Re: [Cfrg] Asking comments: New Version Notification for draft-kiyomoto-kcipher2-00
"Wook Shin" <wookshin@kddilabs.jp> Tue, 12 April 2011 09:38 UTC
Return-Path: <wookshin@kddilabs.jp>
X-Original-To: cfrg@ietfc.amsl.com
Delivered-To: cfrg@ietfc.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfc.amsl.com (Postfix) with ESMTP id 7C55DE06BE for <cfrg@ietfc.amsl.com>; Tue, 12 Apr 2011 02:38:33 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.44
X-Spam-Level:
X-Spam-Status: No, score=-2.44 tagged_above=-999 required=5 tests=[BAYES_20=-0.74, GB_I_LETTER=-2, MIME_8BIT_HEADER=0.3]
Received: from mail.ietf.org ([208.66.40.236]) by localhost (ietfc.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id jq5ELPEHrAWT for <cfrg@ietfc.amsl.com>; Tue, 12 Apr 2011 02:38:32 -0700 (PDT)
Received: from mandala.kddilabs.jp (mandala.kddilabs.jp [IPv6:2001:200:601:12::16]) by ietfc.amsl.com (Postfix) with ESMTP id 3291EE06CD for <cfrg@irtf.org>; Tue, 12 Apr 2011 02:38:09 -0700 (PDT)
Received: from localhost (mandala.kddilabs.jp [127.0.0.1]) by mandala.kddilabs.jp (Postfix) with ESMTP id B033C17481E6; Tue, 12 Apr 2011 18:38:07 +0900 (JST)
X-Virus-Scanned: amavisd-new at kddilabs.jp
Received: from mandala.kddilabs.jp ([127.0.0.1]) by localhost (mandala.kddilabs.jp [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id NFQC4FFXLltW; Tue, 12 Apr 2011 18:38:05 +0900 (JST)
Received: from ist.sec.kddilabs.jp (ist.sec.kddilabs.jp [IPv6:2001:200:601:d00:2e0:81ff:fe28:b57f]) by mandala.kddilabs.jp (Postfix) with ESMTP id E7ADA174817C; Tue, 12 Apr 2011 18:38:05 +0900 (JST)
Received: from ohpato-t61.sec.kddilabs.jp by ist.sec.kddilabs.jp (8.14.1/8.12.11) with ESMTP id p3C9cFC1009414; Tue, 12 Apr 2011 18:38:19 +0900
Content-Type: text/plain; charset="utf-8"; format="flowed"; delsp="yes"
To: cfrg@irtf.org, Joachim Strömbergson <Joachim@strombergson.com>
References: <op.vthuamrupzjggh@ohpato-t61.sec.kddilabs.jp> <01e001cbf4c8$30ee9610$92cbc230$@augustcellars.com> <op.vtlrn1ekpzjggh@ohpato-t61.sec.kddilabs.jp> <4D9EAD86.5030301@Strombergson.com>
Date: Tue, 12 Apr 2011 18:38:01 +0900
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit
From: Wook Shin <wookshin@kddilabs.jp>
Organization: KDDI
Message-ID: <op.vttjpnmkpzjggh@ohpato-t61.sec.kddilabs.jp>
In-Reply-To: <4D9EAD86.5030301@Strombergson.com>
User-Agent: Opera Mail/11.01 (Win32)
X-Antivirus: avast! (VPS 110411-2, 04/12/2011), Outbound message
X-Antivirus-Status: Clean
Subject: Re: [Cfrg] Asking comments: New Version Notification for draft-kiyomoto-kcipher2-00
X-BeenThere: cfrg@irtf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Crypto Forum Research Group <cfrg.irtf.org>
List-Unsubscribe: <http://www.irtf.org/mailman/options/cfrg>, <mailto:cfrg-request@irtf.org?subject=unsubscribe>
List-Archive: <http://www.irtf.org/mail-archive/web/cfrg>
List-Post: <mailto:cfrg@irtf.org>
List-Help: <mailto:cfrg-request@irtf.org?subject=help>
List-Subscribe: <http://www.irtf.org/mailman/listinfo/cfrg>, <mailto:cfrg-request@irtf.org?subject=subscribe>
X-List-Received-Date: Tue, 12 Apr 2011 09:38:33 -0000
Hello Joachim, > This is where soo many cipher designers go wrong. From an implementer > point of view having access to test vectors and a simple, functional > reference model which matches the algorithm description is almost > essential. Unfortunately test vectors is rare. And a good, reference > model is rarer still. > > What you often get is an implementation which is unrolled or in other > ways reorganized for maximum speed, have variable names not matching the > written algorithm description, lacks comments is generally written in > badly coded C. > > Yes, a version optimized for speed is good too, but that comes after > having the functionality down. And using single letter variable names, > bad intendation and lack of comments does not lead to faster > implementations. > > So, please if possible, include the simplest, cleanest, well coded, well > documented albeit slowest implementation that is self contained (besides > stdint, stdio etc) do as little macros, typedefs etc as possible. And > compiles easily. > I really appreciate your comments. Due to my lack of experience in the standardization process and the field of cryptography, I think I misunderstood the purpose of the standardization and the use of test vectors. Now I can see what Jim and Jon were looking for. I will revise the draft and rewrite the codes, so that the procedures in the implementation can be shown clearly. Thank you again, Wook On Fri, 08 Apr 2011 15:39:02 +0900, Joachim Strömbergson <Joachim@strombergson.com> wrote: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > Aloha! > > On 2011:04:08 6:49, Wook Shin wrote: >> I just wished the source would be like an extra appendix which might >> provide some helpful insight for someone when she/he reads the draft. >> I don't think the source code is the unique and the most efficient >> implementation of KCipher-2, though... > > This is where soo many cipher designers go wrong. From an implementer > point of view having access to test vectors and a simple, functional > reference model which matches the algorithm description is almost > essential. Unfortunately test vectors is rare. And a good, reference > model is rarer still. > > What you often get is an implementation which is unrolled or in other > ways reorganized for maximum speed, have variable names not matching the > written algorithm description, lacks comments is generally written in > badly coded C. > > Yes, a version optimized for speed is good too, but that comes after > having the functionality down. And using single letter variable names, > bad intendation and lack of comments does not lead to faster > implementations. > > So, please if possible, include the simplest, cleanest, well coded, well > documented albeit slowest implementation that is self contained (besides > stdint, stdio etc) do as little macros, typedefs etc as possible. And > compiles easily. > > (Note: This is not a critique of kcipher2 but a general observation.) > - -- > Med vänlig hälsning, Yours > > Joachim Strömbergson - Alltid i harmonisk svängning. > ======================================================================== > Kryptoblog - IT-säkerhet på svenska > http://www.strombergson.com/kryptoblog > ======================================================================== > -----BEGIN PGP SIGNATURE----- > Version: GnuPG v1.4.11 (Darwin) > Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ > > iEYEARECAAYFAk2erYYACgkQZoPr8HT30QH+4ACePO0asRvreR9t5QXUVKRe53Bv > 7P8An3/hTwwtsNqmeOxFifLLFTzR6Wte > =yjke > -----END PGP SIGNATURE----- > _______________________________________________ > Cfrg mailing list > Cfrg@irtf.org > http://www.irtf.org/mailman/listinfo/cfrg -- Wook Shin Information Security Laboratory, KDDI R&D Laboratories, Inc.
- [Cfrg] Asking comments: New Version Notification … Wook Shin
- Re: [Cfrg] Asking comments: New Version Notificat… Rose, Greg
- Re: [Cfrg] Asking comments: New Version Notificat… Jon Callas
- Re: [Cfrg] Asking comments: New Version Notificat… Wook Shin
- Re: [Cfrg] Asking comments: New Version Notificat… Wook Shin
- Re: [Cfrg] Asking comments: New Version Notificat… Jim Schaad
- Re: [Cfrg] Asking comments: New Version Notificat… Wook Shin
- Re: [Cfrg] Asking comments: New Version Notificat… Joachim Strömbergson
- Re: [Cfrg] Asking comments: New Version Notificat… Wook Shin