IETF Logo Mail Archive

Re: [Cfrg] RG Last Call - draft-irtf-cfrg-ocb-00

"Blumenthal, Uri - 0558 - MITLL" <uri@ll.mit.edu> Wed, 06 February 2013 16:24 UTC

Return-Path: <prvs=5749f873a1=uri@ll.mit.edu>
X-Original-To: cfrg@ietfa.amsl.com
Delivered-To: cfrg@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 00A5021F8956 for <cfrg@ietfa.amsl.com>; Wed, 6 Feb 2013 08:24:43 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -5.101
X-Spam-Level:
X-Spam-Status: No, score=-5.101 tagged_above=-999 required=5 tests=[AWL=0.698, BAYES_00=-2.599, RCVD_IN_DNSWL_MED=-4, SARE_SUB_RAND_LETTRS4=0.799, UNPARSEABLE_RELAY=0.001]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id tlSIRGuuL5r5 for <cfrg@ietfa.amsl.com>; Wed, 6 Feb 2013 08:24:42 -0800 (PST)
Received: from mx2.ll.mit.edu (MX2.LL.MIT.EDU [129.55.12.46]) by ietfa.amsl.com (Postfix) with ESMTP id 312B621F88E4 for <cfrg@irtf.org>; Wed, 6 Feb 2013 08:24:42 -0800 (PST)
Received: from LLE2K7-HUB02.mitll.ad.local (LLE2K7-HUB02.mitll.ad.local) by mx2.ll.mit.edu (unknown) with ESMTP id r16GOfeQ022719; Wed, 6 Feb 2013 11:24:41 -0500
From: "Blumenthal, Uri - 0558 - MITLL" <uri@ll.mit.edu>
To: Greg Rose <ggr@seer-grog.net>, "Igoe, Kevin M." <kmigoe@nsa.gov>
Date: Wed, 06 Feb 2013 11:24:37 -0500
Thread-Topic: [Cfrg] RG Last Call - draft-irtf-cfrg-ocb-00
Thread-Index: Ac4Ehnaat4aJByXnTdq+Dct6yHkijw==
Message-ID: <CD37EC68.E9B9%uri@ll.mit.edu>
In-Reply-To: <452F0111-0FB7-4F57-AA45-AE5E2536777F@seer-grog.net>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach: yes
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/14.2.5.121010
acceptlanguage: en-US
Content-Type: multipart/signed; protocol="application/pkcs7-signature"; micalg="sha1"; boundary="B_3442994677_30097662"
MIME-Version: 1.0
X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10432:5.9.8327, 1.0.431, 0.0.0000 definitions=2013-02-06_02:2013-02-06, 2013-02-06, 1970-01-01 signatures=0
X-Proofpoint-Spam-Details: rule=notspam policy=default score=0 spamscore=0 ipscore=0 suspectscore=2 phishscore=0 bulkscore=0 adultscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=6.0.2-1211240000 definitions=main-1302060098
Cc: "cfrg@irtf.org" <cfrg@irtf.org>
Subject: Re: [Cfrg] RG Last Call - draft-irtf-cfrg-ocb-00
X-BeenThere: cfrg@irtf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Crypto Forum Research Group <cfrg.irtf.org>
List-Unsubscribe: <http://www.irtf.org/mailman/options/cfrg>, <mailto:cfrg-request@irtf.org?subject=unsubscribe>
List-Archive: <http://www.irtf.org/mail-archive/web/cfrg>
List-Post: <mailto:cfrg@irtf.org>
List-Help: <mailto:cfrg-request@irtf.org?subject=help>
List-Subscribe: <http://www.irtf.org/mailman/listinfo/cfrg>, <mailto:cfrg-request@irtf.org?subject=subscribe>
X-List-Received-Date: Wed, 06 Feb 2013 16:24:43 -0000

I concur with Greg.

My opinion is - this mode is technically sound (and that's probably is
this group's consensus) but practically unusable in any serious product
(commercial or otherwise) because of its licensing terms.

This licensing makes me leery to accept this AEAD mode for standardization
(despite that it is faster than the alternatives) when we already have
acceptable standardized non-encumbered (and reasonably fast) modes such as
GCM. 

Performance isn't all, after all. :-)
--
Regards,
Uri Blumenthal
<Disclaimer>




On 2/6/13 10:42 , "Greg Rose" <ggr@seer-grog.net> wrote:

>
>On 2013 Feb 6, at 6:43 , Igoe, Kevin M. wrote:
>
>> There must be a statement in the abstract identifying it as the product
>>of the RG 
>>      How about this:  ³This document is a product of the Crypto Forum
>>Research Group (CFRG).²
>
>No, it isn't. I for one haven't even read it.
>>  
>> 
>>-------------------------------------------------------------------------
>>---
>> There must be a paragraph near the beginning (for example, in the
>>introduction) describing
>> the level of support for publication. Example text might read: "this
>>document represents
>> the consensus of the FOOBAR RG" or "the views in this document were
>>considered controversial
>> by the FOOBAR RG but the RG reached a consensus that the document
>>should still be published".
>>  
>>      Aside from IPR issues (sigh), there is nothing controversial here.
>> I suggest putting in a phrase
>>     like:
>>  
>>          ³OCB has received years of in-depth analysis previous to its
>>submission to the CFRG
>>            (see [4] and [5]), and has been under review by the members
>>of the CFRG for almost
>>            a year.  It is the consensus of the CFRG that the security
>>mechanisms provided by the
>>            OCB AEAD algorithm described in this document are suitable
>>for use in providing privacy
>>           and authentication.²
>>  
>>     You might want to add a reference that isn¹t behind a paywall, say
>>IACR ePrint 2001/026.
>
>Knowing the background and the authors, I can go along with "consensus".
>But in some standards bodies (I don't actually do all that much with IETF
>so I don't know the true position here) the word "consensus" has a
>defined meaning. I'm not sure we correctly can use it...
>
>Greg.
>
>_______________________________________________
>Cfrg mailing list
>Cfrg@irtf.org
>http://www.irtf.org/mailman/listinfo/cfrg

v2.23.0 | Report a Bug | By Email