IETF Logo Mail Archive

Re: [AVTCORE] Summary of discussion with IESG and call for consensus regarding AES-GCM draft

Magnus Westerlund <magnus.westerlund@ericsson.com> Tue, 17 March 2015 07:44 UTC

Return-Path: <magnus.westerlund@ericsson.com>
X-Original-To: avt@ietfa.amsl.com
Delivered-To: avt@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 962351A00ED for <avt@ietfa.amsl.com>; Tue, 17 Mar 2015 00:44:52 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.201
X-Spam-Level:
X-Spam-Status: No, score=-4.201 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id fsrx8IHRrDqb for <avt@ietfa.amsl.com>; Tue, 17 Mar 2015 00:44:50 -0700 (PDT)
Received: from sessmg22.ericsson.net (sessmg22.ericsson.net [193.180.251.58]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 8D5591A00EC for <avt@ietf.org>; Tue, 17 Mar 2015 00:44:49 -0700 (PDT)
X-AuditID: c1b4fb3a-f79146d0000070a3-ff-5507db6fe7d6
Received: from ESESSHC011.ericsson.se (Unknown_Domain [153.88.253.124]) by sessmg22.ericsson.net (Symantec Mail Security) with SMTP id D4.23.28835.F6BD7055; Tue, 17 Mar 2015 08:44:47 +0100 (CET)
Received: from [127.0.0.1] (153.88.183.153) by smtp.internal.ericsson.com (153.88.183.53) with Microsoft SMTP Server id 14.3.210.2; Tue, 17 Mar 2015 08:44:47 +0100
Message-ID: <5507DB6D.9000504@ericsson.com>
Date: Tue, 17 Mar 2015 08:44:45 +0100
From: Magnus Westerlund <magnus.westerlund@ericsson.com>
User-Agent: Mozilla/5.0 (Windows NT 6.1; rv:31.0) Gecko/20100101 Thunderbird/31.5.0
MIME-Version: 1.0
To: IETF AVTCore WG <avt@ietf.org>
References: <54F44F2D.4060803@ericsson.com>
In-Reply-To: <54F44F2D.4060803@ericsson.com>
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 8bit
X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFlrELMWRmVeSWpSXmKPExsUyM+JvjW7+bfZQg+U/9Sxe9qxkt1h7JNGB yWPJkp9MHl8uf2YLYIrisklJzcksSy3St0vgyvhxuIe54IloxbQnLawNjLsFuxg5OSQETCSm r17JBmGLSVy4tx7MFhI4wiix765KFyMXkL2cUWLmzW4WkASvgLbEh6XfwGwWAVWJk5N+gDWw CVhI3PzRCGaLCgRL/GzfzQRRLyhxcuYTsHoRASWJHZO2MYPYzALpEp1zHzOC2MJA9tS5EPVC QPMbn60Fq+cU0JE41PyKtYuRA6heU2L9Ln2IVnmJ5q2zmWHKG5o6WCcwCs5Csm0WQscsJB0L GJlXMYoWpxYX56YbGemlFmUmFxfn5+nlpZZsYgQG6sEtv612MB587niIUYCDUYmHd8MM9lAh 1sSy4srcQ4zSHCxK4rx2xodChATSE0tSs1NTC1KL4otKc1KLDzEycXBKNTDWxS+8ukjn0byE Z4/k+6ouyF3YLh+ccy403pf7BPtu1fjNhk9ZIsxarXmlHQJPb2UK4Cz8/PWKw6WnIeZz9RZl pa1q8rjik/731K+nl7mVK6oXSF+U5zYWnPr1mqz7dB6R4kYpbaWnCyeVrrV1KTwtd6NKyNl9 17rsq/M6Hj17ySfY97Tg9GUlluKMREMt5qLiRACUHsNLNQIAAA==
Archived-At: <http://mailarchive.ietf.org/arch/msg/avt/-8eaZ28Iy-4LGYtNzGlx7PtgnEA>
Cc: "draft-ietf-avtcore-srtp-aes-gcm@tools.ietf.org" <draft-ietf-avtcore-srtp-aes-gcm@tools.ietf.org>
Subject: Re: [AVTCORE] Summary of discussion with IESG and call for consensus regarding AES-GCM draft
X-BeenThere: avt@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Audio/Video Transport Core Maintenance <avt.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/avt>, <mailto:avt-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/avt/>
List-Post: <mailto:avt@ietf.org>
List-Help: <mailto:avt-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/avt>, <mailto:avt-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 17 Mar 2015 07:44:52 -0000

WG,

I note that the deadline is past and no one has opposed the proposal.
There was discussion about the payload length vs number of payloads that
could be sent while staying within NIST's recommendation for the
algorithm when using the 64 bit authentication tag option. To my
understanding the discussion concluded in a recommendation to make clear
that as long as you don't have payloads longer than 2^15 one only need
to rekey as often as SRTP requires due to wrapping of extended sequence
number used.

Authors, please prepare an update draft with only AES-GCM and submit it
as soon as possible.

Cheers

Magnus Westerlund
(As WG chair)

On 2015-03-02 12:53, Magnus Westerlund wrote:
> WG,
> 
> Last Thursday Kevin Igoe and I participated in a phone conference with
> IESG to discuss the way forward with draft-ietf-avtcore-srtp-aes-gcm.
> 
> After some discussion the conclusion was the following:
> 
> 1. Proposal to remove AES-CCM modes from the draft, if clear need arise
> a AES-CCM only separate draft can be created. But, that will not be done
> without clear motivation for why CCM is needed. So if you think CCM is
> required, please step up and comment on this.
> 
> 2. The AES-GCM draft is proposed to contain the following configurations:
> 
>        AEAD_AES_128_GCM     (with 16 byte authentication tag)
>        AEAD_AES_128_GCM_64  (with 8 byte authentication tag)
>        AEAD_AES_256_GCM     (with 16 byte authentication tag)
> 
> 
> If any one in the WG has issues with either of these proposals, please
> comment on this no later than 16th of March.
> 
> Cheers
> 
> Magnus Westerlund
> 
> ----------------------------------------------------------------------
> Services, Media and Network features, Ericsson Research EAB/TXM
> ----------------------------------------------------------------------
> Ericsson AB                 | Phone  +46 10 7148287
> Färögatan 6                 | Mobile +46 73 0949079
> SE-164 80 Stockholm, Sweden | mailto: magnus.westerlund@ericsson.com
> ----------------------------------------------------------------------
> 
> _______________________________________________
> Audio/Video Transport Core Maintenance
> avt@ietf.org
> https://www.ietf.org/mailman/listinfo/avt
> 


-- 

Magnus Westerlund

----------------------------------------------------------------------
Services, Media and Network features, Ericsson Research EAB/TXM
----------------------------------------------------------------------
Ericsson AB                 | Phone  +46 10 7148287
Färögatan 6                 | Mobile +46 73 0949079
SE-164 80 Stockholm, Sweden | mailto: magnus.westerlund@ericsson.com
----------------------------------------------------------------------

v2.23.0 | Report a Bug | By Email