Re: [AVTCORE] Summary of discussion with IESG and call for consensus regarding AES-GCM draft

"Igoe, Kevin M." <kmigoe@nsa.gov> Tue, 17 March 2015 17:17 UTC

Return-Path: <kmigoe@nsa.gov>
X-Original-To: avt@ietfa.amsl.com
Delivered-To: avt@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A58691A87CA for <avt@ietfa.amsl.com>; Tue, 17 Mar 2015 10:17:05 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.91
X-Spam-Level:
X-Spam-Status: No, score=-6.91 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_HI=-5, T_RP_MATCHES_RCVD=-0.01] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 0TL8-x4VRKAg for <avt@ietfa.amsl.com>; Tue, 17 Mar 2015 10:17:03 -0700 (PDT)
Received: from emvm-gh1-uea08.nsa.gov (emvm-gh1-uea08.nsa.gov [63.239.67.9]) by ietfa.amsl.com (Postfix) with ESMTP id C513D1A87C8 for <avt@ietf.org>; Tue, 17 Mar 2015 10:17:02 -0700 (PDT)
X-TM-IMSS-Message-ID: <0efbe5ab0001e4ac@nsa.gov>
Received: from MSHT-GH1-UEA02.corp.nsa.gov (msht-gh1-uea02.corp.nsa.gov [10.215.227.181]) by nsa.gov ([63.239.67.9]) with ESMTP (TREND IMSS SMTP Service 7.1; TLSv1/SSLv3 AES128-SHA (128/128)) id 0efbe5ab0001e4ac ; Tue, 17 Mar 2015 13:16:59 -0400
Received: from MSMR-GH1-UEA02.corp.nsa.gov (10.215.227.180) by MSHT-GH1-UEA02.corp.nsa.gov (10.215.227.181) with Microsoft SMTP Server (TLS) id 14.2.347.0; Tue, 17 Mar 2015 13:16:56 -0400
Received: from MSMR-GH1-UEA03.corp.nsa.gov ([10.215.224.3]) by MSMR-GH1-UEA02.corp.nsa.gov ([10.215.227.180]) with mapi id 14.02.0347.000; Tue, 17 Mar 2015 13:16:56 -0400
From: "Igoe, Kevin M." <kmigoe@nsa.gov>
To: 'Magnus Westerlund' <magnus.westerlund@ericsson.com>, IETF AVTCore WG <avt@ietf.org>
Thread-Topic: [AVTCORE] Summary of discussion with IESG and call for consensus regarding AES-GCM draft
Thread-Index: AQHQVN+KBmyhRtmMJkyL9nrRcpwkmJ0gpceAgABb7xA=
Date: Tue, 17 Mar 2015 17:16:55 +0000
Message-ID: <3C4AAD4B5304AB44A6BA85173B4675CABC80B8A1@MSMR-GH1-UEA03.corp.nsa.gov>
References: <54F44F2D.4060803@ericsson.com> <5507DB6D.9000504@ericsson.com>
In-Reply-To: <5507DB6D.9000504@ericsson.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [10.215.228.46]
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
Archived-At: <http://mailarchive.ietf.org/arch/msg/avt/cIoj8QHTKxIBMd9eUTAFC8l7byM>
Cc: "draft-ietf-avtcore-srtp-aes-gcm@tools.ietf.org" <draft-ietf-avtcore-srtp-aes-gcm@tools.ietf.org>
Subject: Re: [AVTCORE] Summary of discussion with IESG and call for consensus regarding AES-GCM draft
X-BeenThere: avt@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Audio/Video Transport Core Maintenance <avt.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/avt>, <mailto:avt-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/avt/>
List-Post: <mailto:avt@ietf.org>
List-Help: <mailto:avt-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/avt>, <mailto:avt-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 17 Mar 2015 17:17:05 -0000

So let it be written so let it be done.  I'm currently working on producing the test
vectors with copious intermediate outputs that one of the contributors requested.

> -----Original Message-----
> From: Magnus Westerlund [mailto:magnus.westerlund@ericsson.com]
> Sent: Tuesday, March 17, 2015 3:45 AM
> To: IETF AVTCore WG
> Cc: draft-ietf-avtcore-srtp-aes-gcm@tools.ietf.org
> Subject: Re: [AVTCORE] Summary of discussion with IESG and call for consensus regarding AES-GCM draft
> 
> WG,
> 
> I note that the deadline is past and no one has opposed the proposal.
> There was discussion about the payload length vs number of payloads that could be sent while staying within NIST's recommendation
> for the algorithm when using the 64 bit authentication tag option. To my understanding the discussion concluded in a
> recommendation to make clear that as long as you don't have payloads longer than 2^15 one only need to rekey as often as SRTP
> requires due to wrapping of extended sequence number used.
> 
> Authors, please prepare an update draft with only AES-GCM and submit it as soon as possible.
> 
> Cheers
> 
> Magnus Westerlund
> (As WG chair)
> 
> On 2015-03-02 12:53, Magnus Westerlund wrote:
> > WG,
> >
> > Last Thursday Kevin Igoe and I participated in a phone conference with
> > IESG to discuss the way forward with draft-ietf-avtcore-srtp-aes-gcm.
> >
> > After some discussion the conclusion was the following:
> >
> > 1. Proposal to remove AES-CCM modes from the draft, if clear need
> > arise a AES-CCM only separate draft can be created. But, that will not
> > be done without clear motivation for why CCM is needed. So if you
> > think CCM is required, please step up and comment on this.
> >
> > 2. The AES-GCM draft is proposed to contain the following configurations:
> >
> >        AEAD_AES_128_GCM     (with 16 byte authentication tag)
> >        AEAD_AES_128_GCM_64  (with 8 byte authentication tag)
> >        AEAD_AES_256_GCM     (with 16 byte authentication tag)
> >
> >
> > If any one in the WG has issues with either of these proposals, please
> > comment on this no later than 16th of March.
> >
> > Cheers
> >
> > Magnus Westerlund
> >
> > ----------------------------------------------------------------------
> > Services, Media and Network features, Ericsson Research EAB/TXM
> > ----------------------------------------------------------------------
> > Ericsson AB                 | Phone  +46 10 7148287
> > Färögatan 6                 | Mobile +46 73 0949079
> > SE-164 80 Stockholm, Sweden | mailto: magnus.westerlund@ericsson.com
> > ----------------------------------------------------------------------
> >
> > _______________________________________________
> > Audio/Video Transport Core Maintenance avt@ietf.org
> > https://www.ietf.org/mailman/listinfo/avt
> >
> 
> 
> --
> 
> Magnus Westerlund
> 
> ----------------------------------------------------------------------
> Services, Media and Network features, Ericsson Research EAB/TXM
> ----------------------------------------------------------------------
> Ericsson AB                 | Phone  +46 10 7148287
> Färögatan 6                 | Mobile +46 73 0949079
> SE-164 80 Stockholm, Sweden | mailto: magnus.westerlund@ericsson.com
> ----------------------------------------------------------------------