Re: [Crypto-panel] Request for reviews: "Properties of AEAD Algorithms"
"Stanislav V. Smyshlyaev" <smyshsv@gmail.com> Mon, 12 February 2024 17:40 UTC
Return-Path: <smyshsv@gmail.com>
X-Original-To: crypto-panel@ietfa.amsl.com
Delivered-To: crypto-panel@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3B721C14F5F6 for <crypto-panel@ietfa.amsl.com>; Mon, 12 Feb 2024 09:40:52 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.105
X-Spam-Level:
X-Spam-Status: No, score=-2.105 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id pB_o5fEjLMmU for <crypto-panel@ietfa.amsl.com>; Mon, 12 Feb 2024 09:40:48 -0800 (PST)
Received: from mail-yb1-xb35.google.com (mail-yb1-xb35.google.com [IPv6:2607:f8b0:4864:20::b35]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 85160C151094 for <crypto-panel@irtf.org>; Mon, 12 Feb 2024 09:40:48 -0800 (PST)
Received: by mail-yb1-xb35.google.com with SMTP id 3f1490d57ef6-dcbc6a6808fso543730276.2 for <crypto-panel@irtf.org>; Mon, 12 Feb 2024 09:40:48 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20230601; t=1707759647; x=1708364447; darn=irtf.org; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:from:to:cc:subject:date:message-id:reply-to; bh=7ZpobK37XyWJ98HNeDOm6k62P9K2OP9XPCB+mxNRa7o=; b=LYwh04Kn6CkjDFbKaceAEwPswMTWcJAkhbIJ2kPDfZuoMhewsBN+Y093pbJcSYVvzQ Y8xxzltUc9z+oRhNbVIHez7ByIUfanxd6nAf2X0VVNY6TwlEXRty6CtF3lgHkR/AIIbD K0wsl8bNe5Mda6hE9leVE7C3dcm5ubT0xxv8i7taZZdtSgGzKUqQ6k7stjvKWlagorDI D5y9PFwBeDB9zSrpU47zwsHxiumbJN4joG5mnknB8+0wrQjUUIuw3+qUPM6r/cbpyv2l vqp6ReGidtaWZW2+lvm7M4dRjsvYbhPWspQeu9YYDrSP8SRMe55bOJOkS1cfyJaX8Cut nBtQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1707759647; x=1708364447; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:x-gm-message-state:from:to:cc:subject:date:message-id :reply-to; bh=7ZpobK37XyWJ98HNeDOm6k62P9K2OP9XPCB+mxNRa7o=; b=f4NgWnhudL4ZJ1x/jQnPk65pRUcJNanWgk+iiXebNoRpmIH/sGIvAT6Lsx8oiNAbkP +h4OtlnnZ7xyG1PymhI/uih9xwiJ7CRarlCgtQvID+zKHSbs6scO8EJRm2HjPOrz2UfR bRA8+si8EsvpbygRQphZsrGR7VgTEpz/uzbcCksidi1UV5w2IO7PT/OLqIrrQ7K0pPJz HmCA0QL1qZ30UZBIOqp3+n1qXFWrqVScNOWJRcCGchM1Ms+OqwOJMG0fiLFamu18wf/0 Gq0KgiWr0YxIe5iK9KSoYnyz3/R4ftTrj+hDHKQD/UplW4Z+O1E5rWCaMTbiKyYLkQWe 0OIg==
X-Forwarded-Encrypted: i=1; AJvYcCXZrt/9W0d8wWSV93Fu9/zlp/vQbIbU4qoDfa2HRn9el9m89PqD3hefREIOTQt2fn3YB3BtmpNYFNKAwRKLcbOjANO/qS4=
X-Gm-Message-State: AOJu0Yw0ZQuA65VcbgUJhFFjiViJpjzKnLlMqw5iFLBFIOzJKva3iCBy +qm18/o9UzTOgrCNa+UMGQ0qNiMp3xcq8K42NSbumk0nu/8LuuDBLPCKEYpLb8YUTjP4T4zh+d2 kzK9n99ZvI8GTT/K/3IGdgcGX6Mk=
X-Google-Smtp-Source: AGHT+IFjBFS3G7Ds6PEtBOzN/NzY6DO32nvyObENTf/uyFZTwPsjnHjRZnbLDXen2SQAtQpb/Gk3YxjrIqlhyEkk+xE=
X-Received: by 2002:a05:6902:248e:b0:dc6:7247:5d94 with SMTP id ds14-20020a056902248e00b00dc672475d94mr6024955ybb.55.1707759647612; Mon, 12 Feb 2024 09:40:47 -0800 (PST)
MIME-Version: 1.0
References: <CAMr0u6mOoejinRPq83-Tz-2BF+Bd_hS9S15TBR1138H_pqhVTQ@mail.gmail.com> <BC127F18-488D-4BF5-B077-B7A5AFAA82E4@vigilsec.com>
In-Reply-To: <BC127F18-488D-4BF5-B077-B7A5AFAA82E4@vigilsec.com>
From: "Stanislav V. Smyshlyaev" <smyshsv@gmail.com>
Date: Mon, 12 Feb 2024 20:40:36 +0300
Message-ID: <CAMr0u6n-2FQL0Rg_h1ge_gy7tT--Fg9PovvV29SwNDxZt6noBg@mail.gmail.com>
To: Russ Housley <housley@vigilsec.com>
Cc: cfrg-chairs@ietf.org, crypto-panel@irtf.org
Content-Type: multipart/alternative; boundary="000000000000286256061132c709"
Archived-At: <https://mailarchive.ietf.org/arch/msg/crypto-panel/2NqCFBrfUQYTquUvCaW5Iq91TH8>
Subject: Re: [Crypto-panel] Request for reviews: "Properties of AEAD Algorithms"
X-BeenThere: crypto-panel@irtf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Crypto Review Panel review coordination <crypto-panel.irtf.org>
List-Unsubscribe: <https://mailman.irtf.org/mailman/options/crypto-panel>, <mailto:crypto-panel-request@irtf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/crypto-panel/>
List-Post: <mailto:crypto-panel@irtf.org>
List-Help: <mailto:crypto-panel-request@irtf.org?subject=help>
List-Subscribe: <https://mailman.irtf.org/mailman/listinfo/crypto-panel>, <mailto:crypto-panel-request@irtf.org?subject=subscribe>
X-List-Received-Date: Mon, 12 Feb 2024 17:40:52 -0000
Thank you so much, Russ! Kind regards, Stanislav On Mon, 12 Feb 2024 at 20:39, Russ Housley <housley@vigilsec.com> wrote: > Document: draft-irtf-cfrg-aead-properties-03 > Reviewer: Russ Housley > Review Date: 2024-02-12 > > > The CFRG Chairs asked the Crypto Panel to review this document. > I am providing one review. There may be others. > > > Summary: > > This document gives high-level definitions of AEAD algorithm properties. > > > Major Concerns: > > Section 4.3.5: [RFC5116] is not an appropriate reference for AES-GCM. > Please consider: > > Dworkin, M., "NIST Special Publication 800-38D: Recommendation for > Block Cipher Modes of Operation: Galois/Counter Mode (GCM) and GMAC," > U.S. National Institute of Standards and Technology. > http://csrc.nist.gov/publications/nistpubs/800-38D/SP-800-38D.pdf > > Section 4.4.9: This subsection seems very different than the others. > There is not an example AEAD that offers this property. If you really > want to keep this subsection, please provide more discussion about The > usefulness of a Zero-Knowledge proofs in an AEAD algorithm. > > > Minor Concerns: > > Section 1.1: Please spell out "MAC" the first time it is used. > > Section 1.2: RFC 2119 is referenced in Section 3, but the terms are used > before they are introduced. > > Section 4.4.1: I do not understand the need for "MAY". Please use "may". > > > Nits: > > Abstract: s/ in the field/ in the terminology used by researchers/ > > Section 1: s/is an extension of authenticated encryption, which// > > Section 1.1: s/Most AEAD algorithms usually/Most AEAD algorithms/ > > Section 1.2: s/In the following document/In this document/ > > Section 1.2: s/ document's objective/ objective of this document/ > >
- [Crypto-panel] Request for reviews: "Properties o… Stanislav V. Smyshlyaev
- Re: [Crypto-panel] Request for reviews: "Properti… Russ Housley
- Re: [Crypto-panel] Request for reviews: "Properti… Stanislav V. Smyshlyaev
- Re: [Crypto-panel] Request for reviews: "Properti… Russ Housley
- Re: [Crypto-panel] Request for reviews: "Properti… Stanislav V. Smyshlyaev