IETF Logo Mail Archive

Re: [Cbor] Gordian Envelope and Crypto-Agility for its Hash

Vadim Goncharov <vadimnuclight@gmail.com> Wed, 08 March 2023 21:51 UTC

Return-Path: <vadimnuclight@gmail.com>
X-Original-To: cbor@ietfa.amsl.com
Delivered-To: cbor@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4D762C159A1D for <cbor@ietfa.amsl.com>; Wed, 8 Mar 2023 13:51:27 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.095
X-Spam-Level:
X-Spam-Status: No, score=-7.095 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id KG0eXY4-20Ga for <cbor@ietfa.amsl.com>; Wed, 8 Mar 2023 13:51:25 -0800 (PST)
Received: from mail-lf1-x12d.google.com (mail-lf1-x12d.google.com [IPv6:2a00:1450:4864:20::12d]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 208EAC1526FF for <cbor@ietf.org>; Wed, 8 Mar 2023 13:51:20 -0800 (PST)
Received: by mail-lf1-x12d.google.com with SMTP id n2so23115645lfb.12 for <cbor@ietf.org>; Wed, 08 Mar 2023 13:51:20 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20210112; t=1678312277; h=content-transfer-encoding:mime-version:references:in-reply-to :message-id:subject:cc:to:from:date:from:to:cc:subject:date :message-id:reply-to; bh=xPDKl+//h8wNXkRXu3dEhtXIggEIufEbCH9k8jvGs6s=; b=lipp3ioC5B+PL2B552642B8ZAJVI/cvDkCn6h3FVF9alNxQpQiCwVMdFBS2CuYlvm4 gVLccDfOLr9v//hPgeJRb9YiuomwxJ6To3JdhxOYHBkT9//bByN5cAM+DImTC272ky/f tVMUyiYQ8Tk8lJdY+aKs8vbjxyPm2oSrdSEv8yOPdnCkAfwHBnXxX2W/p+M1hrjFjHkX jaV/M8XXYFPNBpsvFgR+CdUhujbgk8bYTQN/IyD9cuf/l6Or6YyAhl9JmBkKD6dadQPa qxsO2mZNBdcMUzaf9qFbzbdu2lRMrJo9Q4h34h63fCNp/s2aMhmu6GjUx69n5ShiUWgU 6LTA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; t=1678312277; h=content-transfer-encoding:mime-version:references:in-reply-to :message-id:subject:cc:to:from:date:x-gm-message-state:from:to:cc :subject:date:message-id:reply-to; bh=xPDKl+//h8wNXkRXu3dEhtXIggEIufEbCH9k8jvGs6s=; b=lWWp8PfjAEWjfuKeMZ7KTTOlNXoD0PX4UzGLFDQ1YXePtf8uaO6+NkuApSzom/cogr opIiPJ3FasbMtD9YWiwaiSB8nRYpDy3NqpPKdzhNZo0V8OQynMS4TrOigmq4WXJzIyf+ 22bKRXI9GNpPIUmCbByH5/s/qUSj0rSqrYwZImU80URXcRSXjejXOsXPSVzhD1/fW7oQ AgfqZofnXT7M8u+OtOjX3Q18mnVrMnZZseeqSk7d4WHa5w+s6YyHqGetXH0LbMF/X46K Lw33PxH9MdWOxHFshS2JAY3CBJ9+15Va4F/w7xGsV7Bi4avEAVzA8hGXMcyspBvlKuE+ tY8Q==
X-Gm-Message-State: AO0yUKXbNPEmKdT94OOYRk7tlL6SYigkbTCrE2GY3UzCiSWZCsR5w6kr bjl7dQh67H4Ql/QIluMH2mk9W0fC3u3Izw==
X-Google-Smtp-Source: AK7set89g1DglT4TYLtk7e3tkPhLhbYgh4fGGHXo12/GcZPfy4jZn7yWWIHL2ytB+DXvWdj8WZbmYw==
X-Received: by 2002:a05:6512:481:b0:4a4:68b9:60ae with SMTP id v1-20020a056512048100b004a468b960aemr5562594lfq.57.1678312277375; Wed, 08 Mar 2023 13:51:17 -0800 (PST)
Received: from nuclight (broadband-77-37-180-193.ip.moscow.rt.ru. [77.37.180.193]) by smtp.gmail.com with ESMTPSA id n28-20020ac2491c000000b004dd0bbc89a1sm2443225lfi.244.2023.03.08.13.51.16 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Wed, 08 Mar 2023 13:51:17 -0800 (PST)
Date: Thu, 09 Mar 2023 00:51:13 +0300
From: Vadim Goncharov <vadimnuclight@gmail.com>
To: Christopher Allen <christophera@lifewithalacrity.com>
Cc: cbor@ietf.org
Message-ID: <20230309005113.1f8b9ea4@nuclight>
In-Reply-To: <CAAse2dHXGbMDEh1vWbAReH5Ax7cCWOwv4QjfPZMh0Hv=cfaa5A@mail.gmail.com>
References: <CAAse2dHXGbMDEh1vWbAReH5Ax7cCWOwv4QjfPZMh0Hv=cfaa5A@mail.gmail.com>
X-Mailer: Claws Mail 3.19.0 (GTK+ 2.24.33; amd64-portbld-freebsd12.3)
MIME-Version: 1.0
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
Archived-At: <https://mailarchive.ietf.org/arch/msg/cbor/V3DnKE9T8qYtv5WFGF57ACHkYJU>
Subject: Re: [Cbor] Gordian Envelope and Crypto-Agility for its Hash
X-BeenThere: cbor@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "Concise Binary Object Representation \(CBOR\)" <cbor.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/cbor>, <mailto:cbor-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/cbor/>
List-Post: <mailto:cbor@ietf.org>
List-Help: <mailto:cbor-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/cbor>, <mailto:cbor-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 08 Mar 2023 21:51:27 -0000

On Tue, 7 Mar 2023 00:25:22 -0800
Christopher Allen <christophera@lifewithalacrity.com> wrote:

[...]
> 
> I'd really not like to go down the alley that Protocol Labs did with
> https://datatracker.ietf.org/doc/draft-multiformats-multihash/ — our

Read that draft, wanted to ask why ther's no "multi" (several hash at
once) and what about truncating, if length field seems to be present
but no utilized. But seemd that this is not your spec?

> experience has been that the lack of constraint in that list resulted
> in a large surface area for attacks.

What do you mean?

> In addition, specifically for us, as the Envelope tag and Wrapped
> Envelope tag is used so often, adding even more bytes to specify a
> hash algorithm risks support in constrained environments (for
> instance, signing on JavaCard is quite limited).
 
Is 1 byte really too much? What are sizes of packet?

-- 
WBR, @nuclight

v2.37.1 | Report a Bug | By Email | System Status