Re: [Cfrg] ECC reboot

James Cloos <cloos@jhcloos.com> Fri, 17 October 2014 23:12 UTC

Return-Path: <cloos@jhcloos.com>
X-Original-To: cfrg@ietfa.amsl.com
Delivered-To: cfrg@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 29B761A8775 for <cfrg@ietfa.amsl.com>; Fri, 17 Oct 2014 16:12:57 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.011
X-Spam-Level:
X-Spam-Status: No, score=-2.011 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, SPF_PASS=-0.001, T_RP_MATCHES_RCVD=-0.01] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id VbAla8eA-278 for <cfrg@ietfa.amsl.com>; Fri, 17 Oct 2014 16:12:55 -0700 (PDT)
Received: from ore.jhcloos.com (ore.jhcloos.com [198.147.23.85]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 48EC21A876F for <cfrg@irtf.org>; Fri, 17 Oct 2014 16:12:55 -0700 (PDT)
Received: by ore.jhcloos.com (Postfix, from userid 10) id 841841E0C4; Fri, 17 Oct 2014 23:12:54 +0000 (UTC)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=jhcloos.com; s=ore14; t=1413587574; bh=gd7JRuTuuGbYOK4xQ25P7sSW5lRQKzkM8dv5MkSinew=; h=From:To:Cc:Subject:In-Reply-To:References:Date:From; b=Pd1qWZm1d5prHf1AIpuMNVwPJD2motbmpxpoHiV65FdesNGGC3eiw/IUdM5JWIyY+ O02IaHD4VTMPFan+KRIp6dgTdpfa1yJ24QEhAwmA73Ivq/yiPmDWPWSKrC785X73Kf 7zHqdV3lMxhoafmaY1YB5rhigamAnqPVdSjxfI5s=
Received: by carbon.jhcloos.org (Postfix, from userid 500) id ADB7660023; Fri, 17 Oct 2014 23:11:23 +0000 (UTC)
From: James Cloos <cloos@jhcloos.com>
To: Michael Hamburg <mike@shiftleft.org>
In-Reply-To: <5218FD35-E00A-413F-ACCB-AA9B99DEF48B@shiftleft.org> (Michael Hamburg's message of "Fri, 17 Oct 2014 14:27:46 -0700")
References: <D065A817.30406%kenny.paterson@rhul.ac.uk> <54400E9F.5020905@akr.io> <CAMm+LwhVKBfcfrXUKmVXKsiAMRSTV+ws+u07grmxkfnR2oYJoQ@mail.gmail.com> <5218FD35-E00A-413F-ACCB-AA9B99DEF48B@shiftleft.org>
User-Agent: Gnus/5.130012 (Ma Gnus v0.12) Emacs/24.4.50 (gnu/linux)
Face: iVBORw0KGgoAAAANSUhEUgAAABAAAAAQAgMAAABinRfyAAAACVBMVEX///8ZGXBQKKnCrDQ3 AAAAJElEQVQImWNgQAAXzwQg4SKASgAlXIEEiwsSIYBEcLaAtMEAADJnB+kKcKioAAAAAElFTkSu QmCC
Copyright: Copyright 2014 James Cloos
OpenPGP: 0x997A9F17ED7DAEA6; url=https://jhcloos.com/public_key/0x997A9F17ED7DAEA6.asc
OpenPGP-Fingerprint: E9E9 F828 61A4 6EA9 0F2B 63E7 997A 9F17 ED7D AEA6
Date: Fri, 17 Oct 2014 19:11:23 -0400
Message-ID: <m3r3y6z3z8.fsf@carbon.jhcloos.org>
Lines: 15
MIME-Version: 1.0
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: 8bit
X-Hashcash: 1:28:141017:mike@shiftleft.org::2g6Wmg7IAnUGYe/W:00000000000000000000000000000000000000000042nH7
X-Hashcash: 1:28:141017:phill@hallambaker.com::dJkbYESqDU+3bSyt:0000000000000000000000000000000000000009m2kr
X-Hashcash: 1:28:141017:"cfrg\@irtf.org"::7lrUOMWB8QfJH1oR:Ah99f
X-Hashcash: 1:28:141017:cfrg@irtf.org::724VoFbszVdoopNg:00092nAc
Archived-At: http://mailarchive.ietf.org/arch/msg/cfrg/6jvAQR7AW1xDPTBtYINwJL6eCOk
Cc: "cfrg@irtf.org" <cfrg@irtf.org>
Subject: Re: [Cfrg] ECC reboot
X-BeenThere: cfrg@irtf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Crypto Forum Research Group <cfrg.irtf.org>
List-Unsubscribe: <http://www.irtf.org/mailman/options/cfrg>, <mailto:cfrg-request@irtf.org?subject=unsubscribe>
List-Archive: <http://www.irtf.org/mail-archive/web/cfrg/>
List-Post: <mailto:cfrg@irtf.org>
List-Help: <mailto:cfrg-request@irtf.org?subject=help>
List-Subscribe: <http://www.irtf.org/mailman/listinfo/cfrg>, <mailto:cfrg-request@irtf.org?subject=subscribe>
X-List-Received-Date: Fri, 17 Oct 2014 23:12:57 -0000

>>>>> "MH" == Michael Hamburg <mike@shiftleft.org> writes:

MH> I looked at Mozilla’s included CAs.  There are four ECC certs there,
MH> all of them on the NIST secp384r1 curve.  So they apparently do not
MH> consider ~512 bits necessary, but if the only choices are 256 and 512
MH> I suppose they will go with 512.

The nist 2^521-1 curve probably wasn't available in enough software.

Presumably for the same reason suite-B lost it.  (Which, AIUI, was some
ipr claim, yes?)

-JimC
-- 
James Cloos <cloos@jhcloos.com>         OpenPGP: 0x997A9F17ED7DAEA6