Re: [Cfrg] Second RGLC on "AES-GCM-SIV"

Ronald Tse <tse@ribose.com> Thu, 18 January 2018 19:28 UTC

Return-Path: <tse@ribose.com>
X-Original-To: cfrg@ietfa.amsl.com
Delivered-To: cfrg@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 947BF12778D for <cfrg@ietfa.amsl.com>; Thu, 18 Jan 2018 11:28:06 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.92
X-Spam-Level:
X-Spam-Status: No, score=-1.92 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ribose.onmicrosoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 9ZOJen7cEYSo for <cfrg@ietfa.amsl.com>; Thu, 18 Jan 2018 11:28:04 -0800 (PST)
Received: from APC01-HK2-obe.outbound.protection.outlook.com (mail-hk2apc01on0063.outbound.protection.outlook.com [104.47.124.63]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 8734F127011 for <cfrg@irtf.org>; Thu, 18 Jan 2018 11:28:03 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ribose.onmicrosoft.com; s=selector1-ribose-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version; bh=CPQN1+Fb/hHyMYyT2ze2OrpDzFQiRjMo91imDNZ5/zQ=; b=Ofltl0pVvleRzP/YIequaDYAz51YnS8aQkKTViDglp2BEgHHthY+Tr5DSLohRRrpBjtAToBJcYkL4Lpkq1zn67wBubB2vQCyndTpOr52b4uBT2e2cM4mYUdzYne/ftCYJ/556J3w0LLt41Kj9Qy83F+u/tcgqJ9OWxnSoGCcD8o=
Received: from PS1PR01MB1050.apcprd01.prod.exchangelabs.com (10.165.210.30) by PS1PR01MB1050.apcprd01.prod.exchangelabs.com (10.165.210.30) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384_P256) id 15.20.428.17; Thu, 18 Jan 2018 19:27:57 +0000
Received: from PS1PR01MB1050.apcprd01.prod.exchangelabs.com ([fe80::7469:b037:906a:c097]) by PS1PR01MB1050.apcprd01.prod.exchangelabs.com ([fe80::7469:b037:906a:c097%14]) with mapi id 15.20.0428.014; Thu, 18 Jan 2018 19:27:57 +0000
From: Ronald Tse <tse@ribose.com>
To: "Paterson, Kenny" <Kenny.Paterson@rhul.ac.uk>, Alexey Melnikov <aamelnikov@fastmail.fm>
CC: "cfrg@irtf.org" <cfrg@irtf.org>
Thread-Topic: [Cfrg] Second RGLC on "AES-GCM-SIV"
Thread-Index: AQHTjuedRk3NkCRPO0ONUYyfhtg7QKN6BxIA
Date: Thu, 18 Jan 2018 19:27:57 +0000
Message-ID: <E76E5392-0C05-4EE4-A4EB-D87ADA25B8FC@ribose.com>
References: <E16F508E-7C08-4DB2-A570-DDACC162F435@rhul.ac.uk>
In-Reply-To: <E16F508E-7C08-4DB2-A570-DDACC162F435@rhul.ac.uk>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: spf=none (sender IP is ) smtp.mailfrom=tse@ribose.com;
x-originating-ip: [220.246.174.191]
x-ms-publictraffictype: Email
x-microsoft-exchange-diagnostics: 1; PS1PR01MB1050; 7:i4KxoL0cgAM0Ss10A4Sbfetp5tygyXiC+MHu7RyY0krWwQtJbGC3alBpozjCVgrEVjrH9mcgPpET8ATOxslSYIlcx9PiO0v8xwazirjsmREYqrIHbE/RxG9REvfmO6+FBe/8OhsG4zJuG3/bKNlNbNp1EFjrA2upI4jy6FtozBbe2XOCA2hvXAGu/3HqsWz5N9fzaqtnzqU/4ZFlfAcKBER6G3V+ovN9r4Ulyvu8oPr5kVJnY+Bjyqnzkvwj9Xpu
x-ms-exchange-antispam-srfa-diagnostics: SSOS;
x-ms-office365-filtering-correlation-id: ae836c0a-22b5-4b54-c4c4-08d55ea99492
x-microsoft-antispam: UriScan:(161990435356232); BCL:0; PCL:0; RULEID:(7020095)(4652020)(7021125)(5600026)(4604075)(3008032)(2017052603307)(7153060)(7193020); SRVR:PS1PR01MB1050;
x-ms-traffictypediagnostic: PS1PR01MB1050:
x-microsoft-antispam-prvs: <PS1PR01MB1050701F0BAD78858CC24D43D7E80@PS1PR01MB1050.apcprd01.prod.exchangelabs.com>
x-exchange-antispam-report-test: UriScan:(161990435356232)(120809045254105)(192374486261705);
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(6040495)(2401047)(5005006)(8121501046)(10201501046)(93006095)(93001095)(3002001)(3231023)(2400066)(944501161)(6041282)(20161123564045)(201703131423095)(201703031522075)(201702281528075)(20161123555045)(201703061421075)(201703061406153)(20161123562045)(20161123558120)(2016111802025)(20161123560045)(6043046)(6072148)(201708071742011); SRVR:PS1PR01MB1050; BCL:0; PCL:0; RULEID:(100000803101)(100110400095); SRVR:PS1PR01MB1050;
x-forefront-prvs: 05568D1FF7
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(366004)(39380400002)(396003)(376002)(39830400003)(346002)(199004)(189003)(7736002)(229853002)(5660300001)(6436002)(8656006)(14454004)(316002)(110136005)(2900100001)(33656002)(99286004)(6486002)(2950100002)(3280700002)(6246003)(83716003)(3660700001)(5250100002)(2906002)(4326008)(86362001)(25786009)(26005)(8676002)(81166006)(81156014)(8936002)(6116002)(3846002)(53936002)(230783001)(68736007)(102836004)(8666007)(106356001)(236005)(6506007)(54896002)(6512007)(6306002)(53546011)(59450400001)(76176011)(296002)(36756003)(66066001)(97736004)(105586002)(413944005)(606006)(966005)(478600001)(82746002); DIR:OUT; SFP:1101; SCL:1; SRVR:PS1PR01MB1050; H:PS1PR01MB1050.apcprd01.prod.exchangelabs.com; FPR:; SPF:None; PTR:InfoNoRecords; A:1; MX:1; LANG:en;
received-spf: None (protection.outlook.com: ribose.com does not designate permitted sender hosts)
x-microsoft-antispam-message-info: qPn0FPP2K2X3iMiIfFPw871NG8/YIrGQRBGYajGL7f6jdc/9YwD/oH0d89YGwaS+bbKLxPJT0i74OAZIUfO15A==
spamdiagnosticoutput: 1:99
spamdiagnosticmetadata: NSPM
Content-Type: multipart/alternative; boundary="_000_E76E53920C054EE4A4EBD87ADA25B8FCribosecom_"
MIME-Version: 1.0
X-OriginatorOrg: ribose.com
X-MS-Exchange-CrossTenant-Network-Message-Id: ae836c0a-22b5-4b54-c4c4-08d55ea99492
X-MS-Exchange-CrossTenant-originalarrivaltime: 18 Jan 2018 19:27:57.6361 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: d98a04ff-ef98-489b-b33c-13c23a2e091a
X-MS-Exchange-Transport-CrossTenantHeadersStamped: PS1PR01MB1050
Archived-At: <https://mailarchive.ietf.org/arch/msg/cfrg/pdoGqPmmSqvrO5iJLS04XxjactU>
Subject: Re: [Cfrg] Second RGLC on "AES-GCM-SIV"
X-BeenThere: cfrg@irtf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: Crypto Forum Research Group <cfrg.irtf.org>
List-Unsubscribe: <https://www.irtf.org/mailman/options/cfrg>, <mailto:cfrg-request@irtf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/cfrg/>
List-Post: <mailto:cfrg@irtf.org>
List-Help: <mailto:cfrg-request@irtf.org?subject=help>
List-Subscribe: <https://www.irtf.org/mailman/listinfo/cfrg>, <mailto:cfrg-request@irtf.org?subject=subscribe>
X-List-Received-Date: Thu, 18 Jan 2018 19:28:06 -0000

Dear Chairs,

I fully support the publication of this document as an RFC.

Kind regards,
Ron

_____________________________________

Ronald Tse
Ribose Inc.

On Jan 17, 2018, at 12:32 AM, Paterson, Kenny <Kenny.Paterson@rhul.ac.uk<mailto:Kenny.Paterson@rhul.ac.uk>> wrote:

Dear CFRG participants,

This message starts a second 2-week RGLC on "AES-GCM-SIV: Nonce Misuse-Resistant Authenticated Encryption" (draft-irtf-cfrg-gcmsiv-07), that will end on January 30th. See https://datatracker.ietf.org/doc/draft-irtf-cfrg-gcmsiv for the latest version of the draft.

We are having a second last call because, although there only were small changes to the draft in going from 06 to 07, we also had the benefit of new security analysis on the draft:

http://www.cs.ucsb.edu/~tessaro/papers/BHT17.pdf

We also had some productive discussion on the benefits of using POLYVAL versus GHASH during the previous last call period, with the thread beginning at:

https://www.ietf.org/mail-archive/web/cfrg/current/msg09333.html


Please send your comments, as well as expression of support to publish as an RFC (or possible reasons for not doing so) in reply to this message or directly to CFRG chairs. Your feedback will help chairs to decide whether the document is ready for review by IRSG and subsequent publication as an RFC.

Thank you,

Alexey and Kenny

_______________________________________________
Cfrg mailing list
Cfrg@irtf.org
https://www.irtf.org/mailman/listinfo/cfrg