IETF Logo Mail Archive

[Curdle] eddsa25519 & eddsa448 for use with SSH

"Mark D. Baushke" <mdb@juniper.net> Tue, 25 April 2017 04:39 UTC

Return-Path: <mdb@juniper.net>
X-Original-To: curdle@ietfa.amsl.com
Delivered-To: curdle@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C258D1316B1 for <curdle@ietfa.amsl.com>; Mon, 24 Apr 2017 21:39:44 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.021
X-Spam-Level:
X-Spam-Status: No, score=-2.021 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H4=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=juniper.net
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id x5n9QF7pJHuH for <curdle@ietfa.amsl.com>; Mon, 24 Apr 2017 21:39:42 -0700 (PDT)
Received: from NAM03-DM3-obe.outbound.protection.outlook.com (mail-dm3nam03on0132.outbound.protection.outlook.com [104.47.41.132]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C4D8A120326 for <curdle@ietf.org>; Mon, 24 Apr 2017 21:39:42 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=juniper.net; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version; bh=ajpumCC5d9xjiqBPTNKyluc3plUuDKGA66AtlT2e0FU=; b=PAYfIB1avMgHWq4ePR8kZAVp4AvBSE5AXUrBELSKZxrnc9NCtZbKmJq1ZL2TuOGxM+oJQgWuZNDfcb5E4A4SCvgLAzWVUYZzhQbxcEDRrlbz5pn4J8h1LgOgK+Cu3cPXvLOJfEMz4PKJxOhu/sHMF+rTdpF3U06NhamEYONZtbs=
Received: from DM5PR05CA0017.namprd05.prod.outlook.com (10.173.226.27) by DM2PR05MB733.namprd05.prod.outlook.com (10.141.178.18) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256_P256) id 15.1.1047.6; Tue, 25 Apr 2017 04:39:41 +0000
Received: from DM3NAM05FT025.eop-nam05.prod.protection.outlook.com (2a01:111:f400:7e51::206) by DM5PR05CA0017.outlook.office365.com (2603:10b6:3:d4::27) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256_P256) id 15.1.1061.6 via Frontend Transport; Tue, 25 Apr 2017 04:39:41 +0000
Authentication-Results: spf=softfail (sender IP is 66.129.239.12) smtp.mailfrom=juniper.net; ietf.org; dkim=none (message not signed) header.d=none;ietf.org; dmarc=fail action=none header.from=juniper.net;
Received-SPF: SoftFail (protection.outlook.com: domain of transitioning juniper.net discourages use of 66.129.239.12 as permitted sender)
Received: from p-emfe01a-sac.jnpr.net (66.129.239.12) by DM3NAM05FT025.mail.protection.outlook.com (10.152.98.135) with Microsoft SMTP Server (version=TLS1_0, cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA_P384) id 15.1.1019.24 via Frontend Transport; Tue, 25 Apr 2017 04:39:40 +0000
Received: from p-mailhub01.juniper.net (10.160.2.17) by p-emfe01a-sac.jnpr.net (172.24.192.21) with Microsoft SMTP Server (TLS) id 14.3.123.3; Mon, 24 Apr 2017 21:39:39 -0700
Received: from eng-mail01.juniper.net (eng-mail01.juniper.net [172.17.28.114]) by p-mailhub01.juniper.net (8.14.4/8.11.3) with ESMTP id v3P4dcmW022864; Mon, 24 Apr 2017 21:39:38 -0700 (envelope-from mdb@juniper.net)
Received: from eng-mail01.juniper.net (localhost [127.0.0.1]) by eng-mail01.juniper.net (Postfix) with ESMTP id 5FBA71145A; Mon, 24 Apr 2017 21:39:37 -0700 (PDT)
To: ietf-ssh@NetBSD.org
CC: curdle@ietf.org
From: "Mark D. Baushke" <mdb@juniper.net>
Date: Mon, 24 Apr 2017 21:39:37 -0700
Message-ID: <53117.1493095177@eng-mail01.juniper.net>
Sender: mdb@juniper.net
MIME-Version: 1.0
Content-Type: text/plain
X-EOPAttributedMessage: 0
X-MS-Office365-Filtering-HT: Tenant
X-Forefront-Antispam-Report: CIP:66.129.239.12; IPV:NLI; CTRY:US; EFV:NLI; SFV:NSPM; SFS:(10019020)(6009001)(39400400002)(39860400002)(39410400002)(39840400002)(39450400003)(39850400002)(2980300002)(199003)(189002)(9170700003)(2906002)(8936002)(76506005)(86362001)(356003)(81166006)(2810700001)(106466001)(2351001)(110136004)(54356999)(53416004)(105596002)(7696004)(8676002)(5660300001)(48376002)(50986999)(4326008)(38730400002)(50466002)(77096006)(7126002)(117636001)(966004)(47776003)(6916009)(19273905006)(189998001)(5003940100001)(53936002)(6392003)(55016002)(6266002)(6306002)(305945005)(42262002)(562404015)(563064011); DIR:OUT; SFP:1102; SCL:1; SRVR:DM2PR05MB733; H:p-emfe01a-sac.jnpr.net; FPR:; SPF:SoftFail; MLV:sfv; A:1; MX:1; LANG:en;
X-Microsoft-Exchange-Diagnostics: 1; DM3NAM05FT025; 1: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
X-MS-PublicTrafficType: Email
X-MS-Office365-Filtering-Correlation-Id: 64e55013-b485-4084-ceaf-08d48b951634
X-Microsoft-Antispam: UriScan:; BCL:0; PCL:0; RULEID:(22001)(2017030254075)(201703131423075)(201703031133081); SRVR:DM2PR05MB733;
X-Microsoft-Exchange-Diagnostics: 1; DM2PR05MB733; 3:aVddYUuSh5mDhlfD6580QI/FSpgZUNsc0xlnr7Tt2cDex5ilDYpm4BT+rW8pYFN7l4ZfVc0ECWD7j8i11d5OW6PLCbr/5NHoGmtKSSHrqz1zLcQyPrksTtei1lsG1Nhm8pk9j7abC9oIORqJgLLd40tnt5LvEZBdCrwoqNdL8FfY3N43zhUKSIlJIB4dnTAGznPBrMjpxZF9y90G/ZeVXP1/n/5er0PUE3Al51fMYZ29qNHdnS/mhT0ztZw/7bHphBuXPAKR/aGQChmwE82Wgn+jBKura3fEq6zBl5BAkE4K9Z/AWbC1rG+OOXOWCkxUWiickPctycKuvukgjlfDlHSf5vVj9rCr9wuoRMnT70dnrSJ8nevY9D4t6jogXGv79+2kq5bGgtH+6rhgAFMDqliqQeA5j/H1SBRenh5iocji4dWgrBYu9QO/h9YGF3YUnTlPHRJedV1BtaXBuxJXAA==
X-Microsoft-Exchange-Diagnostics: 1; DM2PR05MB733; 25:5ojcJysFHyWpnT+aAii1OQ1QIY1dBWW7tK1WvU+L5zIeRjIDoOQ+YoLj6a1iSDP6l50qs7d34eNljyqL+FBR+zydL9XMDJknjO5a6NB7ekWr9Mu6gGjhmXqwApR+gKNxLN8XViTP2g0uAzVur5WcrKDRxQzu38MJUvwR3AntRMx1ycFG0yxC52n9izh5fFT1SN+ItrPssYEl7fCL5XJUHWhNL99CrsusiCaI4h4FwWoZuDvk+bDu9KvVu6v56QvquRDdEzfvhSTaPGcAd5CySM4a5YAdz3s7gaVUm+9Hve9YywuXZglz24OONYeCS3PKVSOmV5BHMF66vfthRH8P8NswTerbmW3uzh789peFfLwXiKRC5GmLYxlWF9Fo+Rp68dRd8sUzUPHAFNKIgRPp9d5vj2dEQTtvMkDDfAr+ugTjdBve11ec9ln0BEC/5NaJRu9W3tvQah9gqTeQF2j4nW07ZjUGhkHB0kjTlxujMFA=; 31:isk/TdP+IpGJLXKSKleucITIUKsZuuqDbakRGiIn9QFXr4TcfdrNqwElUl6xTMO9zrXBxgk88Dyua3Va6wkp7oKv22ptl+HO+V44lFAgtX1VkSvXPh1BZyrgNS2ymPyDwdcwdH3Mzm/0U3WPiP2cxwoTWOP+0X7G19WzN07T64PcOw1dMGrFwqM8iu5DCoPqA7hF+S8g7QL3/AEH0g/KD6YvDwO0c7geZ1DxoAE8iomWPnSDXUBFLiHeNeYma0Mp
X-Microsoft-Exchange-Diagnostics: 1; DM2PR05MB733; 20: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
X-Microsoft-Antispam-PRVS: <DM2PR05MB7331BFA47E1F57543680DD4BF1E0@DM2PR05MB733.namprd05.prod.outlook.com>
X-Exchange-Antispam-Report-Test: UriScan:(1591387915157);
X-Exchange-Antispam-Report-CFA-Test: BCL:0; PCL:0; RULEID:(6040450)(601004)(2401047)(8121501046)(13015025)(5005006)(13017025)(13023025)(13024025)(13018025)(10201501046)(3002001)(93006095)(93003095)(6055026)(6041248)(20161123555025)(201703131423075)(201702281528075)(201703061421075)(20161123560025)(20161123564025)(20161123562025)(6072148); SRVR:DM2PR05MB733; BCL:0; PCL:0; RULEID:; SRVR:DM2PR05MB733;
X-Microsoft-Exchange-Diagnostics: 1; DM2PR05MB733; 4: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
X-Forefront-PRVS: 0288CD37D9
X-Microsoft-Exchange-Diagnostics: 1; DM2PR05MB733; 23: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
X-Microsoft-Exchange-Diagnostics: 1; DM2PR05MB733; 6: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; 5:Llwi+3gIH+OtOYI6pIXh+QZxepAJE80nTSIei0ZXSVIjVeG4fbcWQbOmEEkBA1bnX14a7Ln9BqLMG8ugWYAenIfxgPGNHUxeajgsO74+Sk9hG5cEIpDnS91wyRTc2Q48s8tCEtlJPcmS3GoxAXsVew==; 24:nvRU2YjXLeBvGWShkHe1c6oMHrygEe+3ku0pYSq33KrsPQ5vztgQN/6kyZy/paJtj4uuadRW35kuiZ1BMoBdeDjM3js5BgQ8tRMH1Vu9LKc=
SpamDiagnosticOutput: 1:99
SpamDiagnosticMetadata: NSPM
X-Microsoft-Exchange-Diagnostics: 1; DM2PR05MB733; 7:JNfycSsHY5Yti3MqF/z33MfkH88bJERAnSVYTRrkNSOdQNeCbMZSIzSzZI40Yb5kAQYXb3iOsK7a2TPnUw3Fkd28oDxqq+GGgKWVth6XabC7LyNMNxZLErKBcOL38HxNLGXICHcSVCWznhMPvUzTMu7dUM93obn2FFRv69tA5spjSZMtBH8xT7CXvQf5lliQH9rBwrFPRFFqBVLYT3t4i6TkyU50vYfx73ItbUwJi/HxPLQX7EUH3oiDfS5dFS5746lzK056afkKg41BiYv5MOQOLC0RqommGeSbzYWdO65DPIMnfO4v/mMUITb3bO9x7lExerDeSpRu/xGoEiIlWg==
X-OriginatorOrg: juniper.net
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 25 Apr 2017 04:39:40.3408 (UTC)
X-MS-Exchange-CrossTenant-Id: bea78b3c-4cdb-4130-854a-1d193232e5f4
X-MS-Exchange-CrossTenant-OriginalAttributedTenantConnectingIp: TenantId=bea78b3c-4cdb-4130-854a-1d193232e5f4; Ip=[66.129.239.12]; Helo=[p-emfe01a-sac.jnpr.net]
X-MS-Exchange-CrossTenant-FromEntityHeader: HybridOnPrem
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DM2PR05MB733
Archived-At: <https://mailarchive.ietf.org/arch/msg/curdle/9nAV91Vzcafo6uBC99_Mg6M3IK0>
Subject: [Curdle] eddsa25519 & eddsa448 for use with SSH
X-BeenThere: curdle@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "List for discussion of potential new security area wg." <curdle.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/curdle>, <mailto:curdle-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/curdle/>
List-Post: <mailto:curdle@ietf.org>
List-Help: <mailto:curdle-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/curdle>, <mailto:curdle-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 25 Apr 2017 04:39:45 -0000

Hi Folks,

Looking at

  RFC 8032 - Edwards-Curve Digital Signature Algorithm (EdDSA)

I am curious to know if there is a desire to create public key algorithm
names for SSH using it?

http://ssh-comparison.quendi.de/comparison/hostkey.html
shows 11 implementations of ssh-ed25519 and 3 implementations of
ssh-ed25519-cert-v01@openssh.com.

I have not yet compared the RFC against the SSH implementations of
ssh-ed25519.

I do know that the use of the SHAKE256 as a hash function for Ed448
would be the first SHA-3 family function used in the SSH protocol.

If they are the same, then it would be good to writeup something
to add ssh-ed25519 to the IANA 
https://www.iana.org/assignments/ssh-parameters/ssh-parameters.xhtml#ssh-parameters-19

	-- Mark

v2.23.0 | Report a Bug | By Email