IETF Logo Mail Archive

Re: [Curdle] Kathleen Moriarty's Yes on draft-ietf-curdle-ssh-dh-group-exchange-05: (with COMMENT)

Loganaden Velvindron <logan@hackers.mu> Fri, 22 September 2017 17:14 UTC

Return-Path: <logan@hackers.mu>
X-Original-To: curdle@ietfa.amsl.com
Delivered-To: curdle@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4C617134557 for <curdle@ietfa.amsl.com>; Fri, 22 Sep 2017 10:14:11 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_DNSWL_NONE=-0.0001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=hackers-mu.20150623.gappssmtp.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id YyLsKi7zAiEp for <curdle@ietfa.amsl.com>; Fri, 22 Sep 2017 10:14:10 -0700 (PDT)
Received: from mail-io0-x229.google.com (mail-io0-x229.google.com [IPv6:2607:f8b0:4001:c06::229]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 965B813454C for <curdle@ietf.org>; Fri, 22 Sep 2017 10:14:07 -0700 (PDT)
Received: by mail-io0-x229.google.com with SMTP id q11so4522437ioe.10 for <curdle@ietf.org>; Fri, 22 Sep 2017 10:14:07 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=hackers-mu.20150623.gappssmtp.com; s=20150623; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=oYw9p7huPaQCcvrX8D7EbHOyHcX0Px/KIcWXohzNUas=; b=g8GwBORPhVrbvauPMhxjMFib0qPNLZRAd38ZF5TMP5EBjAQBtHTjK3bNygdiF2onWH UmeYkIQQ4KfaMyodFyQZE5S30Ob/DZ6lPM5+deHbRQt+J+CIY50Wcy6XeOW3SPIBCggu O5kxDzPQrdV1idyOfu8yIWdNTXdCzv2GNM0aTF+c1UxmBzkDZQT0Ny4FUQZVrBKm816L pNkIDTKNePqTuXlk2b1OeLvJ1+kAFjuagzyKD45KoFs7jrEbzpVNwO6xYLaWl2V2O86b +QHs4KY52h28lM3bX7oJ9s265QeJ5HehNRP4RndU5TV9lYJFblcx7Y1P2raIVLmeHiP1 EE2w==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc; bh=oYw9p7huPaQCcvrX8D7EbHOyHcX0Px/KIcWXohzNUas=; b=meay2a+5/OQkbVbPuuXy4AhyHZLsBR5nEPaxEmkt/5cRPaxm8AUOefUR9z57Y/jph2 MDf01vdLUPlRHbVZQStCb34CMKbMGtUqTKse7tzvw7EeDDAep19DYvyvb9OFLTWnxwe6 ga6QDlTXT5HgcWoFQola8/qIuAPvWyihqWCCDBS8GPJ1JqA2ZmNMYs+BRreb+i3rqRPc q2cJiK55aAvIZRIkPB05eGc6Ym2P4yroXDSTFHmnNQ8QNjPwUcxyL8/geqT4RhtG4/4U bFhKeqUsYDIFLTv3Abqucd2TmoLt1kn5qIAddu0uFfUu+VMx8nvPqfaxAi1GSh32kJ6L Q7YQ==
X-Gm-Message-State: AHPjjUhbounLx6BZnV4bMl86o8f3IGPKBfQBTOoSttjQD/0KiCriHP5h 39GHz8IClRQgu5oQaSwx5KTJkGu2MHD3RUJe0b9Aaw==
X-Google-Smtp-Source: AOwi7QCR0ST9U8CyREF1h3H0kNZQwMpo47fIUgU8tX+QcW+jR93VnqFfpC5yxR10fIPzyebclXLHvQTPLTP0Mdi5pAI=
X-Received: by 10.202.104.206 with SMTP id o75mr7615345oik.31.1506100446909; Fri, 22 Sep 2017 10:14:06 -0700 (PDT)
MIME-Version: 1.0
Received: by 10.74.61.206 with HTTP; Fri, 22 Sep 2017 10:14:06 -0700 (PDT)
In-Reply-To: <CAHbuEH6huisAkD=kMTY-w6gA_tsL-4EDf6m+OC-AcZqcB+0Ftg@mail.gmail.com>
References: <CAHbuEH7O=v2k7UWH-nw-+G80oW7q-pK=F7vxB91BfLRuGsXCJw@mail.gmail.com> <21187.1505924879@eng-mail01.juniper.net> <CABcZeBOyAiP7FU-wvmTi46gcQVGzz93TnuskTQb=-cyMfj3wVQ@mail.gmail.com> <2DD56D786E600F45AC6BDE7DA4E8A8C118CEE6E6@eusaamb107.ericsson.se> <CABcZeBPBqQU-XnAc0KoayeOmeVcFkNWa2T3JTJXHC8+voFVA5w@mail.gmail.com> <CAFDEUTecTMwexkZ6d40DSqLFqnPBL6SwOnr6Guh+7RHbZ6qsHQ@mail.gmail.com> <CAHbuEH6huisAkD=kMTY-w6gA_tsL-4EDf6m+OC-AcZqcB+0Ftg@mail.gmail.com>
From: Loganaden Velvindron <logan@hackers.mu>
Date: Fri, 22 Sep 2017 21:14:06 +0400
Message-ID: <CAFDEUTfq=ZW64t_zj1erCkxY5MaSmg9WLBi2-gZnZnbXXfucBw@mail.gmail.com>
To: Kathleen Moriarty <kathleen.moriarty.ietf@gmail.com>
Cc: Eric Rescorla <ekr@rtfm.com>, Daniel Migault <daniel.migault@ericsson.com>, "Mark D. Baushke" <mdb@juniper.net>, curdle <curdle@ietf.org>, "Salz, Rich" <rsalz@akamai.com>, draft-ietf-curdle-ssh-dh-group-exchange <draft-ietf-curdle-ssh-dh-group-exchange@ietf.org>, curdle <curdle-chairs@ietf.org>, Spencer Dawkins at IETF <spencerdawkins.ietf@gmail.com>, The IESG <iesg@ietf.org>
Content-Type: text/plain; charset="UTF-8"
Archived-At: <https://mailarchive.ietf.org/arch/msg/curdle/2Qcod0qJw9wRE5KgFsPNVFe-8Mc>
Subject: Re: [Curdle] Kathleen Moriarty's Yes on draft-ietf-curdle-ssh-dh-group-exchange-05: (with COMMENT)
X-BeenThere: curdle@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "List for discussion of potential new security area wg." <curdle.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/curdle>, <mailto:curdle-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/curdle/>
List-Post: <mailto:curdle@ietf.org>
List-Help: <mailto:curdle-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/curdle>, <mailto:curdle-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 22 Sep 2017 17:14:11 -0000

On Fri, Sep 22, 2017 at 6:30 PM, Kathleen Moriarty
<kathleen.moriarty.ietf@gmail.com> wrote:
> On Fri, Sep 22, 2017 at 10:20 AM, Loganaden Velvindron <logan@hackers.mu> wrote:
>> On Fri, Sep 22, 2017 at 5:51 PM, Eric Rescorla <ekr@rtfm.com> wrote:
>>> Fantastic. I just hadn't heard from him yet and wanted to make sure we
>>> agreed on who had the job
>>>
>>
>> Hello Eric,
>>
>> It's my fault for not responding earlier. I admit that the IESG review
>> is quite complex for someone who is going through it the first time. I
>> was more comfortable with Mark responding as he has more experience
>> than me, dealing with the IESG.
>
> Thank you.  I guess some of the nuances can be confusing, like a YES
> ballot with a comment.  The last suggested update would be very
> helpful so anyone reading it would know that they shouldn't just go
> for the minimum as that could be phased out within a few years.
>
>

Yes, and it seems that it's hard to follow the point at which
consensus is reached. I have attempted to address your concern, and
most of the others in rev 06.

Changelog:
an->any;
typo from warren;
fix normative reference & ipr trust from mirja;
include section about logging in security considerations from Benoit
Claise and OPS DIR; include suggestions about 3072 bits as an option
for implementation should the need arise in the coming years from
K.Moriarty and S. Dawkins.

v2.23.0 | Report a Bug | By Email