Re: [Curdle] Call for Adoption

"Mark D. Baushke" <mdb@juniper.net> Wed, 13 January 2016 16:50 UTC

Received-SPF: SoftFail (protection.outlook.com: domain of transitioning juniper.net discourages use of 66.129.239.19 as permitted sender)
To: Daniel Migault <daniel.migault@ericsson.com>
In-Reply-To: <2DD56D786E600F45AC6BDE7DA4E8A8C1121B1924@eusaamb107.ericsson.se>
References: <2DD56D786E600F45AC6BDE7DA4E8A8C1121B1409@eusaamb107.ericsson.se> <65770.1452699581@eng-mail01.juniper.net> <2DD56D786E600F45AC6BDE7DA4E8A8C1121B1924@eusaamb107.ericsson.se>
Comments: In-reply-to: Daniel Migault <daniel.migault@ericsson.com> message dated "Wed, 13 Jan 2016 16:31:39 +0000."
From: "Mark D. Baushke" <mdb@juniper.net>
Date: Wed, 13 Jan 2016 08:50:01 -0800
Message-ID: <85658.1452703801@eng-mail01.juniper.net>
Sender: mdb@juniper.net
MIME-Version: 1.0
Content-Type: text/plain
SpamDiagnosticOutput: 1:23
SpamDiagnosticMetadata: NSPM
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 13 Jan 2016 16:50:41.3396 (UTC)
X-MS-Exchange-CrossTenant-Id: bea78b3c-4cdb-4130-854a-1d193232e5f4
X-MS-Exchange-CrossTenant-OriginalAttributedTenantConnectingIp: TenantId=bea78b3c-4cdb-4130-854a-1d193232e5f4; Ip=[66.129.239.19]; Helo=[p-emfe01b-sac.jnpr.net]
X-MS-Exchange-CrossTenant-FromEntityHeader: HybridOnPrem
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DM2PR0501MB1389
Archived-At: <http://mailarchive.ietf.org/arch/msg/curdle/AJ3sw1VoOlTSO19jbdHWpls6PvM>
Cc: "ietf-ssh@NetBSD.org" <ietf-ssh@NetBSD.org>, Curdle <curdle@ietf.org>, Curdle Chairs <curdle-chairs@ietf.org>
Subject: Re: [Curdle] Call for Adoption
X-BeenThere: curdle@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "List for discussion of potential new security area wg." <curdle.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/curdle>, <mailto:curdle-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/curdle/>
List-Post: <mailto:curdle@ietf.org>
List-Help: <mailto:curdle-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/curdle>, <mailto:curdle-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 13 Jan 2016 16:50:50 -0000

Daniel Migault <daniel.migault@ericsson.com> writes:

>  Thanks for the suggestion. I think it falls into the scope of the WG.

Thank you.

>  The question I would have is whether it would make sense to extend the 
>  document to the crypto suites others than DH - i.e. encryption mac.  

I am not sure if this is the best course.

There are other SSH drafts also in draft by other authors

  https://datatracker.ietf.org/doc/draft-ssh-ext-info
  https://datatracker.ietf.org/doc/draft-rsa-dsa-sha2-256
  https://datatracker.ietf.org/doc/draft-bjh21-ssh-ed25519

which are working in this area of SSH already.

>  This would result in a document providing cryptographic 
>  recommendations for SSH and have this document regularly updated as 
>  crypto evolves. Any opinion ?

Coming up with RFC 4250bis, RFC 4242bis, RFC 4253bis, and RFC 4254bis
would be a lot of work and keeping them regularly updated would be
non-trivial.

I am open to suggestions for additions or changes to
https://datatracker.ietf.org/doc/draft-baushke-ssh-dh-group-sha2 
as long as the ietf-SSH group wants that to happen.

Does any one else have any opinions on this topic?

	-- Mark

[Curdle] Call for Adoption Daniel Migault
Re: [Curdle] Call for Adoption Robert Edmonds
Re: [Curdle] Call for Adoption Ondřej Surý
Re: [Curdle] Call for Adoption Ilari Liusvaara
Re: [Curdle] Call for Adoption Ondřej Surý
Re: [Curdle] Call for Adoption Rob Stradling
Re: [Curdle] Call for Adoption Mark D. Baushke
Re: [Curdle] Call for Adoption Daniel Migault
Re: [Curdle] Call for Adoption Watson Ladd
Re: [Curdle] Call for Adoption Mark D. Baushke
Re: [Curdle] Call for Adoption Ondřej Surý
Re: [Curdle] Call for Adoption Simon Josefsson
Re: [Curdle] Call for Adoption Daniel Migault
Re: [Curdle] Call for Adoption Simon Josefsson
Re: [Curdle] Call for Adoption Salz, Rich
Re: [Curdle] Call for Adoption Ondřej Surý
Re: [Curdle] Call for Adoption Ilari Liusvaara
Re: [Curdle] Call for Adoption Ondřej Surý
Re: [Curdle] Call for Adoption Simon Josefsson