IETF Logo Mail Archive

Re: [AVTCORE] Stephen Farrell's Discuss on draft-ietf-avtcore-srtp-aes-gcm-14: (with DISCUSS)

Magnus Westerlund <magnus.westerlund@ericsson.com> Thu, 19 February 2015 16:01 UTC

Return-Path: <magnus.westerlund@ericsson.com>
X-Original-To: avt@ietfa.amsl.com
Delivered-To: avt@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B51341A19F8; Thu, 19 Feb 2015 08:01:50 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.201
X-Spam-Level:
X-Spam-Status: No, score=-4.201 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id HQbdDeQJT8Ts; Thu, 19 Feb 2015 08:01:45 -0800 (PST)
Received: from sesbmg23.ericsson.net (sesbmg23.ericsson.net [193.180.251.37]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 628CF1A90C8; Thu, 19 Feb 2015 08:01:44 -0800 (PST)
X-AuditID: c1b4fb25-f791c6d00000617b-90-54e608e6b73b
Received: from ESESSHC011.ericsson.se (Unknown_Domain [153.88.253.124]) by sesbmg23.ericsson.net (Symantec Mail Security) with SMTP id BE.32.24955.6E806E45; Thu, 19 Feb 2015 17:01:42 +0100 (CET)
Received: from [127.0.0.1] (153.88.183.153) by smtp.internal.ericsson.com (153.88.183.53) with Microsoft SMTP Server id 14.3.210.2; Thu, 19 Feb 2015 17:01:41 +0100
Message-ID: <54E608E5.1070102@ericsson.com>
Date: Thu, 19 Feb 2015 17:01:41 +0100
From: Magnus Westerlund <magnus.westerlund@ericsson.com>
User-Agent: Mozilla/5.0 (Windows NT 6.1; rv:31.0) Gecko/20100101 Thunderbird/31.4.0
MIME-Version: 1.0
To: David McGrew <mcgrew@cisco.com>
References: <20141029122825.18943.78129.idtracker@ietfa.amsl.com> <3C4AAD4B5304AB44A6BA85173B4675CABC709A18@MSMR-GH1-UEA03.corp.nsa.gov> <545151F9.9050502@cs.tcd.ie> <B1821703-9D09-41C5-AAC1-5EBB9CE2ACC4@cisco.com> <54516572.8020601@cs.tcd.ie> <D825D4F3-26D3-49BE-9E32-0E4FFF89BC40@cisco.com> <5451737B.6060504@cs.tcd.ie> <2D4BE3ED-840A-444C-9D18-09BC3D937D64@cisco.com> <54CA135D.3020304@ericsson.com> <54D4D840.4080808@cs.tcd.ie> <54D8A297.9090505@ericsson.com> <54D93B9A.9090409@cs.tcd.ie> <54DA0C45.2030609@ericsson.com> <E1F851A6-B098-4F8C-8AE1-B88BD1E1DCD9@cisco.com>
In-Reply-To: <E1F851A6-B098-4F8C-8AE1-B88BD1E1DCD9@cisco.com>
Content-Type: text/plain; charset="windows-1252"
Content-Transfer-Encoding: 8bit
X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFjrLLMWRmVeSWpSXmKPExsUyM+Jvje4zjmchBmsvSFq87FnJbrHy23VW i7VHEi1m/JnIbDHh1GtWi6ur/rBbTN97jd2B3WPK742sHmu7r7J5LFnyk8mjf9dLVo8vlz+z BbBGcdmkpOZklqUW6dslcGV8XL+IrWAjf8XWLxOYGhi3cncxcnJICJhIrLj4lxnCFpO4cG89 G4gtJHCEUWJxj2sXIxeQvZxR4vXlWUwgCV4BbYljD7azgNgsAqoSKx8tBrPZBCwkbv5oBGsW FQiWWPz8KStEvaDEyZlPwGpEBJQltr6bzgQylFlgB5PEs0cTwYYKC8RJzHq5iR1i814Wif0H IkBsTgFbiYPTDoJdxyxgIHFk0RxWCFteonnrbGaIem2JhqYO1gmMgrOQ7JuFpGUWkpYFjMyr GEWLU4uTctONjPVSizKTi4vz8/TyUks2MQLD/+CW36o7GC+/cTzEKMDBqMTD+6HzaYgQa2JZ cWXuIUZpDhYlcV4740MhQgLpiSWp2ampBalF8UWlOanFhxiZODilGhjl5nm887/qvu7Ym4ZH +7m3qTn03WqcbfVlixfHakEOER2Pi7/s2QJM2Hu1FI87bWmxmmpzel6RWJ12xYKd/dfWemkp PGN6dfhaGVNTYrvv0yCvJQGzIsujwzwflzFYr/63pkLtEI9a94nGaSY7fm6+Gaa6wbXyBNur 7nPP46y3uR7k+b8kzFSJpTgj0VCLuag4EQDCfTSFYAIAAA==
Archived-At: <http://mailarchive.ietf.org/arch/msg/avt/urtkEykF__HOfFtWjBFuxOGjTfU>
Cc: "draft-ietf-avtcore-srtp-aes-gcm@tools.ietf.org" <draft-ietf-avtcore-srtp-aes-gcm@tools.ietf.org>, IETF AVTCore WG <avt@ietf.org>, "avtcore-chairs@tools.ietf.org" <avtcore-chairs@tools.ietf.org>, The IESG <iesg@ietf.org>, Stephen Farrell <stephen.farrell@cs.tcd.ie>
Subject: Re: [AVTCORE] Stephen Farrell's Discuss on draft-ietf-avtcore-srtp-aes-gcm-14: (with DISCUSS)
X-BeenThere: avt@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Audio/Video Transport Core Maintenance <avt.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/avt>, <mailto:avt-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/avt/>
List-Post: <mailto:avt@ietf.org>
List-Help: <mailto:avt-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/avt>, <mailto:avt-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 19 Feb 2015 16:01:50 -0000

On 2015-02-15 15:09, David McGrew wrote:
> 
> My opinion is: it would be best to preserve the existing specification
> and implementation work, and retain all ten crypto suite definitions.  
> But if we want to make SRTP-AEAD be the first instance in which the IETF
> will  prioritize simplicity over variety and diversity, I’m good with
> that, because I certainly see the value of simplicity; then my
> recommendation would be to eliminate the four 12-octet authentication
> versions.  That would leave just six crypto suites, with two different
> modes of operation, two different key sizes, and two different tag
> lengths (but not all tag lengths for all modes), like this:
> 
>       srtp-crypto-suite-ext = "AEAD_AES_128_GCM"    /
>                               "AEAD_AES_256_GCM"    /
>                               "AEAD_AES_128_CCM"    /
>                               "AEAD_AES_256_CCM"    /
>                               "AEAD_AES_128_CCM_8"  /
>                               "AEAD_AES_256_CCM_8"  /
> 

Stephen, WG

Having looked at the feedback provided in this discussion so far, I
think the above set of 6 are a reasonable selection without unduly
limiting functionality, but removing the four least necessary profiles.

My proposal is that if no one is disagreeing with this in the next week
(Prior to Feb 26 at 16:30 UTC) we use it. If someone disagrees we hold a
discussion at the informal IESG telechat on how to proceed.

Cheers

Magnus Westerlund

----------------------------------------------------------------------
Services, Media and Network features, Ericsson Research EAB/TXM
----------------------------------------------------------------------
Ericsson AB                 | Phone  +46 10 7148287
Färögatan 6                 | Mobile +46 73 0949079
SE-164 80 Stockholm, Sweden | mailto: magnus.westerlund@ericsson.com
----------------------------------------------------------------------

v2.23.0 | Report a Bug | By Email