IETF Logo Mail Archive

Re: [CFRG] Please review draft-ietf-drip-rid

"Blumenthal, Uri - 0553 - MITLL" <uri@ll.mit.edu> Fri, 17 September 2021 14:21 UTC

Return-Path: <prvs=5894ae5b75=uri@ll.mit.edu>
X-Original-To: cfrg@ietfa.amsl.com
Delivered-To: cfrg@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9A0473A1B4B for <cfrg@ietfa.amsl.com>; Fri, 17 Sep 2021 07:21:21 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.896
X-Spam-Level:
X-Spam-Status: No, score=-1.896 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, MIME_QP_LONG_LINE=0.001, SPF_HELO_NONE=0.001, SPF_NONE=0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id CsEyW341wzZt for <cfrg@ietfa.amsl.com>; Fri, 17 Sep 2021 07:21:17 -0700 (PDT)
Received: from MX2.LL.MIT.EDU (mx2.ll.mit.edu [129.55.12.51]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A74003A1B45 for <cfrg@ietf.org>; Fri, 17 Sep 2021 07:21:05 -0700 (PDT)
Received: from LLE2K16-HYBRD02.mitll.ad.local (lle2k16-hybrd02.llan.ll.mit.edu [172.25.5.146]) by MX2.LL.MIT.EDU (8.16.1.2/8.16.1.2) with ESMTPS id 18HEKwpp227064 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=FAIL); Fri, 17 Sep 2021 10:20:58 -0400
ARC-Seal: i=1; a=rsa-sha256; s=arcselector5401; d=microsoft.com; cv=none; b=EBL9/Cr1/8pd7QNkrDfvjb347CA3dRFuHhjrJg1iZtSP2/eSeSLpqVsfdvApSwtjP/Bwt4Uqx88Hk9pZAUpwrkiYjm53rCf5uUotKXXK4o1M3EFZoRUyDY8JPYFgh4vkLQb5XcSh/WsiiEyPqwibQt2w4DyTmkCoZAixm4VaEXJMOuBrTbKkgKyDwl8rucmNYH9GCdJKomXPgFH/Dlr2OHC5/+PBpnTQS3IGkCJjDwN91H3xIJt7drSk2+hTvbJ+LHJS8In/Y9pa5kOAY//CnfQ1NMxoyEvYKfZMsfsIwGJnChkL3WXTOMzb0uZVc2XJckibAd3gtR4xPHdqmxjbqw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector5401; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version; bh=7y0e9EOFo+t7Kif3Sys3496yxho5yLz7kIFX565bK7s=; b=AZD/w2dcYpyHEaAweOs1Jdk7PJJ5b6xQy+eZm86GJt3eEOP1+P39ntlaTZP8icMvANYz+LFuK+zDGWoZPM0SeFO/g6nPy7RnWI8S0AUX7FNYlwo3ZZ+tM6rg9+F0gekTqm67HGWVc7j9RqtWDs4T34a6FRotPXN6T6LOlGX2K1pxhlR5ZPkmSaMzsTiaUNFJpnoAIChiEgCLaCzV5kHbsLRiKXoH6BfM+UbUnqhJo8ZzN5MNkqXhS1JoqErFx9CyOHprpfzP+bofZSjTRzjFlK1xCm9256IFUygOHDNGwXsmkhezHh6eODFtNewLgBWZJyCoRYxj5YnyqeML4uXV3g==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=ll.mit.edu; dmarc=pass action=none header.from=ll.mit.edu; dkim=pass header.d=ll.mit.edu; arc=none
From: "Blumenthal, Uri - 0553 - MITLL" <uri@ll.mit.edu>
To: Watson Ladd <watsonbladd@gmail.com>, Robert Moskowitz <rgm-sec@htt-consult.com>
CC: "<cfrg@ietf.org>" <cfrg@ietf.org>
Thread-Topic: [CFRG] Please review draft-ietf-drip-rid
Thread-Index: AQHXqabNt36YLY7DJUewIlymAShOI6uoROUA///DNAA=
Date: Fri, 17 Sep 2021 14:20:57 +0000
Message-ID: <E0D027B0-089E-4402-BD65-38ADEABC3351@ll.mit.edu>
References: <03b5ea0e-cf1a-8edf-d642-2fb4b2e458fd@htt-consult.com> <CACsn0ckZbA4=Xe+Lc1w5bc5os8Ekeh9q7AAxknknwrrBZ0R-KQ@mail.gmail.com>
In-Reply-To: <CACsn0ckZbA4=Xe+Lc1w5bc5os8Ekeh9q7AAxknknwrrBZ0R-KQ@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach: yes
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/16.52.21080801
authentication-results: gmail.com; dkim=none (message not signed) header.d=none;gmail.com; dmarc=none action=none header.from=ll.mit.edu;
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 5d1cfcea-2d45-4b38-2e3e-08d979e65ddc
x-ms-traffictypediagnostic: BN1P110MB018:
x-microsoft-antispam-prvs: <BN1P110MB0183F2377031B9BDAB3DFE990DD9@BN1P110MB018.NAMP110.PROD.OUTLOOK.COM>
x-ms-oob-tlc-oobclassifiers: OLM:8882;
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:BN1P110MB0706.NAMP110.PROD.OUTLOOK.COM; PTR:; CAT:NONE; SFS:(136003)(39850400004)(396003)(366004)(346002)(376002)(66946007)(4744005)(76116006)(478600001)(66446008)(64756008)(66556008)(66476007)(66616009)(71200400001)(33656002)(2616005)(966005)(2906002)(6486002)(86362001)(8676002)(8936002)(75432002)(38100700002)(122000001)(110136005)(4326008)(316002)(26005)(6506007)(186003)(5660300002)(6512007)(38070700005)(99936003)(45980500001); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: XzhW0WMO8KUYIVoDfN6Hsay2IL+fBWlJ6NleAbcELJ9IY59e8iOIFBiZUrcMf6xNbqi1DzrXGh/92a0w2pJJdTWjzS5sudEWoA/XtpMrsh0NDuPz+PiOrDGW862vN2VXg4dtw3LBFVybyOgaA+RvYNTKyqCPjXTuu74IP+1nPcttc759OJVu71sfOZlMapZE/lD95yu3e2c/xZnFxvkThUeHeoe4zSAMWQKkoZkCZlCTHGeGv7SaQqnj/SNWyJl7getCaaFxtAj4EtfjOS5Lhpke+5TiSL0CtOHERdfQtRATKMpllDnK7PQKFW67BXCBrCRvT4ZzGIGeqitoMEsDc9A9TRy5ExIl/oiyeoMqCdslKJb6ny+520wFw3ya3tUT69BJ2APubu1vr+kBgOJzFDgA53ll34YPn0iIZPXR/CpVhlmXY4lDgML/mFq++8fXmiyI39uOJ2iAqLOFx4y/y0N1DlhrJHHCRZKic4ZIbF2ybJlY4cOYAjuyVeeWoz9cZdyWCnXYztEZZ9Go+JuyDzTE12XYO6PsB4izWTQiEqFGxewdDxV5RKJAmQQ5qy8xrtUMNrQ3E00LuAcLFku9uU3IFzC8nwhRPx1ao9/hUbGi9ua7Tkdr8pxGxKbfprG+K6IVpWezPQeGbucDkcH8oYszggO7iuSGFxPZKk/9SM7oQvkFZTAztkVygx8524Y0jlvvMOXOHyFNdfTJrV3+8Q==
x-ms-exchange-transport-forked: True
Content-Type: multipart/signed; protocol="application/pkcs7-signature"; micalg="sha256"; boundary="B_3714718856_1279491841"
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: BN1P110MB0706.NAMP110.PROD.OUTLOOK.COM
X-MS-Exchange-CrossTenant-Network-Message-Id: 5d1cfcea-2d45-4b38-2e3e-08d979e65ddc
X-MS-Exchange-CrossTenant-originalarrivaltime: 17 Sep 2021 14:20:57.2236 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 83d1efe3-698e-4819-911b-0a8fbe79d01c
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BN1P110MB018
X-OriginatorOrg: ll.mit.edu
X-Proofpoint-GUID: 6ueM_kKyBOh561ZChoxE6RW6AXiMM1Ge
X-Proofpoint-ORIG-GUID: 6ueM_kKyBOh561ZChoxE6RW6AXiMM1Ge
X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:6.0.391, 18.0.790 definitions=2021-09-17_06:2021-09-17, 2021-09-17 signatures=0
X-Proofpoint-Spam-Details: rule=notspam policy=default score=0 phishscore=0 mlxlogscore=999 bulkscore=0 mlxscore=0 spamscore=0 adultscore=0 suspectscore=0 malwarescore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.12.0-2109030001 definitions=main-2109170092
Archived-At: <https://mailarchive.ietf.org/arch/msg/cfrg/7LKKGGtBV5NTfAJSkuqJVmo5wz4>
Subject: Re: [CFRG] Please review draft-ietf-drip-rid
X-BeenThere: cfrg@irtf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Crypto Forum Research Group <cfrg.irtf.org>
List-Unsubscribe: <https://www.irtf.org/mailman/options/cfrg>, <mailto:cfrg-request@irtf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/cfrg/>
List-Post: <mailto:cfrg@irtf.org>
List-Help: <mailto:cfrg-request@irtf.org?subject=help>
List-Subscribe: <https://www.irtf.org/mailman/listinfo/cfrg>, <mailto:cfrg-request@irtf.org?subject=subscribe>
X-List-Received-Date: Fri, 17 Sep 2021 14:21:22 -0000

I have not read the draft, but my answer to Watson is - because there is not enough room for Post-Quantum certificates, and Ed25519 is not an acceptable alternative for some of us.

--
Regards,
Uri
 
There are two ways to design a system. One is to make is so simple there are obviously no deficiencies.
The other is to make it so complex there are no obvious deficiencies.
                                                                                                                                     -  C. A. R. Hoare
 

On 9/17/21, 09:59, "CFRG on behalf of Watson Ladd" <cfrg-bounces@irtf.org on behalf of watsonbladd@gmail.com> wrote:

    I've read your email and have only one response.

    Why?

    There is enough room for an entire certificate chain using Ed25519 and
    compact encodings. That would be a lot simpler.

    Sincerely,
    Watson Ladd

    --
    Astra mortemque praestare gradatim

    _______________________________________________
    CFRG mailing list
    CFRG@irtf.org
    https://www.irtf.org/mailman/listinfo/cfrg

v2.19.0 | Report a Bug | By Email