[AVT] SECDIR review of draft-ietf-avt-seed-srtp-11
canetti <canetti@post.tau.ac.il> Wed, 03 June 2009 10:18 UTC
Return-Path: <canetti@post.tau.ac.il>
X-Original-To: avt@core3.amsl.com
Delivered-To: avt@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id CC4523A6C2D; Wed, 3 Jun 2009 03:18:30 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.599
X-Spam-Level:
X-Spam-Status: No, score=-2.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id N8ftyMZOnxMl; Wed, 3 Jun 2009 03:18:30 -0700 (PDT)
Received: from doar.tau.ac.il (gate.tau.ac.il [132.66.16.26]) by core3.amsl.com (Postfix) with ESMTP id E11143A6BE6; Wed, 3 Jun 2009 03:18:29 -0700 (PDT)
Received: from [10.0.0.5] (unknown [193.37.128.224]) by doar.tau.ac.il (Postfix) with ESMTP id 58F32BEF8; Wed, 3 Jun 2009 13:18:28 +0300 (IDT)
Message-ID: <4A264DE7.6080407@post.tau.ac.il>
Date: Wed, 03 Jun 2009 13:18:15 +0300
From: canetti <canetti@post.tau.ac.il>
User-Agent: Thunderbird 2.0.0.21 (Windows/20090302)
MIME-Version: 1.0
To: secdir@mit.edu, cfrg@ietf.org, avt@ietf.org, seokung@kisa.or.kr
Content-Type: text/plain; charset="ISO-8859-1"; format="flowed"
Content-Transfer-Encoding: 7bit
X-Mailman-Approved-At: Wed, 03 Jun 2009 08:50:06 -0700
Subject: [AVT] SECDIR review of draft-ietf-avt-seed-srtp-11
X-BeenThere: avt@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Audio/Video Transport Working Group <avt.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/avt>, <mailto:avt-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/avt>
List-Post: <mailto:avt@ietf.org>
List-Help: <mailto:avt-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/avt>, <mailto:avt-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 03 Jun 2009 10:18:30 -0000
*** I have reviewed this document as part of the security directorate's *** ongoing effort to review all IETF documents being processed by the *** IESG. These comments were written primarily for the benefit of the *** security area directors. Document editors and WG chairs should treat *** these comments just like any other last call comments. The draft describes the use of the SEED cipher (RFC 4269) within the SRTP protocol. The document is well written and thorough. I see no problems with it. My only potential concern is regarding the use of SEED itself. SEED is a cipher that's apparently very popular in Korea and less so elsewhere. While no weaknesses have been found afaik, it did not receive the level of scrutiny that AES did. Thus, the question arises whether the IETF should standardize (and thereby implicitly endorse) the use of this cipher as an alternative to AES. I personally see no problem here, as long as a security comparison is made clear in the document. Still, others may feel differently. In fact, for this purpose I cc'ed the cfrg RG on this evaluation. Best, Ran