IETF Logo Mail Archive

Re: [AVTCORE] Stephen Farrell's Discuss on draft-ietf-avtcore-srtp-aes-gcm-14: (with DISCUSS)

Stephen Farrell <stephen.farrell@cs.tcd.ie> Tue, 24 February 2015 12:06 UTC

Return-Path: <stephen.farrell@cs.tcd.ie>
X-Original-To: avt@ietfa.amsl.com
Delivered-To: avt@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 310271A1A00; Tue, 24 Feb 2015 04:06:55 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.21
X-Spam-Level:
X-Spam-Status: No, score=-4.21 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3, T_RP_MATCHES_RCVD=-0.01] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id yA0zPQMl4T1O; Tue, 24 Feb 2015 04:06:54 -0800 (PST)
Received: from mercury.scss.tcd.ie (mercury.scss.tcd.ie [134.226.56.6]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id BD6071A19F2; Tue, 24 Feb 2015 04:06:53 -0800 (PST)
Received: from localhost (localhost [127.0.0.1]) by mercury.scss.tcd.ie (Postfix) with ESMTP id 715D1BED8; Tue, 24 Feb 2015 12:06:52 +0000 (GMT)
X-Virus-Scanned: Debian amavisd-new at scss.tcd.ie
Received: from mercury.scss.tcd.ie ([127.0.0.1]) by localhost (mercury.scss.tcd.ie [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id q5ERmPLi_qld; Tue, 24 Feb 2015 12:06:50 +0000 (GMT)
Received: from [10.87.48.73] (unknown [86.46.27.159]) by mercury.scss.tcd.ie (Postfix) with ESMTPSA id 40184BED4; Tue, 24 Feb 2015 12:06:50 +0000 (GMT)
Message-ID: <54EC6956.8090009@cs.tcd.ie>
Date: Tue, 24 Feb 2015 12:06:46 +0000
From: Stephen Farrell <stephen.farrell@cs.tcd.ie>
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:31.0) Gecko/20100101 Thunderbird/31.4.0
MIME-Version: 1.0
To: Magnus Westerlund <magnus.westerlund@ericsson.com>, David McGrew <mcgrew@cisco.com>
References: <20141029122825.18943.78129.idtracker@ietfa.amsl.com> <3C4AAD4B5304AB44A6BA85173B4675CABC709A18@MSMR-GH1-UEA03.corp.nsa.gov> <545151F9.9050502@cs.tcd.ie> <B1821703-9D09-41C5-AAC1-5EBB9CE2ACC4@cisco.com> <54516572.8020601@cs.tcd.ie> <D825D4F3-26D3-49BE-9E32-0E4FFF89BC40@cisco.com> <5451737B.6060504@cs.tcd.ie> <2D4BE3ED-840A-444C-9D18-09BC3D937D64@cisco.com> <54CA135D.3020304@ericsson.com> <54D4D840.4080808@cs.tcd.ie> <54D8A297.9090505@ericsson.com> <54D93B9A.9090409@cs.tcd.ie> <54DA0C45.2030609@ericsson.com> <E1F851A6-B098-4F8C-8AE1-B88BD1E1DCD9@cisco.com> <54E608E5.1070102@ericsson.com>
In-Reply-To: <54E608E5.1070102@ericsson.com>
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 8bit
Archived-At: <http://mailarchive.ietf.org/arch/msg/avt/VCtSruoFUHz_GF3q-vfnaoWviXY>
Cc: "avtcore-chairs@tools.ietf.org" <avtcore-chairs@tools.ietf.org>, "draft-ietf-avtcore-srtp-aes-gcm@tools.ietf.org" <draft-ietf-avtcore-srtp-aes-gcm@tools.ietf.org>, IETF AVTCore WG <avt@ietf.org>, The IESG <iesg@ietf.org>
Subject: Re: [AVTCORE] Stephen Farrell's Discuss on draft-ietf-avtcore-srtp-aes-gcm-14: (with DISCUSS)
X-BeenThere: avt@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Audio/Video Transport Core Maintenance <avt.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/avt>, <mailto:avt-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/avt/>
List-Post: <mailto:avt@ietf.org>
List-Help: <mailto:avt-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/avt>, <mailto:avt-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 24 Feb 2015 12:06:55 -0000

We seem to have opinions all over the map on this one. Sorry for
making life difficult;-) I guess we'll be discussing it on the
informal telechat this Thursday though, so just picking some set
then would seem like the best approach. (I'll still briefly argue
for the minimal set, but I accept we should just pick something
then and be done with this.)

S.


On 19/02/15 16:01, Magnus Westerlund wrote:
> On 2015-02-15 15:09, David McGrew wrote:
>>
>> My opinion is: it would be best to preserve the existing specification
>> and implementation work, and retain all ten crypto suite definitions.  
>> But if we want to make SRTP-AEAD be the first instance in which the IETF
>> will  prioritize simplicity over variety and diversity, I’m good with
>> that, because I certainly see the value of simplicity; then my
>> recommendation would be to eliminate the four 12-octet authentication
>> versions.  That would leave just six crypto suites, with two different
>> modes of operation, two different key sizes, and two different tag
>> lengths (but not all tag lengths for all modes), like this:
>>
>>       srtp-crypto-suite-ext = "AEAD_AES_128_GCM"    /
>>                               "AEAD_AES_256_GCM"    /
>>                               "AEAD_AES_128_CCM"    /
>>                               "AEAD_AES_256_CCM"    /
>>                               "AEAD_AES_128_CCM_8"  /
>>                               "AEAD_AES_256_CCM_8"  /
>>
> 
> Stephen, WG
> 
> Having looked at the feedback provided in this discussion so far, I
> think the above set of 6 are a reasonable selection without unduly
> limiting functionality, but removing the four least necessary profiles.
> 
> My proposal is that if no one is disagreeing with this in the next week
> (Prior to Feb 26 at 16:30 UTC) we use it. If someone disagrees we hold a
> discussion at the informal IESG telechat on how to proceed.
> 
> Cheers
> 
> Magnus Westerlund
> 
> ----------------------------------------------------------------------
> Services, Media and Network features, Ericsson Research EAB/TXM
> ----------------------------------------------------------------------
> Ericsson AB                 | Phone  +46 10 7148287
> Färögatan 6                 | Mobile +46 73 0949079
> SE-164 80 Stockholm, Sweden | mailto: magnus.westerlund@ericsson.com
> ----------------------------------------------------------------------
>

v2.23.0 | Report a Bug | By Email