Re: [CFRG] RGLC on draft-irtf-cfrg-dnhpke-03
Ilari Liusvaara <ilariliusvaara@welho.com> Fri, 08 December 2023 09:23 UTC
Return-Path: <ilariliusvaara@welho.com>
X-Original-To: cfrg@ietfa.amsl.com
Delivered-To: cfrg@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A387FC17C536 for <cfrg@ietfa.amsl.com>; Fri, 8 Dec 2023 01:23:16 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.908
X-Spam-Level:
X-Spam-Status: No, score=-1.908 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_BLOCKED=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id qVsjfcMnMMjU for <cfrg@ietfa.amsl.com>; Fri, 8 Dec 2023 01:23:11 -0800 (PST)
Received: from welho-filter3.welho.com (welho-filter3b.welho.com [83.102.41.29]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 4DD69C15C29A for <cfrg@irtf.org>; Fri, 8 Dec 2023 01:23:09 -0800 (PST)
Received: from localhost (localhost [127.0.0.1]) by welho-filter3.welho.com (Postfix) with ESMTP id BE74810BD7 for <cfrg@irtf.org>; Fri, 8 Dec 2023 11:23:06 +0200 (EET)
X-Virus-Scanned: Debian amavisd-new at pp.htv.fi
Received: from welho-smtp1.welho.com ([IPv6:::ffff:83.102.41.84]) by localhost (welho-filter3.welho.com [::ffff:83.102.41.25]) (amavisd-new, port 10024) with ESMTP id 1dyg785l8nX8 for <cfrg@irtf.org>; Fri, 8 Dec 2023 11:23:06 +0200 (EET)
Received: from LK-Perkele-VII2 (78-27-96-203.bb.dnainternet.fi [78.27.96.203]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by welho-smtp1.welho.com (Postfix) with ESMTPSA id 9621C7A for <cfrg@irtf.org>; Fri, 8 Dec 2023 11:23:05 +0200 (EET)
Date: Fri, 08 Dec 2023 11:23:05 +0200
From: Ilari Liusvaara <ilariliusvaara@welho.com>
To: CFRG <cfrg@irtf.org>
Message-ID: <ZXLgeY4p2-8_j5mB@LK-Perkele-VII2.locald>
References: <4169984b-78cd-4193-b226-1a0297f524b9@isode.com> <66FD05E0-54F6-4651-92DF-773C91CBC651@heapingbits.net> <CAFR824wdxuRfX+pv4AOpMrqRegGEDCdwa+wNetc4kn_s196mfQ@mail.gmail.com> <CAL02cgRXkKRfa_sHKS0bLz64USpYtmPFM6otmSAVVicOYs0umg@mail.gmail.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Disposition: inline
In-Reply-To: <CAL02cgRXkKRfa_sHKS0bLz64USpYtmPFM6otmSAVVicOYs0umg@mail.gmail.com>
Sender: ilariliusvaara@welho.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/cfrg/PPuzQLaISJ0338DMLrHOfYcXzPM>
Subject: Re: [CFRG] RGLC on draft-irtf-cfrg-dnhpke-03
X-BeenThere: cfrg@irtf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Crypto Forum Research Group <cfrg.irtf.org>
List-Unsubscribe: <https://mailman.irtf.org/mailman/options/cfrg>, <mailto:cfrg-request@irtf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/cfrg/>
List-Post: <mailto:cfrg@irtf.org>
List-Help: <mailto:cfrg-request@irtf.org?subject=help>
List-Subscribe: <https://mailman.irtf.org/mailman/listinfo/cfrg>, <mailto:cfrg-request@irtf.org?subject=subscribe>
X-List-Received-Date: Fri, 08 Dec 2023 09:23:16 -0000
On Thu, Dec 07, 2023 at 05:42:56PM -0500, Richard Barnes wrote: > > As a final note, I would just point out that the even document's > putative justification for DAE is false. It is perfectly possible > to use HPKE in lossy networks. AFAICT, not without heavy, in many cases not acceptable, overhead. And as extra bonus, with some of the most dangerous security problems of DAE. The biggest problem with DAE is not the data leaks. It is what replays will do to the application. Unless great care is taken (and many times it is not) the results are probably going to be ugly. For most applications with associations over lossy networks, windowed replay detection is a sweet spot. Handles loss, is stateful and prevents replay. Application just has not use ciphertext retransmission for reliability. -Ilari
- [CFRG] RGLC on draft-irtf-cfrg-dnhpke-03 Alexey Melnikov
- Re: [CFRG] RGLC on draft-irtf-cfrg-dnhpke-03 Stephen Farrell
- Re: [CFRG] RGLC on draft-irtf-cfrg-dnhpke-03 Dan Harkins
- Re: [CFRG] RGLC on draft-irtf-cfrg-dnhpke-03 Stephen Farrell
- Re: [CFRG] RGLC on draft-irtf-cfrg-dnhpke-03 Ilari Liusvaara
- Re: [CFRG] RGLC on draft-irtf-cfrg-dnhpke-03 Dan Harkins
- Re: [CFRG] RGLC on draft-irtf-cfrg-dnhpke-03 Ilari Liusvaara
- Re: [CFRG] RGLC on draft-irtf-cfrg-dnhpke-03 Deirdre Connolly
- Re: [CFRG] RGLC on draft-irtf-cfrg-dnhpke-03 Richard Barnes
- Re: [CFRG] RGLC on draft-irtf-cfrg-dnhpke-03 Martin Thomson
- Re: [CFRG] RGLC on draft-irtf-cfrg-dnhpke-03 Stephen Farrell
- Re: [CFRG] RGLC on draft-irtf-cfrg-dnhpke-03 Taylor R Campbell
- Re: [CFRG] RGLC on draft-irtf-cfrg-dnhpke-03 Ilari Liusvaara
- Re: [CFRG] RGLC on draft-irtf-cfrg-dnhpke-03 Dan Harkins
- Re: [CFRG] RGLC on draft-irtf-cfrg-dnhpke-03 Orie Steele
- Re: [CFRG] RGLC on draft-irtf-cfrg-dnhpke-03 Stephen Farrell
- Re: [CFRG] RGLC on draft-irtf-cfrg-dnhpke-03 Ilari Liusvaara
- Re: [CFRG] RGLC on draft-irtf-cfrg-dnhpke-03 Dan Harkins
- Re: [CFRG] RGLC on draft-irtf-cfrg-dnhpke-03 Dan Harkins
- Re: [CFRG] RGLC on draft-irtf-cfrg-dnhpke-03 Ilari Liusvaara
- Re: [CFRG] RGLC on draft-irtf-cfrg-dnhpke-03 Eric Rescorla
- Re: [CFRG] RGLC on draft-irtf-cfrg-dnhpke-03 Ilari Liusvaara
- Re: [CFRG] RGLC on draft-irtf-cfrg-dnhpke-03 Dan Harkins
- Re: [CFRG] RGLC on draft-irtf-cfrg-dnhpke-03 Dan Harkins
- Re: [CFRG] RGLC on draft-irtf-cfrg-dnhpke-03 Richard Barnes
- Re: [CFRG] RGLC on draft-irtf-cfrg-dnhpke-03 Ilari Liusvaara
- Re: [CFRG] RGLC on draft-irtf-cfrg-dnhpke-03 Christopher Wood