Re: [Cfrg] Cfrg Digest, Vol 136, Issue 27

"Robinson, Peter (RSA Engineering)" <peter.robinson@rsa.com> Thu, 25 August 2016 03:59 UTC

Return-Path: <peter.robinson@rsa.com>
X-Original-To: cfrg@ietfa.amsl.com
Delivered-To: cfrg@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id AFD5512D5C5 for <cfrg@ietfa.amsl.com>; Wed, 24 Aug 2016 20:59:37 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.002
X-Spam-Level:
X-Spam-Status: No, score=-2.002 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=rsa.com header.b=vF/bi6w6; dkim=pass (1024-bit key) header.d=rsa.com header.b=f1CITTx1
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id l7Qq0uytZTdY for <cfrg@ietfa.amsl.com>; Wed, 24 Aug 2016 20:59:36 -0700 (PDT)
Received: from esa5.dell-outbound.iphmx.com (esa5.dell-outbound.iphmx.com [68.232.153.95]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 514E912D10C for <cfrg@irtf.org>; Wed, 24 Aug 2016 20:59:36 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=rsa.com; i=@rsa.com; q=dns/txt; s=jan2013; t=1472097576; x=1503633576; h=from:to:subject:date:message-id:references:in-reply-to: content-transfer-encoding:mime-version; bh=B/qLmP0ZHxhYkgtsxVLav8vFA/zuv/NtolBVa1lXK6w=; b=vF/bi6w6vS6sgoLoOjjE5XWQf+3zJRecSpXbgsBEdM0sqPMgMXNuxybq 2j8uybhNC3EcDQf4lqd4aJq+WmsWzsDxcssF0+5LW2+tN5eoY04fklLxa KkBbwpsinKRo7BXVeRnRHNEZGuY9h6MSCfLzuzXCgepulKsMwj29lWBvQ M=;
Received: from esa1.dell-outbound2.iphmx.com ([68.232.153.201]) by esa5.dell-outbound.iphmx.com with ESMTP/TLS/DHE-RSA-AES256-GCM-SHA384; 24 Aug 2016 22:59:35 -0500
Received: from mailuogwhop.emc.com ([168.159.213.141]) by esa1.dell-outbound2.iphmx.com with ESMTP/TLS/DHE-RSA-AES256-GCM-SHA384; 25 Aug 2016 09:59:35 +0600
Received: from maildlpprd01.lss.emc.com (maildlpprd01.lss.emc.com [10.253.24.33]) by mailuogwprd02.lss.emc.com (Sentrion-MTA-4.3.1/Sentrion-MTA-4.3.0) with ESMTP id u7P3xX5D022876 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NO) for <cfrg@irtf.org>; Wed, 24 Aug 2016 23:59:34 -0400
X-DKIM: OpenDKIM Filter v2.4.3 mailuogwprd02.lss.emc.com u7P3xX5D022876
DKIM-Signature: v=1; a=rsa-sha1; c=relaxed/relaxed; d=rsa.com; s=jan2013; t=1472097574; bh=xftt+Ybh9zm5fl82A7WOFmrJshc=; h=From:To:Subject:Date:Message-ID:References:In-Reply-To: Content-Type:Content-Transfer-Encoding:MIME-Version; b=f1CITTx1nPNbF2/LBDyJSBlWmDUMrRFgYInzj4WuuxtyUumEhanntQ6JcYQRWHSbY l+izwLUlfVVAdFM80gH2ryj8LFnQJC3tYVxPyckHQoh96u7ZXCBkQ2/2f2PFuPF23I ajltAhj/Y9Klay8dutJIDMQE6xme+r7rzS9/UpHw=
X-DKIM: OpenDKIM Filter v2.4.3 mailuogwprd02.lss.emc.com u7P3xX5D022876
Received: from mailusrhubprd04.lss.emc.com (mailusrhubprd04.lss.emc.com [10.253.24.22]) by maildlpprd01.lss.emc.com (RSA Interceptor) for <cfrg@irtf.org>; Wed, 24 Aug 2016 23:58:00 -0400
Received: from MXHUB210.corp.emc.com (MXHUB210.corp.emc.com [10.253.68.36]) by mailusrhubprd04.lss.emc.com (Sentrion-MTA-4.3.1/Sentrion-MTA-4.3.0) with ESMTP id u7P3xFqM006654 (version=TLSv1.2 cipher=AES128-SHA256 bits=128 verify=FAIL) for <cfrg@irtf.org>; Wed, 24 Aug 2016 23:59:15 -0400
Received: from MX201CL01.corp.emc.com ([fe80::599e:a84:fb62:14d2]) by MXHUB210.corp.emc.com ([10.253.68.36]) with mapi id 14.03.0266.001; Wed, 24 Aug 2016 23:59:14 -0400
From: "Robinson, Peter (RSA Engineering)" <peter.robinson@rsa.com>
To: "cfrg@irtf.org" <cfrg@irtf.org>
Thread-Topic: Cfrg Digest, Vol 136, Issue 27
Thread-Index: AQHR/npEz9ZJzlrn7EWSEdMbhCI3RqBZC6Hg
Date: Thu, 25 Aug 2016 03:59:13 +0000
Message-ID: <AE416A48B40DC046ADA2B9596F910C673F1E67AF@MX201CL01.corp.emc.com>
References: <mailman.668.1472092885.3902.cfrg@irtf.org>
In-Reply-To: <mailman.668.1472092885.3902.cfrg@irtf.org>
Accept-Language: en-AU, en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [152.62.49.159]
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-Sentrion-Hostname: mailusrhubprd04.lss.emc.com
X-RSA-Classifications: public
Archived-At: <https://mailarchive.ietf.org/arch/msg/cfrg/o6Z7vCrlacM0mjYoRfVqNZ7L3QQ>
Subject: Re: [Cfrg] Cfrg Digest, Vol 136, Issue 27
X-BeenThere: cfrg@irtf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: Crypto Forum Research Group <cfrg.irtf.org>
List-Unsubscribe: <https://www.irtf.org/mailman/options/cfrg>, <mailto:cfrg-request@irtf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/cfrg/>
List-Post: <mailto:cfrg@irtf.org>
List-Help: <mailto:cfrg-request@irtf.org?subject=help>
List-Subscribe: <https://www.irtf.org/mailman/listinfo/cfrg>, <mailto:cfrg-request@irtf.org?subject=subscribe>
X-List-Received-Date: Thu, 25 Aug 2016 03:59:38 -0000

>>> Well, there is
>>> https://tools.ietf.org/html/draft-kaduk-kitten-des-des-des-die-die-di
>>> e-00 but it is not really what you are looking for, I think, given 
>>> the recipient list on the message.
>> 
>> I am particularly interested in 3DES's usage in TLS, given its 
>> previous MTI status in TLS, and because it was until very recently 
>> included in the OpenSSL "DEFAULT" ciphersuite list.
>
>I guess there's sometimes value in those die-die-die RFCs. Given that we have RFC7525/BCP195 [1] that 
>already has a SHOULD NOT for effective key sizes less than 128 bits, one could argue that the IETF has 
>covered that to a reasonable extent, in terms of RFCs saying to not do that.

The attack is practical because of the 64 bit block size of Triple DES. As such, perhaps the target of the "die-die-die RFC" should be all symmetric ciphers which use block sizes less than 128 bits.

Peter
------------------------------------------------
Peter Robinson - peter.robinson@rsa.com
RSA, The Security Division of EMC - http://www.rsa.com/