Re: [Curdle] Looking for comments on draft-ietf-curdle-ssh-kex-sha2
Hubert Kario <hkario@redhat.com> Wed, 25 November 2020 12:53 UTC
Return-Path: <hkario@redhat.com>
X-Original-To: curdle@ietfa.amsl.com
Delivered-To: curdle@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B110A3A1240 for <curdle@ietfa.amsl.com>; Wed, 25 Nov 2020 04:53:21 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.121
X-Spam-Level:
X-Spam-Status: No, score=-2.121 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_MSPIKE_H4=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=redhat.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id YKBX068u51q0 for <curdle@ietfa.amsl.com>; Wed, 25 Nov 2020 04:53:19 -0800 (PST)
Received: from us-smtp-delivery-124.mimecast.com (us-smtp-delivery-124.mimecast.com [63.128.21.124]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 9E7963A123E for <curdle@ietf.org>; Wed, 25 Nov 2020 04:53:19 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=redhat.com; s=mimecast20190719; t=1606308798; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=PCMRqXlYgBrIfZC/tPhClRPhH0PSh3sziYMPtGISjTQ=; b=Ui0AEuJRB4MzZL1Q52gpaQelzJN5YCv5wo42bnhopIgggWvl78khp+aVK8zEujdStN/mK4 +9Qf0svy7/U2bSeAMC9X1i6pq4OoOLY5ozxf1aCXCgA5Zk03OEoNAexwK77S5243dyG+Lx AGVhoTYYG+0HH7hfPdrhRHZ8ZmPwtUo=
Received: from mimecast-mx01.redhat.com (mimecast-mx01.redhat.com [209.132.183.4]) (Using TLS) by relay.mimecast.com with ESMTP id us-mta-244-oygkZPYINyufi6CAKl8NPQ-1; Wed, 25 Nov 2020 07:53:16 -0500
X-MC-Unique: oygkZPYINyufi6CAKl8NPQ-1
Received: from smtp.corp.redhat.com (int-mx06.intmail.prod.int.phx2.redhat.com [10.5.11.16]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by mimecast-mx01.redhat.com (Postfix) with ESMTPS id 7EDD6805BED for <curdle@ietf.org>; Wed, 25 Nov 2020 12:53:14 +0000 (UTC)
Received: from localhost (unknown [10.40.208.70]) by smtp.corp.redhat.com (Postfix) with ESMTPS id 1474D5C1A3 for <curdle@ietf.org>; Wed, 25 Nov 2020 12:53:13 +0000 (UTC)
From: Hubert Kario <hkario@redhat.com>
To: curdle@ietf.org
Date: Wed, 25 Nov 2020 13:53:11 +0100
MIME-Version: 1.0
Message-ID: <7107b6ac-0e6c-419d-96ac-d0a53b65ee5b@redhat.com>
In-Reply-To: <71619.1606168457@eng-mail01.juniper.net>
References: <25423.1596646626@eng-mail01.juniper.net> <SA0PR15MB37917F0E55D801609AF23EB0E34B0@SA0PR15MB3791.namprd15.prod.outlook.com> <20200807052623.GM92412@kduck.mit.edu> <71619.1606168457@eng-mail01.juniper.net>
Organization: Red Hat
User-Agent: Trojita/0.7-git; Qt/5.13.2; xcb; Linux; Fedora release 31 (Thirty One)
X-Scanned-By: MIMEDefang 2.79 on 10.5.11.16
Authentication-Results: relay.mimecast.com; auth=pass smtp.auth=CUSA124A263 smtp.mailfrom=hkario@redhat.com
X-Mimecast-Spam-Score: 0
X-Mimecast-Originator: redhat.com
Content-Type: text/plain; charset="utf-8"; format="flowed"
Content-Transfer-Encoding: quoted-printable
Archived-At: <https://mailarchive.ietf.org/arch/msg/curdle/7pN8RJWxOlCffzPkKXzGe8EEECE>
Subject: Re: [Curdle] Looking for comments on draft-ietf-curdle-ssh-kex-sha2
X-BeenThere: curdle@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "List for discussion of potential new security area wg." <curdle.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/curdle>, <mailto:curdle-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/curdle/>
List-Post: <mailto:curdle@ietf.org>
List-Help: <mailto:curdle-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/curdle>, <mailto:curdle-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 25 Nov 2020 12:53:22 -0000
On Monday, 23 November 2020 22:54:17 CET, Mark D. Baushke wrote: > Hi Folks, > > I have uploaded draft-ietf-curdle-ssh-kex-sha2-12 which is a large > rewrite of the text to adress the structural comments made by Eric > Rescorla. > > It is probably best to review the document from scratch to see if the > flow and issues with older crypto primitives (sha-1) lead to the > conclusions being drawn. > > There may not yet be full agreement about the summary guidance for Key > Exchange Method Names. > > The diffie-hellman-group1-sha1 exchange was a mandatory to implement and > is now a SHOULD NOT. I could move it to MUST NOT if everyone else thinks > it best. +1 for a MUST NOT, though I'm ok with keeping it at SHOULD NOT people that need it for interoperability, will use it irrespective of what RFC says, but new deployments should require the user to jump through at least one hoop to make it work > The diffie-hellman-group14-sha1 exchange was a mandatory to implement > MUST and is now a SHOULD. Similarly for gss-group1-sha1-* no, I think it should be SHOULD NOT, the sha-1 disqualifies it > The rsa1024-sha1 exchange is now a MUST NOT. > > I have suggested that diffie-hellman-group14-sha256 be a MUST (mandatory > to implement). > > A plurality of the list seemed to be in favor of this, but if 2048-bit > (112 bits of security) is falling out of favor (along with 3DES), then > perhaps a different KeX is desirable to be MUST. while small security margin of 3DES is a factor for its deprecation, the most problematic part of 3DES is the 64 bit block size and AFAIK, we're not even considering deprecation of 2048 bit RSA in the web PKIX, so, I don't see any arguments against making group14 mandatory -- Regards, Hubert Kario Senior Quality Engineer, QE BaseOS Security team Web: www.cz.redhat.com Red Hat Czech s.r.o., Purkyňova 115, 612 00 Brno, Czech Republic
- Re: [Curdle] Looking for comments on draft-ietf-c… Hubert Kario
- [Curdle] Looking for comments on draft-ietf-curdl… Mark D. Baushke
- Re: [Curdle] Looking for comments on draft-ietf-c… Ron Frederick
- Re: [Curdle] Looking for comments on draft-ietf-c… Mark D. Baushke
- Re: [Curdle] Looking for comments on draft-ietf-c… Ron Frederick
- Re: [Curdle] Looking for comments on draft-ietf-c… Mark D. Baushke
- Re: [Curdle] Looking for comments on draft-ietf-c… denis bider
- Re: [Curdle] Looking for comments on draft-ietf-c… denis bider
- Re: [Curdle] Looking for comments on draft-ietf-c… Ron Frederick
- Re: [Curdle] Looking for comments on draft-ietf-c… Mark D. Baushke
- Re: [Curdle] Looking for comments on draft-ietf-c… Hubert Kario
- Re: [Curdle] Looking for comments on draft-ietf-c… Mark D. Baushke
- Re: [Curdle] Looking for comments on draft-ietf-c… Tero Kivinen
- Re: [Curdle] Looking for comments on draft-ietf-c… Hubert Kario
- Re: [Curdle] Looking for comments on draft-ietf-c… Mark D. Baushke
- Re: [Curdle] Looking for comments on draft-ietf-c… Tero Kivinen
- Re: [Curdle] Looking for comments on draft-ietf-c… Tero Kivinen
- Re: [Curdle] Looking for comments on draft-ietf-c… Hubert Kario
- Re: [Curdle] Looking for comments on draft-ietf-c… Simo Sorce
- Re: [Curdle] Looking for comments on draft-ietf-c… Mark D. Baushke