Re: [Cfrg] [TLS] 3DES diediedie

"Blumenthal, Uri - 0553 - MITLL" <uri@ll.mit.edu> Thu, 25 August 2016 15:56 UTC

From: "Blumenthal, Uri - 0553 - MITLL" <uri@ll.mit.edu>
To: Tony Arcieri <bascule@gmail.com>, Peter Gutmann <pgut001@cs.auckland.ac.nz>
Thread-Topic: [TLS] 3DES diediedie
Thread-Index: AQHR/nWSg/CphhaeQ0GKsETs7Xni6qBZR4KAgAACuICAAIs4AA==
Date: Thu, 25 Aug 2016 15:56:04 +0000
Message-ID: <386DA563-FA77-4FA7-9E3D-EBF0022E0B43@ll.mit.edu>
References: <CAHOTMV+r5PVxqnSozYyqJqq_YocMKV06aAa-43t+5Huzh7Lo=A@mail.gmail.com> <9A043F3CF02CD34C8E74AC1594475C73F4D01F6E@uxcn10-5.UoA.auckland.ac.nz> <CAHOTMVKyub+J0Vx+UryDEAHdJRYRTmZ1wvLmEBkSor7pOrXy_w@mail.gmail.com>
In-Reply-To: <CAHOTMVKyub+J0Vx+UryDEAHdJRYRTmZ1wvLmEBkSor7pOrXy_w@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-US
user-agent: Microsoft-MacOutlook/f.19.0.160817
Content-Type: multipart/signed; protocol="application/pkcs7-signature"; micalg="sha384"; boundary="B_3554970964_947430399"
MIME-Version: 1.0
Archived-At: <https://mailarchive.ietf.org/arch/msg/cfrg/VXp6x26WXF0mLXx6bpjWw4XC-Ys>
Cc: "cfrg@irtf.org" <cfrg@irtf.org>
Subject: Re: [Cfrg] [TLS] 3DES diediedie
Precedence: list

>>  An attack that recovers cookie if you can record 785GB of traffic isn't anything I'm losing any sleep over.
>
> ..but is not a terribly dissimilar traffic volume to recover plaintexts from similar attacks against RC4,
> which received "diediedie" in RFC7465.
>
> Perhaps notable is the RC4 attacks work across multiple session keys, whereas SWEET32 requires the same key,
> but I think the practical consequences regarding data volume limits are similar.

I think this difference is crucial, because when the majority of the traffic was RC4, then scourging a lot of it and getting at least one key out of the attack seemed bad enough to do something about it. Hence RFC7465.

With 3DES, you need that much of traffic protected by the key you’re trying to attack. This completely removes any notion of practicality. I’m not losing my sleep over this either, and think this situation does not justify “diediedie”.

Attachment: smime.p7s

Re: [Cfrg] [TLS] 3DES diediedie Viktor Dukhovni
[Cfrg] 3DES diediedie Tony Arcieri
Re: [Cfrg] 3DES diediedie Benjamin Kaduk
Re: [Cfrg] 3DES diediedie Tony Arcieri
Re: [Cfrg] 3DES diediedie Tony Arcieri
Re: [Cfrg] [TLS] 3DES diediedie Stephen Farrell
Re: [Cfrg] [TLS] 3DES diediedie Tony Arcieri
Re: [Cfrg] [TLS] 3DES diediedie Peter Gutmann
Re: [Cfrg] [TLS] 3DES diediedie Tony Arcieri
Re: [Cfrg] [TLS] 3DES diediedie John Mattsson
Re: [Cfrg] [TLS] 3DES diediedie Stephen Farrell
Re: [Cfrg] [TLS] 3DES diediedie Hubert Kario
Re: [Cfrg] [TLS] 3DES diediedie david wong
Re: [Cfrg] [TLS] 3DES diediedie Eric Rescorla
Re: [Cfrg] [TLS] 3DES diediedie Ira McDonald
Re: [Cfrg] [TLS] 3DES diediedie Hubert Kario
Re: [Cfrg] [TLS] 3DES diediedie Blumenthal, Uri - 0553 - MITLL
Re: [Cfrg] [SSH] [TLS] 3DES diediedie denis bider (Bitvise)
Re: [Cfrg] 3DES diediedie Geoffrey Keating
Re: [Cfrg] [SSH] [TLS] 3DES diediedie Blumenthal, Uri - 0553 - MITLL
Re: [Cfrg] [SSH] [TLS] 3DES diediedie David Jacobson
Re: [Cfrg] [TLS] 3DES diediedie Dmitry Belyavsky
Re: [Cfrg] [TLS] 3DES diediedie Stanislav V. Smyshlyaev
Re: [Cfrg] [TLS] 3DES diediedie Hanno Böck
Re: [Cfrg] [TLS] 3DES diediedie Иван Лавриков
Re: [Cfrg] 3DES diediedie David McGrew (mcgrew)
Re: [Cfrg] [TLS] 3DES diediedie Watson Ladd
Re: [Cfrg] [TLS] 3DES diediedie Peter Gutmann
Re: [Cfrg] 3DES diediedie Peter Gutmann
Re: [Cfrg] 3DES diediedie David McGrew (mcgrew)
Re: [Cfrg] [TLS] 3DES diediedie Karthikeyan Bhargavan
Re: [Cfrg] 3DES diediedie Peter Gutmann
Re: [Cfrg] [TLS] 3DES diediedie Peter Gutmann
Re: [Cfrg] [TLS] 3DES diediedie Stephen Farrell
Re: [Cfrg] [TLS] 3DES diediedie Peter Gutmann
Re: [Cfrg] [TLS] 3DES diediedie Hubert Kario
Re: [Cfrg] 3DES diediedie David McGrew (mcgrew)
Re: [Cfrg] [TLS] 3DES diediedie Joachim Strömbergson
Re: [Cfrg] 3DES diediedie John Mattsson
[Cfrg] (confusing the issues) Re: [TLS] 3DES died… Rene Struik
Re: [Cfrg] 3DES diediedie Ilari Liusvaara
Re: [Cfrg] [TLS] (confusing the issues) Re: 3DES … Dave Garrett
Re: [Cfrg] 3DES diediedie Jon Callas
Re: [Cfrg] (confusing the issues) Re: [TLS] 3DES … Jon Callas
Re: [Cfrg] 3DES diediedie Steven M. Bellovin
Re: [Cfrg] (confusing the issues) Re: [TLS] 3DES … Rene Struik
Re: [Cfrg] (confusing the issues) Re: [TLS] 3DES … Greg Rose
Re: [Cfrg] 3DES diediedie Peter Gutmann
Re: [Cfrg] 3DES diediedie Peter Gutmann
Re: [Cfrg] 3DES diediedie David McGrew (mcgrew)
Re: [Cfrg] 3DES diediedie Peter Gutmann
Re: [Cfrg] [TLS] 3DES diediedie Derek Atkins
Re: [Cfrg] 3DES diediedie Derek Atkins
Re: [Cfrg] 3DES diediedie Hilarie Orman
Re: [Cfrg] [TLS] 3DES diediedie Brian Sniffen
Re: [Cfrg] [TLS] 3DES diediedie Hilarie Orman
Re: [Cfrg] 3DES diediedie Steven M. Bellovin
Re: [Cfrg] [TLS] 3DES diediedie Joachim Strömbergson
Re: [Cfrg] [TLS] 3DES diediedie Blumenthal, Uri - 0553 - MITLL
Re: [Cfrg] [TLS] 3DES diediedie Hilarie Orman
Re: [Cfrg] [TLS] 3DES diediedie Joachim Strömbergson
Re: [Cfrg] [TLS] 3DES diediedie Kyle Rose
Re: [Cfrg] [TLS] 3DES diediedie Richard Hartmann
Re: [Cfrg] 3DES diediedie Derek Atkins
Re: [Cfrg] [TLS] 3DES diediedie Hilarie Orman
Re: [Cfrg] [TLS] 3DES diediedie Ben Laurie
Re: [Cfrg] [TLS] 3DES diediedie Ben Laurie
Re: [Cfrg] [TLS] 3DES diediedie Joachim Strömbergson
Re: [Cfrg] [TLS] 3DES diediedie Blumenthal, Uri - 0553 - MITLL
Re: [Cfrg] [TLS] 3DES diediedie Joachim Strömbergson
Re: [Cfrg] [TLS] 3DES diediedie Derek Atkins
Re: [Cfrg] [TLS] 3DES diediedie Derek Atkins
Re: [Cfrg] [TLS] 3DES diediedie Stephen Farrell
Re: [Cfrg] [TLS] 3DES diediedie Salz, Rich
Re: [Cfrg] [TLS] 3DES diediedie Ira McDonald
Re: [Cfrg] [TLS] 3DES diediedie Watson Ladd
Re: [Cfrg] [TLS] 3DES diediedie Ira McDonald
Re: [Cfrg] [TLS] 3DES diediedie Dave Garrett
Re: [Cfrg] [TLS] 3DES diediedie Ira McDonald
Re: [Cfrg] [TLS] 3DES diediedie Philip Levis
Re: [Cfrg] [TLS] 3DES diediedie Stephen Farrell
Re: [Cfrg] [TLS] 3DES diediedie Tony Arcieri
Re: [Cfrg] [TLS] 3DES diediedie Peter Gutmann
Re: [Cfrg] [TLS] 3DES diediedie Joachim Strömbergson
Re: [Cfrg] [TLS] 3DES diediedie Ilari Liusvaara
Re: [Cfrg] [TLS] 3DES diediedie Joachim Strömbergson
Re: [Cfrg] [TLS] 3DES diediedie Stephen Farrell
Re: [Cfrg] [TLS] 3DES diediedie Ilari Liusvaara
Re: [Cfrg] [TLS] 3DES diediedie Joachim Strömbergson
Re: [Cfrg] [TLS] 3DES diediedie Joachim Strömbergson
Re: [Cfrg] [TLS] 3DES diediedie Richard Hartmann
Re: [Cfrg] [TLS] 3DES diediedie Peter Gutmann
Re: [Cfrg] [TLS] 3DES diediedie Peter Gutmann
Re: [Cfrg] [TLS] 3DES diediedie Salz, Rich
Re: [Cfrg] [TLS] 3DES diediedie Derek Atkins
Re: [Cfrg] [TLS] 3DES diediedie Tony Arcieri
Re: [Cfrg] [TLS] 3DES diediedie Peter Gutmann
Re: [Cfrg] [TLS] 3DES diediedie Stephen Farrell
Re: [Cfrg] [TLS] 3DES diediedie Derek Atkins
Re: [Cfrg] [TLS] 3DES diediedie Derek Atkins
Re: [Cfrg] [TLS] 3DES diediedie Derek Atkins
Re: [Cfrg] [TLS] 3DES diediedie Kyle Rose
Re: [Cfrg] [TLS] 3DES diediedie Tony Arcieri
Re: [Cfrg] [TLS] 3DES diediedie Ilari Liusvaara
Re: [Cfrg] [TLS] 3DES diediedie Yoav Nir
Re: [Cfrg] [TLS] 3DES diediedie Kyle Rose
Re: [Cfrg] [TLS] 3DES diediedie denis bider (Bitvise)

Re: [Cfrg] [TLS] 3DES diediedie

Attachment: smime.p7s