Re: [Cfrg] [CFRG] PAKE selection process: Update on documentation regarding CPace and AuCPace

Björn Haase <bjoern.m.haase@web.de> Sun, 26 April 2020 11:06 UTC

Return-Path: <bjoern.m.haase@web.de>
X-Original-To: cfrg@ietfa.amsl.com
Delivered-To: cfrg@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D02613A12DD for <cfrg@ietfa.amsl.com>; Sun, 26 Apr 2020 04:06:12 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.096
X-Spam-Level:
X-Spam-Status: No, score=-2.096 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_MSPIKE_H3=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=web.de
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 3QQPRdBK99DC for <cfrg@ietfa.amsl.com>; Sun, 26 Apr 2020 04:06:09 -0700 (PDT)
Received: from mout.web.de (mout.web.de [212.227.15.4]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 717613A12E1 for <cfrg@irtf.org>; Sun, 26 Apr 2020 04:06:09 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=web.de; s=dbaedf251592; t=1587899162; bh=0sDFxaZ7umy56RKgsa33QSn6O7LbjcU6ax1Anv7IYgs=; h=X-UI-Sender-Class:Subject:To:References:From:Date:In-Reply-To; b=sW5paKLhqkBCXSgComuWnogVRDoAuYOmUOzxzi6lO5re7/HHHjwvf3VH4koLf9iwW K/wRf/x7Zewk1QB1rOsunKbRHZaJA7lO+EeV9E2L3SwuXu9Smk07EBXiD/Ve+kphHu t+ldllh2EsmXOXMm83ka1hla586aL9WGeXyMRQGA=
X-UI-Sender-Class: c548c8c5-30a9-4db5-a2e7-cb6cb037b8f9
Received: from [192.168.178.76] ([5.146.196.91]) by smtp.web.de (mrweb003 [213.165.67.108]) with ESMTPSA (Nemesis) id 0Ljahc-1ivnGM1D9k-00bYef; Sun, 26 Apr 2020 13:06:02 +0200
To: cfrg@irtf.org, steve@tobtu.com
References: <trinity-277932c7-5fc1-4afd-b990-3bcc13189284-1581102307483@3c-app-webde-bs19> <745065292.92833.1587772122266@email.ionos.com>
From: =?UTF-8?Q?Bj=c3=b6rn_Haase?= <bjoern.m.haase@web.de>
Message-ID: <67a5d1c5-6d15-d06e-5404-3326aeb992d5@web.de>
Date: Sun, 26 Apr 2020 13:06:01 +0200
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:68.0) Gecko/20100101 Thunderbird/68.7.0
MIME-Version: 1.0
In-Reply-To: <745065292.92833.1587772122266@email.ionos.com>
Content-Type: text/plain; charset=utf-8; format=flowed
Content-Transfer-Encoding: quoted-printable
X-Provags-ID: V03:K1:4RUnboDPUb/O3iLyEfKx/K+NahSVeEpQ71TWlNP38sauqk7iaLZ 0xT3yxadqbb4xhRD+QOz3n9PItD/1Jk3iFd/yqcteoxFnputkqAmGDC8BJUBpnfJIJfL0Gc RpXVxME8j75gEjudDLdgU8NYweNgoItnPZ124Bkx7pq9w04WVutTWdhqrAjLrz+zr3J8WEi 7+Kn70lgS8/SWtAthULdw==
X-UI-Out-Filterresults: notjunk:1;V03:K0:kMRvhfoBsbE=:Ur3VSMzXJVzJ5ilJgG/Ypm Toa+MMj+ISQahVsNFIz1oHH9Su9Ai6jL7hkGeAEa83DkDbsot40f0utHp/VRMoNrtj6ouyuEK 7+h+qBa2KIfTw/kViNcDpKXvx9sh5F8A/ATsxV4sNRwQaukuBcLVesoSIOMSWjuvTASznF3/M ujC6Fl7y/YVIbxmAfa+rYSzefTRhyIgWoy6q+YXXCxR1RKlVsZnmEIypEfsvjZ3oDIoI4f09E RlHH3MzgORVuTilFo9K28B/DgVunmeLs22O5n1F05RkiWVAGyLzg+kE0mvPcKdDvl2M2XqLCT SG/497u1Iu2umaumMd/rO6cVv1e+JOWfbWU70Yl++quo5HB+D1JYWbIb8dRsy0qm4iC4cDJ6m a2AGAUJINtZCEskimGVZhOvVw+r3fVoNCpZAoT9RM4BXX9iQ2mJUmb8OUH280RSmlaaJNdUMi Z70K1cieQoaBawFjAsD5OLxSQDFcAG6N6wnajRHTbj6WlWgv4kzz6UXbXPypfYtKF+P9yyJYX iipGEbyYSg2aew9CTWOI+b9kdFN6oE9CYn84cE4C5zaGX78ETE0wYsoTa5yc8uJySpUj8BrGF JOhIyrzAo1g13Brf9ZQ6loXVGjb7SlqZysKKtEFISYjqL+WdphQUzVOkfoqZP6smyl4n7y3aJ nb4dIhpcsB6dbF9zsFpzXtwJjij4BOua+OkNNUHkM7z7jgLvoxK0y9OEjssgx87v+EW3L1yL3 GVdCI3a2mm/6c5Bwdlf69Y0ZS0P4S2f27oo3aAM98cMpCpvX3rFscUzNSa0X7mtjliKPh2P8j armIyRbmv+nCU+Y92MPKkXdYlbv8zRtFKPkFFTjw02EmOLEOnKVLPfi8L4IJdu+Ei6HdxS2PX 696eapHkroYdWJIZgf2K2guRDUPBVAb5kM5yE4awcSVzRMJfp8ahWAnxgAG/3SDSV4KmEhb1U G6Gx/6JqXTY8icweUqwPa7zxj/m3TKWvZ6M/l/f8f2Z4eKCmBuAkR3hO2PUcHPF2KndcCF9H9 04BvZRo1xZgENmYOBd1sEN/2zJ4QHzCZpvZZOP9ZezB8jw99618TcN4Rew0bug8fuaHRSTgaQ yR4C2H7cRnhLmJJ6r/RWJDtbxaAc5jSUD5dUxvUedLiH9MFnPU97hnCfRtdyEeFQspJXJojVq RW93TmciTRJuwdiaFZiX0Y10BIuCE7PgiBZqbQ66XvL1CFyYihOYHKIh1wVIkVnF9TEARPD4g fd6sN6zhqXbOXUOKr
Archived-At: <https://mailarchive.ietf.org/arch/msg/cfrg/rbDSrCeiwMGaiyW6Iq_tDzTJMRE>
Subject: Re: [Cfrg] [CFRG] PAKE selection process: Update on documentation regarding CPace and AuCPace
X-BeenThere: cfrg@irtf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Crypto Forum Research Group <cfrg.irtf.org>
List-Unsubscribe: <https://www.irtf.org/mailman/options/cfrg>, <mailto:cfrg-request@irtf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/cfrg/>
List-Post: <mailto:cfrg@irtf.org>
List-Help: <mailto:cfrg-request@irtf.org?subject=help>
List-Subscribe: <https://www.irtf.org/mailman/listinfo/cfrg>, <mailto:cfrg-request@irtf.org?subject=subscribe>
X-List-Received-Date: Sun, 26 Apr 2020 11:06:13 -0000

Thank you for your feedback! I have added a corresponding issue on the
github page where the xml sources for the I-D are maintained.

Yours,

Björn.

Am 25.04.2020 um 01:48 schrieb steve@tobtu.com:
> The section about iterative hash function "IHF" in the CPace draft (https://tools.ietf.org/html/draft-haase-cpace-01) is orphan documentation and should be removed.
>
>
> The function "IHF" is used inconsistently in the AuCPace draft (https://tools.ietf.org/html/draft-haase-aucpace-01). Sometimes omitting sigma (the work parameters) and in different order than defined.
>
> It's defined as:
> IHF(salt, username, pw, sigma)
>
> but used like:
> IHF(username,pw,salt)
> IHF(pwd,username,salt)
> IHF(salt, username, password)
> IHF(sigma,username,password, salt)
>
>
>> On February 7, 2020 at 1:05 PM "Björn Haase" <Bjoern.M.Haase@web.de> wrote:
>>
>>
>> Hi CFRG,
>>
>> I would like to give notice of the changes in documentation regarding CPace and AuCPace.
>>
>> https://tools.ietf.org/html/draft-haase-aucpace-01
>> https://tools.ietf.org/html/draft-haase-cpace-01
>>
>> Differences in the CPace draft 01:
>>
>> The CPace text is slightly rephrased and now refers to the acronym SDH as the
>> simultaneous Diffie-Hellmann problem (as defined and analyzed in the VTBPEKE paper).
>> Notation has been modified at some places in order to be in line with a reworked
>> paper with the security proof that considers the last recommendations of round 1.
>> (To be submitted this week-end).
>>
>> Differences in the AuCPace draft 01:
>>
>> I have added the process of AuCPace-authenticated transactions, such as useful for
>> change-passwords and "sudo"-style transactions. I moreover have fixed a bug in the
>> test vector section that stemmed from the fact that some python implementations of
>> scrypt seem to have problems with non-ASCII characters in the salt field.
>>
>> Moreover, I have setup a repository with reference implementations for SageMath and C.
>> Code is available at
>> https://github.com/BjoernMHaase/AuCPace
>>
>> Yours,
>>
>> Björn.
>>
>> _______________________________________________
>> Cfrg mailing list
>> Cfrg@irtf.org
>> https://www.irtf.org/mailman/listinfo/cfrg
> _______________________________________________
> Cfrg mailing list
> Cfrg@irtf.org
> https://www.irtf.org/mailman/listinfo/cfrg