> --> >>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>> Sounds good >>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> 6) <!--[rfced] Section 3.1: Does "setup protocol" mean >>>>>>>>>>>>>>>>>>>>>>>>> "the setup protocol" or "set up the protocol"? We ask >>>>>>>>>>>>>>>>>>>>>>>>> because the other items in the diagrams (of this document >>>>>>>>>>>>>>>>>>>>>>>>> and RFC-to-be 9383) start with verbs ("compute", "derive", >>>>>>>>>>>>>>>>>>>>>>>>> and "check"). >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> Original: >>>>>>>>>>>>>>>>>>>>>>>>> | (setup protocol) | >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> Perhaps: >>>>>>>>>>>>>>>>>>>>>>>>> | (set up the protocol) | >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> FYI, your reply to this question will be discussed with the >>>>>>>>>>>>>>>>>>>>>>>>> authors of RFC-to-be 9383 because that document also >>>>>>>>>>>>>>>>>>>>>>>>> uses "setup protocol" in a diagram in Section 3.1. >>>>>>>>>>>>>>>>>>>>>>>>> --> >>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>> Set up the protocol is clearer, let's do that. >>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> 7) <!--[rfced] FYI, we have updated "gap Diffie-Hellman" to "GDH" >>>>>>>>>>>>>>>>>>>>>>>>> when it appears after the initial expansion. >>>>>>>>>>>>>>>>>>>>>>>>> --> >>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>> SGTM >>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> 8) <!--[rfced] May we point directly to Table 1 in these two sentences from >>>>>>>>>>>>>>>>>>>>>>>>> Section 3.2 and Appendix A? FYI, "Table 1" will be a link in the >>>>>>>>>>>>>>>>>>>>>>>>> HTML and PDF outputs. >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> Original: >>>>>>>>>>>>>>>>>>>>>>>>> We fix two elements M and N in >>>>>>>>>>>>>>>>>>>>>>>>> the prime-order subgroup of G as defined in the table in this >>>>>>>>>>>>>>>>>>>>>>>>> document for common groups, as well as a generator P of the (large) >>>>>>>>>>>>>>>>>>>>>>>>> prime-order subgroup of G. >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> Perhaps: >>>>>>>>>>>>>>>>>>>>>>>>> We fix two elements, M and N, in >>>>>>>>>>>>>>>>>>>>>>>>> the prime-order subgroup of G, as defined in Table 1 of this >>>>>>>>>>>>>>>>>>>>>>>>> document for common groups, as well as generator P of the (large) >>>>>>>>>>>>>>>>>>>>>>>>> prime-order subgroup of G. >>>>>>>>>>>>>>>>>>>>>>>>> ... >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> Original: >>>>>>>>>>>>>>>>>>>>>>>>> This section describes the algorithm that was used to generate the >>>>>>>>>>>>>>>>>>>>>>>>> points M and N in the table in Section 6. >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> Perhaps: >>>>>>>>>>>>>>>>>>>>>>>>> This section describes the algorithm that was used to generate >>>>>>>>>>>>>>>>>>>>>>>>> points M and N in Table 1. >>>>>>>>>>>>>>>>>>>>>>>>> --> >>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>> SGTM. >>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> 9) <!--[rfced] Should "intermediate keying material (IKM)" be changed to >>>>>>>>>>>>>>>>>>>>>>>>> "input keying material (IKM)" as in RFC 5869 (which is cited in both this >>>>>>>>>>>>>>>>>>>>>>>>> document and RFC-to-be 9383)? >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> Original: >>>>>>>>>>>>>>>>>>>>>>>>> KDF(ikm, salt, info, L) is a key-derivation function that takes as >>>>>>>>>>>>>>>>>>>>>>>>> input a salt, intermediate keying material (IKM), ... >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> FYI, your reply to this question will be discussed with the authors >>>>>>>>>>>>>>>>>>>>>>>>> of RFC-to-be 9383 because it also uses "intermediate". >>>>>>>>>>>>>>>>>>>>>>>>> --> >>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>> Yes it should be. >>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> 10) <!--[rfced] Should this sentence include a citation after "NIST.SP.800-56Ar3"? >>>>>>>>>>>>>>>>>>>>>>>>> If so, please provide the reference information. >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> Original: >>>>>>>>>>>>>>>>>>>>>>>>> Standards such as NIST.SP.800-56Ar3 >>>>>>>>>>>>>>>>>>>>>>>>> suggest taking mod p of a hash value that is 64 bits longer than that >>>>>>>>>>>>>>>>>>>>>>>>> needed to represent p to remove statistical bias introduced by the >>>>>>>>>>>>>>>>>>>>>>>>> modulation. >>>>>>>>>>>>>>>>>>>>>>>>> --> >>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>> Yes it should. citation information Barker, E. , Chen, L. , Roginsky, >>>>>>>>>>>>>>>>>>>>>>>> A. , Vassilev, A. and Davis, R. (2018), Recommendation for Pair-Wise >>>>>>>>>>>>>>>>>>>>>>>> Key-Establishment Schemes Using Discrete Logarithm Cryptography, >>>>>>>>>>>>>>>>>>>>>>>> Special Publication (NIST SP), National Institute of Standards and >>>>>>>>>>>>>>>>>>>>>>>> Technology, Gaithersburg, MD, [online], >>>>>>>>>>>>>>>>>>>>>>>> https://doi.org/10.6028/NIST.SP.800-56Ar3 >>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> 11) <!--[rfced] We are having some difficulty parsing this sentence. How should >>>>>>>>>>>>>>>>>>>>>>>>> it be updated? >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> Original: >>>>>>>>>>>>>>>>>>>>>>>>> This variant MUST be used when it is not possible to determine which >>>>>>>>>>>>>>>>>>>>>>>>> of A and B should use M or N, due to asymmetries in the protocol >>>>>>>>>>>>>>>>>>>>>>>>> flows or the desire to use only a single shared secret with nil >>>>>>>>>>>>>>>>>>>>>>>>> identities for authentication. >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> Perhaps: >>>>>>>>>>>>>>>>>>>>>>>>> This variant MUST be used when it is not possible to determine whether >>>>>>>>>>>>>>>>>>>>>>>>> A or B should use M or N, due to asymmetries in the protocol >>>>>>>>>>>>>>>>>>>>>>>>> flows or the desire to use only a single shared secret with nil >>>>>>>>>>>>>>>>>>>>>>>>> identities for authentication. >>>>>>>>>>>>>>>>>>>>>>>>> --> >>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>> I think the second is clearer. >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> 12) <!-- [rfced] Would you like the references to be alphabetized >>>>>>>>>>>>>>>>>>>>>>>>> or left in their current order? >>>>>>>>>>>>>>>>>>>>>>>>> --> >>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>> Alphebetized please >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> 13) <!-- [rfced] The following reference is not cited in the text. Please >>>>>>>>>>>>>>>>>>>>>>>>> let us know where it should be cited or if it should be deleted from >>>>>>>>>>>>>>>>>>>>>>>>> the References section. >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> Original: >>>>>>>>>>>>>>>>>>>>>>>>> [TDH] Cash, D., Kiltz, E., and V. Shoup, "The Twin-Diffie >>>>>>>>>>>>>>>>>>>>>>>>> Hellman Problem and Applications", 2008. EUROCRYPT 2008. >>>>>>>>>>>>>>>>>>>>>>>>> Volume 4965 of Lecture notes in Computer Science, pages >>>>>>>>>>>>>>>>>>>>>>>>> 127-145. Springer-Verlag, Berlin, Germany. >>>>>>>>>>>>>>>>>>>>>>>>> --> >>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>> I think it should be removed. >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> 14) <!--[rfced] Should "the table below" be changed to "Table 1"? >>>>>>>>>>>>>>>>>>>>>>>>> We note that no table appears below this sentence from Appendix A. >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> Original: >>>>>>>>>>>>>>>>>>>>>>>>> For each curve in the table below, we construct a string using the >>>>>>>>>>>>>>>>>>>>>>>>> curve OID from [RFC5480] (as an ASCII string) or its name, combined >>>>>>>>>>>>>>>>>>>>>>>>> with the needed constant... >>>>>>>>>>>>>>>>>>>>>>>>> --> >>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>> It should be table 1. >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> 15) <!-- [rfced] Appendix A: FYI, due to the line-length limitation of >>>>>>>>>>>>>>>>>>>>>>>>> 69 characters within the sourcecode element, we have added a line break >>>>>>>>>>>>>>>>>>>>>>>>> as follows. Please let us know if would like to change the indentation. >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> Original: >>>>>>>>>>>>>>>>>>>>>>>>> hashes = [iterated_hash(seed, i) for i in range(start, start + n)] >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> Current: >>>>>>>>>>>>>>>>>>>>>>>>> hashes = [iterated_hash(seed, i) >>>>>>>>>>>>>>>>>>>>>>>>> for i in range(start, start + n)] >>>>>>>>>>>>>>>>>>>>>>>>> --> >>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>> That works. >>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> 16) <!--[rfced] The test vectors in Appendix B.1 include lines that exceed >>>>>>>>>>>>>>>>>>>>>>>>> the 72-character limit. Please let us know where to insert line breaks. >>>>>>>>>>>>>>>>>>>>>>>>> To summarize the line-length limitations: >>>>>>>>>>>>>>>>>>>>>>>>> * 72 characters for artwork elements. (Note: in the text output, >>>>>>>>>>>>>>>>>>>>>>>>> the renderer will "outdent" into the left margin for artwork >>>>>>>>>>>>>>>>>>>>>>>>> that is over 69 characters.) >>>>>>>>>>>>>>>>>>>>>>>>> * 69 characters for sourcecode elements. >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> For example, may they simply be wrapped at 72 chars as follows? >>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>> Simple wrapping will be fine, but best would be to wrap always an even >>>>>>>>>>>>>>>>>>>>>>>> number of characters. >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> Original: >>>>>>>>>>>>>>>>>>>>>>>>> Hash(TT) = 0x0e0672dc86f8e45565d338b0540abe6915bdf72e2b35b5c9e5663168e960a91b >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>> I think >>>>>>>>>>>>>>>>>>>>>>>> HASH(TT)=0x0e0672dc86f8e45565d338b0540abe6915bdf72e2b35b5c9e5663168e9 >>>>>>>>>>>>>>>>>>>>>>>> 60a91b >>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>> would be slightly better as then we'd always preserve the bytes >>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> Also, please let us know if you'd like to add a sentence like >>>>>>>>>>>>>>>>>>>>>>>>> "Line breaks have been added due to line-length limitations" >>>>>>>>>>>>>>>>>>>>>>>>> (as in RFC 7790 and other documents). >>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>> I think that should be added. >>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> --> >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> 17) <!--[rfced] Is having a division for Appendix B.1 necessary? It seems to >>>>>>>>>>>>>>>>>>>>>>>>> be all the content of Appendix B, so could Appendix B simply be renamed? >>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>> Sounds good. >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> Original: >>>>>>>>>>>>>>>>>>>>>>>>> Appendix B. Test Vectors >>>>>>>>>>>>>>>>>>>>>>>>> B.1. SPAKE2 Test Vectors >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> Perhaps: >>>>>>>>>>>>>>>>>>>>>>>>> Appendix B. SPAKE2 Test Vectors >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> (FYI, the one large artwork element has been separated into >>>>>>>>>>>>>>>>>>>>>>>>> 4 artwork elements, as there seem to be 4 invocations. Please let >>>>>>>>>>>>>>>>>>>>>>>>> us know if you prefer otherwise.) >>>>>>>>>>>>>>>>>>>>>>>>> --> >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> 18) <!--[rfced] In running text, this term appears to be hyphenated >>>>>>>>>>>>>>>>>>>>>>>>> inconsistently. Please review it and let us know if/how it >>>>>>>>>>>>>>>>>>>>>>>>> may be made consistent. >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> SHA256 (3 instances) vs. SHA-256 (1 instance) >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> We note this issue also affects draft-irtf-cfrg-vrf-15, which >>>>>>>>>>>>>>>>>>>>>>>>> is in this document cluster, >>>>>>>>>>>>>>>>>>>>>>>>> e.g., no hyphen: >>>>>>>>>>>>>>>>>>>>>>>>> "choices for Hash are SHA256 or SHA512 [RFC6234]" in this document >>>>>>>>>>>>>>>>>>>>>>>>> vs. hyphenated: >>>>>>>>>>>>>>>>>>>>>>>>> "Hash is SHA-512 as specified in [RFC6234]" in draft-irtf-cfrg-vrf-15. >>>>>>>>>>>>>>>>>>>>>>>>> --> >>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>> Let us hyphenate. >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> 19) <!-- [rfced] Please review the "Inclusive Language" portion of the >>>>>>>>>>>>>>>>>>>>>>>>> online Style Guide >>>>>>>>>>>>>>>>>>>>>>>>> <https://www.rfc-editor.org/styleguide/part2/#inclusive_language> >>>>>>>>>>>>>>>>>>>>>>>>> and let us know if any changes are needed. For example, please consider >>>>>>>>>>>>>>>>>>>>>>>>> whether "man-in-the-middle" should be updated. >>>>>>>>>>>>>>>>>>>>>>>>> --> >>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>> In section 3.3 >>>>>>>>>>>>>>>>>>>>>>>> OLD >>>>>>>>>>>>>>>>>>>>>>>> "This prevents man-in-the-middle attackers from inserting themselves >>>>>>>>>>>>>>>>>>>>>>>> into the exchange" >>>>>>>>>>>>>>>>>>>>>>>> NEW >>>>>>>>>>>>>>>>>>>>>>>> "This use of the transcript ensures any manipulation of the messages >>>>>>>>>>>>>>>>>>>>>>>> sent is reflected in the keys". >>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> Thank you. >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> RFC Editor/ap/ar >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> On Apr 3, 2023, rfc-editor@rfc-editor.org wrote: >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> *****IMPORTANT***** >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> Updated 2023/04/03 >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> RFC Author(s): >>>>>>>>>>>>>>>>>>>>>>>>> -------------- >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> Instructions for Completing AUTH48 >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> Your document has now entered AUTH48. Once it has been reviewed and >>>>>>>>>>>>>>>>>>>>>>>>> approved by you and all coauthors, it will be published as an RFC. >>>>>>>>>>>>>>>>>>>>>>>>> If an author is no longer available, there are several remedies >>>>>>>>>>>>>>>>>>>>>>>>> available as listed in the FAQ (https://www.rfc-editor.org/faq/). >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> You and you coauthors are responsible for engaging other parties >>>>>>>>>>>>>>>>>>>>>>>>> (e.g., Contributors or Working Group) as necessary before providing >>>>>>>>>>>>>>>>>>>>>>>>> your approval. >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> Planning your review >>>>>>>>>>>>>>>>>>>>>>>>> --------------------- >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> Please review the following aspects of your document: >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> * RFC Editor questions >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> Please review and resolve any questions raised by the RFC Editor >>>>>>>>>>>>>>>>>>>>>>>>> that have been included in the XML file as comments marked as >>>>>>>>>>>>>>>>>>>>>>>>> follows: >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> <!-- [rfced] ... --> >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> These questions will also be sent in a subsequent email. >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> * Changes submitted by coauthors >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> Please ensure that you review any changes submitted by your >>>>>>>>>>>>>>>>>>>>>>>>> coauthors. We assume that if you do not speak up that you >>>>>>>>>>>>>>>>>>>>>>>>> agree to changes submitted by your coauthors. >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> * Content >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> Please review the full content of the document, as this cannot >>>>>>>>>>>>>>>>>>>>>>>>> change once the RFC is published. Please pay particular attention to: >>>>>>>>>>>>>>>>>>>>>>>>> - IANA considerations updates (if applicable) >>>>>>>>>>>>>>>>>>>>>>>>> - contact information >>>>>>>>>>>>>>>>>>>>>>>>> - references >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> * Copyright notices and legends >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> Please review the copyright notice and legends as defined in >>>>>>>>>>>>>>>>>>>>>>>>> RFC 5378 and the Trust Legal Provisions >>>>>>>>>>>>>>>>>>>>>>>>> (TLP – https://trustee.ietf.org/license-info/). >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> * Semantic markup >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> Please review the markup in the XML file to ensure that elements of >>>>>>>>>>>>>>>>>>>>>>>>> content are correctly tagged. For example, ensure that <sourcecode> >>>>>>>>>>>>>>>>>>>>>>>>> and <artwork> are set correctly. See details at >>>>>>>>>>>>>>>>>>>>>>>>> <https://authors.ietf.org/rfcxml-vocabulary>. >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> * Formatted output >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> Please review the PDF, HTML, and TXT files to ensure that the >>>>>>>>>>>>>>>>>>>>>>>>> formatted output, as generated from the markup in the XML file, is >>>>>>>>>>>>>>>>>>>>>>>>> reasonable. Please note that the TXT will have formatting >>>>>>>>>>>>>>>>>>>>>>>>> limitations compared to the PDF and HTML. >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> Submitting changes >>>>>>>>>>>>>>>>>>>>>>>>> ------------------ >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> To submit changes, please reply to this email using ‘REPLY ALL’ as all >>>>>>>>>>>>>>>>>>>>>>>>> the parties CCed on this message need to see your changes. The parties >>>>>>>>>>>>>>>>>>>>>>>>> include: >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> * your coauthors >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> * rfc-editor@rfc-editor.org (the RPC team) >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> * other document participants, depending on the stream (e.g., >>>>>>>>>>>>>>>>>>>>>>>>> IETF Stream participants are your working group chairs, the >>>>>>>>>>>>>>>>>>>>>>>>> responsible ADs, and the document shepherd). >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> * auth48archive@rfc-editor.org, which is a new archival mailing list >>>>>>>>>>>>>>>>>>>>>>>>> to preserve AUTH48 conversations; it is not an active discussion >>>>>>>>>>>>>>>>>>>>>>>>> list: >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> * More info: >>>>>>>>>>>>>>>>>>>>>>>>> https://mailarchive.ietf.org/arch/msg/ietf-announce/yb6lpIGh-4Q9l2USxIAe6P8O4Zc >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> * The archive itself: >>>>>>>>>>>>>>>>>>>>>>>>> https://mailarchive.ietf.org/arch/browse/auth48archive/ >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> * Note: If only absolutely necessary, you may temporarily opt out >>>>>>>>>>>>>>>>>>>>>>>>> of the archiving of messages (e.g., to discuss a sensitive matter). >>>>>>>>>>>>>>>>>>>>>>>>> If needed, please add a note at the top of the message that you >>>>>>>>>>>>>>>>>>>>>>>>> have dropped the address. When the discussion is concluded, >>>>>>>>>>>>>>>>>>>>>>>>> auth48archive@rfc-editor.org will be re-added to the CC list and >>>>>>>>>>>>>>>>>>>>>>>>> its addition will be noted at the top of the message. >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> You may submit your changes in one of two ways: >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> An update to the provided XML file >>>>>>>>>>>>>>>>>>>>>>>>> — OR — >>>>>>>>>>>>>>>>>>>>>>>>> An explicit list of changes in this format >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> Section # (or indicate Global) >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> OLD: >>>>>>>>>>>>>>>>>>>>>>>>> old text >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> NEW: >>>>>>>>>>>>>>>>>>>>>>>>> new text >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> You do not need to reply with both an updated XML file and an explicit >>>>>>>>>>>>>>>>>>>>>>>>> list of changes, as either form is sufficient. >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> We will ask a stream manager to review and approve any changes that seem >>>>>>>>>>>>>>>>>>>>>>>>> beyond editorial in nature, e.g., addition of new text, deletion of text, >>>>>>>>>>>>>>>>>>>>>>>>> and technical changes. Information about stream managers can be found in >>>>>>>>>>>>>>>>>>>>>>>>> the FAQ. Editorial changes do not require approval from a stream manager. >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> Approving for publication >>>>>>>>>>>>>>>>>>>>>>>>> -------------------------- >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> To approve your RFC for publication, please reply to this email stating >>>>>>>>>>>>>>>>>>>>>>>>> that you approve this RFC for publication. Please use ‘REPLY ALL’, >>>>>>>>>>>>>>>>>>>>>>>>> as all the parties CCed on this message need to see your approval. >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> Files >>>>>>>>>>>>>>>>>>>>>>>>> ----- >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> The files are available here: >>>>>>>>>>>>>>>>>>>>>>>>> https://www.rfc-editor.org/authors/rfc9382.xml >>>>>>>>>>>>>>>>>>>>>>>>> https://www.rfc-editor.org/authors/rfc9382.html >>>>>>>>>>>>>>>>>>>>>>>>> https://www.rfc-editor.org/authors/rfc9382.pdf >>>>>>>>>>>>>>>>>>>>>>>>> https://www.rfc-editor.org/authors/rfc9382.txt >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> Diff file of the text: >>>>>>>>>>>>>>>>>>>>>>>>> https://www.rfc-editor.org/authors/rfc9382-diff.html >>>>>>>>>>>>>>>>>>>>>>>>> https://www.rfc-editor.org/authors/rfc9382-rfcdiff.html (side by side) >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> Diff of the XML: >>>>>>>>>>>>>>>>>>>>>>>>> https://www.rfc-editor.org/authors/rfc9382-xmldiff1.html >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> The following files are provided to facilitate creation of your own >>>>>>>>>>>>>>>>>>>>>>>>> diff files of the XML. >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> Initial XMLv3 created using XMLv2 as input: >>>>>>>>>>>>>>>>>>>>>>>>> https://www.rfc-editor.org/authors/rfc9382.original.v2v3.xml >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> XMLv3 file that is a best effort to capture v3-related format updates >>>>>>>>>>>>>>>>>>>>>>>>> only: >>>>>>>>>>>>>>>>>>>>>>>>> https://www.rfc-editor.org/authors/rfc9382.form.xml >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> Tracking progress >>>>>>>>>>>>>>>>>>>>>>>>> ----------------- >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> The details of the AUTH48 status of your document are here: >>>>>>>>>>>>>>>>>>>>>>>>> https://www.rfc-editor.org/auth48/rfc9382 >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> Please let us know if you have any questions. >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> Thank you for your cooperation, >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> RFC Editor >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> -------------------------------------- >>>>>>>>>>>>>>>>>>>>>>>>> RFC9382 (draft-irtf-cfrg-spake2-26) >>>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>>> Title : SPAKE2, a PAKE >>>>>>>>>>>>>>>>>>>>>>>>> Author(s) : W. Ladd, B. Kaduk, Ed. >>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>> -- >>>>>>>>>>>>>>>>>>>>>>>> Astra mortemque praestare gradatim >>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>>>>> -- >>>>>>>>>>>>>>>>>>>>>>>> Astra mortemque praestare gradatim >>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>> -- >>>>>>>>>>>>>>>>>> Astra mortemque praestare gradatim >>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>> >>>>>>>>>>>>>>> >>>>>>>>>>>>>> >>>>>>>>>>>>>> >>>>>>>>>>>>> >>>>>>>>>>>> >>>>>>>>>>> >>>>>>>>>>> >>>>>>>>>> >>>>>>>>> >>>>>>>>> >>>>>>>>> >>>>>>>>> >>>>>>>> >>>>>>>> >>>>>>>> >>>>>>>> >>>>>>> >>>>>>> >>>>>>> >>>>>>> >>>>>> >>>>>> >>>>>> >>>>>> >>>>> >>>>> >>>> >>> >> >
- [auth48] AUTH48: RFC-to-be 9382 <draft-irtf-cfrg-… rfc-editor
- Re: [auth48] AUTH48: RFC-to-be 9382 <draft-irtf-c… rfc-editor
- [auth48] Two minor changes (was Re: AUTH48: RFC-t… Watson Ladd
- Re: [auth48] AUTH48: RFC-to-be 9382 <draft-irtf-c… Alanna Paloma
- Re: [auth48] AUTH48: RFC-to-be 9382 <draft-irtf-c… Alanna Paloma
- Re: [auth48] AUTH48: RFC-to-be 9382 <draft-irtf-c… Alanna Paloma
- Re: [auth48] AUTH48: RFC-to-be 9382 <draft-irtf-c… Alanna Paloma
- Re: [auth48] AUTH48: RFC-to-be 9382 <draft-irtf-c… Watson Ladd
- [auth48] Fwd: AUTH48: RFC-to-be 9382 <draft-irtf-… Watson Ladd
- Re: [auth48] AUTH48: RFC-to-be 9382 <draft-irtf-c… Alanna Paloma
- Re: [auth48] AUTH48: RFC-to-be 9382 <draft-irtf-c… Watson Ladd
- [auth48] [Document Shepherd] Re: AUTH48: RFC-to-b… Alanna Paloma
- [auth48] One last nit (was Re: AUTH48: RFC-to-be … Watson Ladd
- Re: [auth48] [Document Shepherd] Re: AUTH48: RFC-… Stanislav V. Smyshlyaev
- Re: [auth48] AUTH48: RFC-to-be 9382 <draft-irtf-c… Alanna Paloma
- Re: [auth48] AUTH48: RFC-to-be 9382 <draft-irtf-c… Alanna Paloma
- Re: [auth48] AUTH48: RFC-to-be 9382 <draft-irtf-c… Watson Ladd
- Re: [auth48] AUTH48: RFC-to-be 9382 <draft-irtf-c… Stanislav V. Smyshlyaev
- Re: [auth48] AUTH48: RFC-to-be 9382 <draft-irtf-c… Alanna Paloma
- Re: [auth48] AUTH48: RFC-to-be 9382 <draft-irtf-c… Alanna Paloma
- Re: [auth48] AUTH48: RFC-to-be 9382 <draft-irtf-c… Alanna Paloma
- Re: [auth48] AUTH48: RFC-to-be 9382 <draft-irtf-c… Alanna Paloma
- [auth48] [Document Shepherd] Re: AUTH48: RFC-to-b… Alanna Paloma
- Re: [auth48] [Document Shepherd] Re: AUTH48: RFC-… Benjamin Kaduk
- Re: [auth48] [Document Shepherd] Re: AUTH48: RFC-… Stanislav V. Smyshlyaev
- Re: [auth48] [Document Shepherd] Re: AUTH48: RFC-… Stanislav V. Smyshlyaev
- Re: [auth48] [Document Shepherd] AUTH48: RFC-to-b… Alanna Paloma
- Re: [auth48] [Document Shepherd] AUTH48: RFC-to-b… Benjamin Kaduk
- Re: [auth48] [Document Shepherd] AUTH48: RFC-to-b… Alanna Paloma
- Re: [auth48] [Document Shepherd] AUTH48: RFC-to-b… Alanna Paloma
- Re: [auth48] [Document Shepherd] AUTH48: RFC-to-b… Alanna Paloma
- Re: [auth48] [Document Shepherd] AUTH48: RFC-to-b… Alanna Paloma
- [auth48] [Ben] AUTH48: RFC-to-be 9382 <draft-irtf… Sandy Ginoza
- Re: [auth48] [Ben] AUTH48: RFC-to-be 9382 <draft-… Benjamin Kaduk
- Re: [auth48] [Ben] AUTH48: RFC-to-be 9382 <draft-… Sandy Ginoza
- Re: [auth48] [Ben] AUTH48: RFC-to-be 9382 <draft-… Alanna Paloma
- Re: [auth48] [Ben] AUTH48: RFC-to-be 9382 <draft-… Alanna Paloma
- Re: [auth48] [Ben] AUTH48: RFC-to-be 9382 <draft-… Alanna Paloma
- Re: [auth48] [Ben] AUTH48: RFC-to-be 9382 <draft-… Sandy Ginoza
- Re: [auth48] [Ben] AUTH48: RFC-to-be 9382 <draft-… Stanislav V. Smyshlyaev
- Re: [auth48] [Ben] AUTH48: RFC-to-be 9382 <draft-… Watson Ladd
- Re: [auth48] [Ben] AUTH48: RFC-to-be 9382 <draft-… Stanislav V. Smyshlyaev
- Re: [auth48] [Ben] AUTH48: RFC-to-be 9382 <draft-… Benjamin Kaduk
- Re: [auth48] [Ben] AUTH48: RFC-to-be 9382 <draft-… Alanna Paloma
- Re: [auth48] [Ben] AUTH48: RFC-to-be 9382 <draft-… Watson Ladd
- Re: [auth48] [Ben] AUTH48: RFC-to-be 9382 <draft-… Alanna Paloma
- Re: [auth48] [irsg] [Ben] AUTH48: RFC-to-be 9382 … Christopher Wood
- Re: [auth48] [irsg] [Ben] AUTH48: RFC-to-be 9382 … Watson Ladd
- Re: [auth48] [irsg] [Ben] AUTH48: RFC-to-be 9382 … Alanna Paloma