IETF Logo Mail Archive

[Curdle] WG Action: Formed CURves, Deprecating and a Little more Encryption (curdle)

The IESG <iesg-secretary@ietf.org> Fri, 18 December 2015 16:52 UTC

Return-Path: <iesg-secretary@ietf.org>
X-Original-To: curdle@ietf.org
Delivered-To: curdle@ietfa.amsl.com
Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 7F96D1B371A; Fri, 18 Dec 2015 08:52:00 -0800 (PST)
Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
From: The IESG <iesg-secretary@ietf.org>
To: IETF-Announce <ietf-announce@ietf.org>
X-Test-IDTracker: no
X-IETF-IDTracker: 6.11.0
Auto-Submitted: auto-generated
Precedence: bulk
Message-ID: <20151218165200.24085.7127.idtracker@ietfa.amsl.com>
Date: Fri, 18 Dec 2015 08:52:00 -0800
Archived-At: <http://mailarchive.ietf.org/arch/msg/curdle/AWp5wl-HKFA__RXzF9GG0bDq-is>
X-Mailman-Approved-At: Fri, 18 Dec 2015 08:54:27 -0800
Cc: curdle@ietf.org, curdle-chairs@ietf.org, The IESG <iesg@ietf.org>
Subject: [Curdle] WG Action: Formed CURves, Deprecating and a Little more Encryption (curdle)
X-BeenThere: curdle@ietf.org
X-Mailman-Version: 2.1.15
List-Id: "List for discussion of potential new security area wg." <curdle.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/curdle>, <mailto:curdle-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/curdle/>
List-Post: <mailto:curdle@ietf.org>
List-Help: <mailto:curdle-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/curdle>, <mailto:curdle-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 18 Dec 2015 16:52:00 -0000

A new IETF working group has been formed in the Security Area. For
additional information please contact the Area Directors or the WG
Chairs.

CURves, Deprecating and a Little more Encryption (curdle)
------------------------------------------------
Current Status: Proposed WG

Chairs:
  Daniel Migault <daniel.migault@ericsson.com>
  Rich Salz <rsalz@akamai.com>

Assigned Area Director:
  Stephen Farrell <stephen.farrell@cs.tcd.ie>

Mailing list
  Address: curdle@ietf.org
  To Subscribe: https://www.ietf.org/mailman/listinfo/curdle
  Archive: https://mailarchive.ietf.org/arch/browse/curdle/

Charter:

CURDLE - CURves, Deprecating and a Little more Encryption

The CURDLE working group is chartered to add a small set of cryptographic
mechanisms to some IETF protocols, and to make implementation
requirements including deprecation of old algorithms where there is IETF
consensus to do so. The focus with regards to adding mechanisms is for
those mechanisms that enjoy broad support from implementers.

The set of cryptographic mechanisms that can be introduced are limited to
key agreement (ECDH) and digital signatures (EdDSA) with Curve25519 and
Curve448 as defined by CFRG [1] [2], and the AEAD mode ciphers consisting
of ChaCha20 and Poly1305 also defined by CFRG [3]. Other variants of
mechanisms, such as the ChaCha20-Poly1305 construct deployed for SSH, may
also be considered as well as AES-CCM[4] and AES-GCM [5] where those are
not already defined and where there is implementer interest.  Related
specifications such as private and public key formats are also within
scope.

The protocols the WG intends to work on are Secure Shell (SSH), DNSSEC,
PKIX, CMS, XML Digital Signatures and potentially XML Encryption,
Kerberos and JSON.

Where initial drafts for this work have been produced those will be
immediately considered for adoption as working group documents.  These
include, for SSH, Curve25519/Curve448 digital signatures [6] and key
exchange [7]; for DNSSEC, Ed25519 [8] and Curve448 [9]; for PKIX,
Curve25519/448 NamedCurve [10] and EdDSA signatures [11]; for JSON curves
and signatures [12].

The CURDLE working group will be handling changes to protocols and
registries some of which include what are now considered outdated
algorithm options, and may propose deprecation of such algorithms. Such
deprecation needs to be done with care, ensuring that interoperability
and the needs of existing implementers and deployments are properly
considered. Where deprecation is practical, the working group is
encouraged to deprecate.

Where there is an IETF working group or area group with expertise in a
relevant topic the CURDLE working group will defer to the consensus of
the more specific  working group as to where work will be done. For
example, the TLS, OpenPGP and IPSECME WGs are actively considering some
of these topics.

The CURDLE working group will liaise with W3C to ensure that XML digital
signature and XML encryption work does not conflict with W3C.

The CURDLE working group is expected to be a short-lived working group
that may not need to ever meet face-to-face. Once the work on the
initially adopted set of drafts has completed the working group will
close or re-charter.

The CURDLE working group is not chartered to consider allocating new
codepoints for any algorithms or modes other than those mentioned above. 
Should someone wish to propose such work, a re-charter will be required.
At this time, there is no expectation that such a re-charter  will be
requested.

[1] https://tools.ietf.org/html/draft-irtf-cfrg-curves
[2] https://tools.ietf.org/html/draft-irtf-cfrg-eddsa-00
[3] RFC 7539
[4] RFC 3610
[5] RFC5288
[6] https://tools.ietf.org/html/draft-bjh21-ssh-ed25519-02
[7] https://tools.ietf.org/html/draft-josefsson-ssh-curves-00
[8] https://tools.ietf.org/html/draft-sury-dnskey-ed25519-03
[9] https://tools.ietf.org/html/draft-sury-dnskey-ed448-00
[10] https://tools.ietf.org/html/draft-josefsson-pkix-newcurves-01
[11] https://tools.ietf.org/html/draft-josefsson-pkix-eddsa-04
[12] http://www.ietf.org/mail-archive/web/jose/current/msg05357.html


Milestones:
  Jan 2016 - Decision on which drafts to adopt
  Jun 2016 - Send last draft to IESG

v2.23.0 | Report a Bug | By Email