IETF Logo Mail Archive

Re: [Curdle] Opsdir last call review of draft-ietf-curdle-ssh-ed25519-ed448-07

Daniel Migault <daniel.migault@ericsson.com> Thu, 03 January 2019 16:23 UTC

Return-Path: <daniel.migault@ericsson.com>
X-Original-To: curdle@ietfa.amsl.com
Delivered-To: curdle@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 48BA1131138 for <curdle@ietfa.amsl.com>; Thu, 3 Jan 2019 08:23:33 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.365
X-Spam-Level:
X-Spam-Status: No, score=-4.365 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.065, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_MED=-2.3, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ericsson.com header.b=UlWMb53C; dkim=pass (1024-bit key) header.d=ericsson.com header.b=NRXyMSEo
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 5r-3qyQAdoia for <curdle@ietfa.amsl.com>; Thu, 3 Jan 2019 08:23:31 -0800 (PST)
Received: from sesbmg23.ericsson.net (sesbmg23.ericsson.net [193.180.251.37]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 9CEFA13112E for <curdle@ietf.org>; Thu, 3 Jan 2019 08:23:30 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; d=ericsson.com; s=mailgw201801; c=relaxed/relaxed; q=dns/txt; i=@ericsson.com; t=1546532608; x=1549124608; h=From:Sender:Reply-To:Subject:Date:Message-ID:To:CC:MIME-Version:Content-Type: Content-Transfer-Encoding:Content-ID:Content-Description:Resent-Date:Resent-From: Resent-Sender:Resent-To:Resent-Cc:Resent-Message-ID:In-Reply-To:References:List-Id: List-Help:List-Unsubscribe:List-Subscribe:List-Post:List-Owner:List-Archive; bh=eyC2qIzwHP9DZflnrejDAw6YfgpURnRkmEct7497LGw=; b=UlWMb53C3R+yIlZkdqCy82e8BK0GDOqZjjnpce/jc9os6huY4KE/TgDKdQPuWU5l regOqC+Be248WzNXXd/SPA1zg3vKzJI9OP181+3I2iDOeviMiYe9VIH5Twk+Rpmv eheubyV3lJXHlpoi3Mxx5srW9hLlBDHYigZBs2l3Tos=;
X-AuditID: c1b4fb25-209009e000005ff7-22-5c2e3700e630
Received: from ESESSMB501.ericsson.se (Unknown_Domain [153.88.183.119]) by sesbmg23.ericsson.net (Symantec Mail Security) with SMTP id EE.98.24567.0073E2C5; Thu, 3 Jan 2019 17:23:28 +0100 (CET)
Received: from ESESBMB505.ericsson.se (153.88.183.172) by ESESSMB501.ericsson.se (153.88.183.162) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256_P256) id 15.1.1466.3; Thu, 3 Jan 2019 17:23:24 +0100
Received: from NAM02-SN1-obe.outbound.protection.outlook.com (153.88.183.157) by ESESBMB505.ericsson.se (153.88.183.172) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256_P256) id 15.1.1466.3 via Frontend Transport; Thu, 3 Jan 2019 17:23:24 +0100
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ericsson.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=eyC2qIzwHP9DZflnrejDAw6YfgpURnRkmEct7497LGw=; b=NRXyMSEoeRm07uAbcquFFAd++KgXpVKalfTlosWGyKnsloFvU+qs32tnXbYSA7Cs20dnKUz8E0ebPAK+49pnHLQr2GbNh2yWfwAKqBfK3dT7EdRkhg/X7Rb51IoOwg6a8TTN79WhXLgMZxrvM7moDsueTmh3a1S79R8ngriGiBk=
Received: from BL2PR15MB0947.namprd15.prod.outlook.com (10.167.116.21) by BL2PR15MB1041.namprd15.prod.outlook.com (10.167.116.149) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.1495.6; Thu, 3 Jan 2019 16:23:22 +0000
Received: from BL2PR15MB0947.namprd15.prod.outlook.com ([fe80::7504:fcc:895b:b5cf]) by BL2PR15MB0947.namprd15.prod.outlook.com ([fe80::7504:fcc:895b:b5cf%2]) with mapi id 15.20.1495.005; Thu, 3 Jan 2019 16:23:22 +0000
From: Daniel Migault <daniel.migault@ericsson.com>
To: Sheng Jiang <jiangsheng@huawei.com>, Tim Hollebeek <tim.hollebeek@digicert.com>, "ops-dir@ietf.org" <ops-dir@ietf.org>
CC: "draft-ietf-curdle-ssh-ed25519-ed448.all@ietf.org" <draft-ietf-curdle-ssh-ed25519-ed448.all@ietf.org>, "curdle@ietf.org" <curdle@ietf.org>, "ietf@ietf.org" <ietf@ietf.org>
Thread-Topic: Opsdir last call review of draft-ietf-curdle-ssh-ed25519-ed448-07
Thread-Index: AQHUooIns5Xh3czW1kCDn18j5kGqP6WcDm7QgAA58gCAAAu+gIABP8UAgAAoDBA=
Date: Thu, 03 Jan 2019 16:23:22 +0000
Message-ID: <BL2PR15MB0947AB8A5ED7E28E5EC4B8E4E38D0@BL2PR15MB0947.namprd15.prod.outlook.com>
References: <154642329120.32625.18387931087720472774@ietfa.amsl.com> <BL2PR15MB0947E4B0DCC8C36615F09B4DE38C0@BL2PR15MB0947.namprd15.prod.outlook.com> <BN6PR14MB11069BB257E0A8B2627522C8838C0@BN6PR14MB1106.namprd14.prod.outlook.com> <BL2PR15MB0947FEA09887D6D43FCD2B2AE38C0@BL2PR15MB0947.namprd15.prod.outlook.com> <5D36713D8A4E7348A7E10DF7437A4B92902DEBEC@NKGEML515-MBX.china.huawei.com>
In-Reply-To: <5D36713D8A4E7348A7E10DF7437A4B92902DEBEC@NKGEML515-MBX.china.huawei.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: spf=none (sender IP is ) smtp.mailfrom=daniel.migault@ericsson.com;
x-originating-ip: [192.75.88.130]
x-ms-publictraffictype: Email
x-microsoft-exchange-diagnostics: 1; BL2PR15MB1041; 6:EJ6TiI7paROYrlHU0f2U2jMAPdGx3Ixwkdd/8VUvbH03uTkI1BFZZOmlFD0n8PnbaN5iqbEkLKWLD7pgGdF2jOVxVM0O10S2p4tCisCs9GWVsRSU491KAPU5rWxw+LyTw8HfqeFhdU2iId+h+PiGCV2O8s13kYX9XflxeSCJLWnssWfC2YoUP169q6o5eUWgltCADXR0R6A9+1rgqHNZcL2wdXTB10OXUu51hKDTvNAU/MPfec+DN7/NHApn8BZ6+kMvBncNroKsRs1B/BM2lLWJi4NmWhrw/3QdJNO/Knh1qGxpIitKz+pF6K4DUfV1ysfE4Ehen8lJ2ckm678H+soiYqaO2S5cc8u8TyvLgQFee4+eyEqCwS69iaHyKE8amR81Jo7pMQ+aZcm9VI6H3ywR1YEJ9/bZxSiG9bmlPzmlxrrHFAwGqy6uIzGJLYLdxIVTA3r3XMegddovsmx1hA==; 5:C8dh3XJbpseITJRfH7sWmolx9qe5Ca076jfI7Z94d5A5pq7oUXIz03NKGM5v0ULsiKv38+63KFOMWgV2TYDWjQDyJtjs7Olajyaur2ehLiSFcF06jYCbslPztt47O5/WRryx6ndNBpfXb7nFpAKaedrrrma9ff936P9y/CwDjscqlcQBsm+yFM9UyRs/CJdI4ag7PeF9/MKBZbRZqSajgg==; 7:Wiz8AJZ0OhL+kGu+5yCwoyOawMe9b3ZZYOiMTVrJ5xZujfT1LFkk68muIYuvH1W4QuHVEmjdxh4Yi8NaeCvgrfYd/HiCq5CRaAGX2xp6iML7rVzSIL3IUX2ZrQtWw5eF1s76IC2AmkVqWVchvsvg3g==
x-ms-exchange-antispam-srfa-diagnostics: SOS;
x-ms-office365-filtering-correlation-id: 7c221d6a-d34c-449c-4a62-08d67197c797
x-microsoft-antispam: BCL:0; PCL:0; RULEID:(2390118)(7020095)(4652040)(8989299)(4534185)(4627221)(201703031133081)(201702281549075)(8990200)(5600109)(711020)(2017052603328)(7153060)(7193020); SRVR:BL2PR15MB1041;
x-ms-traffictypediagnostic: BL2PR15MB1041:
x-microsoft-antispam-prvs: <BL2PR15MB10418D62E0B25D5D388296D6E38D0@BL2PR15MB1041.namprd15.prod.outlook.com>
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(8211001083)(3230021)(908002)(999002)(5005026)(6040522)(8220060)(2401047)(8121501046)(3002001)(3231475)(944501520)(52105112)(93006095)(93001095)(10201501046)(6041310)(20161123564045)(20161123558120)(20161123560045)(20161123562045)(201703131423095)(201702281528075)(20161123555045)(201703061421075)(201703061406153)(201708071742011)(7699051)(76991095); SRVR:BL2PR15MB1041; BCL:0; PCL:0; RULEID:; SRVR:BL2PR15MB1041;
x-forefront-prvs: 0906E83A25
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(346002)(376002)(39860400002)(396003)(136003)(366004)(13464003)(51914003)(189003)(199004)(11346002)(486006)(25786009)(476003)(68736007)(186003)(55016002)(6306002)(44832011)(26005)(966005)(229853002)(5660300001)(97736004)(110136005)(9686003)(6246003)(6436002)(102836004)(4326008)(6506007)(54906003)(446003)(478600001)(14454004)(316002)(53546011)(99286004)(53936002)(33656002)(76176011)(7696005)(7736002)(3846002)(256004)(106356001)(105586002)(2906002)(74316002)(71190400001)(6116002)(8676002)(81156014)(81166006)(66066001)(305945005)(8936002)(86362001)(2501003)(71200400001)(93886005)(14444005); DIR:OUT; SFP:1101; SCL:1; SRVR:BL2PR15MB1041; H:BL2PR15MB0947.namprd15.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; MX:1; A:1;
received-spf: None (protection.outlook.com: ericsson.com does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam-message-info: zjRajL71ZYZJuiLwbfxCet4kQp0MVMMPlfuRkJdwRArHshB9dtjIsW4p9d3LgGWVfIDjEzLQeQUrKyWhrlXTsv60OUII8ljgdnEIbU+ZIL3NpOpGzMMM5sga5GsittE5G/+nkycjvIFEChA2oxlkso8y44WpUNnoJcsBP86qzzJb3Jl37/0+orT6DpG9ekZjjB1ElDn7xGeiUEcQaUc19K6UJ6YighPjlP9/UNZfHcLs83P0IQLjitYeZJWNKrs7EdN3hMvTM8n2f4mYYipMvly38lrPxiD3vTXdFZ6YgDcTQCR/gTwEwZKFwkPAadbH
spamdiagnosticoutput: 1:99
spamdiagnosticmetadata: NSPM
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-Network-Message-Id: 7c221d6a-d34c-449c-4a62-08d67197c797
X-MS-Exchange-CrossTenant-originalarrivaltime: 03 Jan 2019 16:23:22.0423 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 92e84ceb-fbfd-47ab-be52-080c6b87953f
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BL2PR15MB1041
X-OriginatorOrg: ericsson.com
X-Brightmail-Tracker: H4sIAAAAAAAAA01Sa0hTYRj2O9/ZdlyOPuftbdUPp5FZXrKg/aiwfu2HSSFIxFBXntTcpu2Y aRiIieUltMzIpU1zqXmbSyup8C7pFE0DA0OiEsnUMERtZZnbWdC/5/a97/PCx2CpUSBjknRp rF6n1siFYrr89PPLQS6HglWhLaNyxdNqA1aYe5YpxazFSCuqzc1YcTPHhBXjY/XCcKGyq3IO K3P7FwVKk8lGncRnxIfjWU1SOqsPORonTlztLkKpD45nPLTU4WzUH16AXBkgB+HZl2K6AIkZ KelHYLVNUjxZQTA/sSHiSQ0F01UFyE5oUoKhf8oo4J3bFMy+bBfy5AOCuuF5bJ8sJGGQ11ss smNPkgVNbX2OLZi0IRgcqabthgeJhIpvfZgPnYLilmmKx5EwZat16DTxh/r7nxy6hKgge/C1 s1Q+hsb17s0Qw7iSaFjrkNoziHjDmrXJkcfEB6ZmjBR/KgHTqzHMYy+Y+/xHwOdjYPV7kVP3 hZ6OVgGPd8KEsdBxM5AcEbR2vqd5IwiWysqcD05AuaFOyIfeIJjLvyvijUAo7ctxTkqGr0OP hTwex7Ccm2UvDWQHTHdGl6BQw39dDZsOJnvA/CKEl33hTuFHkcFxvjsMlc/QVYhuQF4cy53V JoQdCGb1Sec4LkUXrGPTnqDNb9PT/mtXB3q7cKwXEQbJ3SR0QLBKKlCnc5naXgQMlntKvLl9 KqkkXp15hdWnxOovaViuF21naLmPZF3qrpKSBHUam8yyqaz+n0sxrrJstNdP69F83liRcIQD rbZ4642LP6KouFtewzL/C12lloyyWnnYxkR3VMO4X+XIO5ufV1LmloZH2VkkzyhYkJknakyJ q5RIWTma5RIVu80qS77OREX8HNVYu7x3/14aWIxuFGWMVNlGzOo4ebnFTXPP3cNnpTYg4ppF NzkQI70qp7lE9f5ArOfUfwHTXljqMgMAAA==
Archived-At: <https://mailarchive.ietf.org/arch/msg/curdle/DZc2Sr19zJ71nnC3pSIF0uPhaCk>
Subject: Re: [Curdle] Opsdir last call review of draft-ietf-curdle-ssh-ed25519-ed448-07
X-BeenThere: curdle@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "List for discussion of potential new security area wg." <curdle.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/curdle>, <mailto:curdle-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/curdle/>
List-Post: <mailto:curdle@ietf.org>
List-Help: <mailto:curdle-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/curdle>, <mailto:curdle-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 03 Jan 2019 16:23:33 -0000

Hi Sheng, 

Thanks for the comment. It should be easily addressed in the next version.

Yours, 
Daniel

-----Original Message-----
From: Sheng Jiang <jiangsheng@huawei.com> 
Sent: Thursday, January 03, 2019 8:59 AM
To: Daniel Migault <daniel.migault@ericsson.com>; Tim Hollebeek <tim.hollebeek@digicert.com>; ops-dir@ietf.org
Cc: draft-ietf-curdle-ssh-ed25519-ed448.all@ietf.org; curdle@ietf.org; ietf@ietf.org
Subject: RE: Opsdir last call review of draft-ietf-curdle-ssh-ed25519-ed448-07

Hi, Daniel,

The suggestion from Tim is a good improvement. However, it would be even better for a "standard track" document, if it gave a little bit more detailed guidance "where" and "how" a SSH implement should quota the key format that defined in this document.

Regards,

Sheng

-----Original Message-----
From: Daniel Migault [mailto:daniel.migault@ericsson.com]
Sent: Thursday, January 3, 2019 2:57 AM
To: Tim Hollebeek <tim.hollebeek@digicert.com>; Sheng Jiang <jiangsheng@huawei.com>; ops-dir@ietf.org
Cc: draft-ietf-curdle-ssh-ed25519-ed448.all@ietf.org; curdle@ietf.org; ietf@ietf.org
Subject: RE: Opsdir last call review of draft-ietf-curdle-ssh-ed25519-ed448-07

Thanks for the suggestion Tim. That works for me. 
Yours,
Daniel

-----Original Message-----
From: Tim Hollebeek <tim.hollebeek@digicert.com>
Sent: Wednesday, January 02, 2019 1:12 PM
To: Daniel Migault <daniel.migault@ericsson.com>; Sheng Jiang <jiangsheng@huawei.com>; ops-dir@ietf.org
Cc: draft-ietf-curdle-ssh-ed25519-ed448.all@ietf.org; curdle@ietf.org; ietf@ietf.org
Subject: RE: Opsdir last call review of
draft-ietf-curdle-ssh-ed25519-ed448-07

Why not just reference RFC 2119 and say "Standard implementations of SSH SHOULD implement these signature algorithms." ?

-Tim

> -----Original Message-----
> From: Curdle <curdle-bounces@ietf.org> On Behalf Of Daniel Migault
> Sent: Wednesday, January 2, 2019 10:43 AM
> To: Sheng Jiang <jiangsheng@huawei.com>; ops-dir@ietf.org
> Cc: draft-ietf-curdle-ssh-ed25519-ed448.all@ietf.org; curdle@ietf.org; 
> ietf@ietf.org
> Subject: Re: [Curdle] Opsdir last call review of
draft-ietf-curdle-ssh-ed25519-
> ed448-07
> 
> Hi Sheng,
> 
> Thanks for the comment and the suggestion. I agree that it may sound 
> strange to have a standard Track category without any reference to 
> RFC2119. In addition, while the document provides IANA registry 
> updates, the IANA registration does not require a Standard Track. So 
> *technically*
the
> informational category could be fine.
> 
> The motivation for a Standard Track document was to have these 
> algorithms as part of the SSH protocol. In other words, we expect that 
> SSH will come with these algorithms in the future. For that reason we 
> requested the
status
> to be "Standard Track" to remain coherent with RFC425{1-4}.
> 
> (RFC4250 and) RFC4253 provided the initial values for the Public Key
registry.
> While the protocol comes with some registry values, my understanding 
> is that updating the registry by adding a new value is not considered 
> as an update the RFC. For that reason we did not provide RFC4253 or 
> RFC4250 in the update status. While the update does not concern the 
> RFC, it affects
the
> protocol and should - in my opinion be associated to the same status 
> as
the
> protocol.
> 
> As a side note, all RFCs that have updated the Public Key Algorithm 
> Names are Standard Track documents. On the other hand, they seem to 
> reference and use the RFC2119 terms.
> 
> I believe that the Standard Track category is the most appropriated, 
> however, I am happy to be wrong and have misunderstood something. Feel 
> free to let me know your opinion on the category, as well as if there 
> are
any
> clarification we should add in the text. I suggest that we add a 
> sentence around the lines:
> """ These signature algorithms are expected to be integrated into the 
> standard implementations of SSH. """
> 
> Any feed back is welcome!
> 
> Yours,
> Daniel
> -----Original Message-----
> From: Sheng Jiang <jiangsheng@huawei.com>
> Sent: Wednesday, January 02, 2019 5:02 AM
> To: ops-dir@ietf.org
> Cc: draft-ietf-curdle-ssh-ed25519-ed448.all@ietf.org; curdle@ietf.org; 
> ietf@ietf.org
> Subject: Opsdir last call review of 
> draft-ietf-curdle-ssh-ed25519-ed448-07
> 
> Reviewer: Sheng Jiang
> Review result: Has Issues
> 
> Reviewer: Sheng Jiang
> Review result: Has Issues
> 
> Hi, OPS-DIR, Authors,
> 
> I have reviewed this document as part of the Operational directorate's 
> ongoing effort to review all IETF documents being processed by the IESG.
> These comments were written with the intent of improving the 
> operational aspects of the IETF drafts. Comments that are not 
> addressed in last call
may
> be included in AD reviews during the IESG review. Document editors and 
> WG chairs should treat these comments just like any other last call comments.
> 
> This standard track document describes the use of the Ed25519 and 
> Ed448 digital signature algorithm in the Secure Shell (SSH) protocol.  
> This
document
> is one of the shortest documents I have ever seen. It is clear and 
> well written.
> However, I have a fundamental issue regarding to its Intended status 
> "Standards Track", describe below. Therefore, it has issues for
publication
> although I think it is easy to fixed - changing the Intended status.
> 
> Major issue: this document has Intended status for Standards Track.
> However, neither this document fails to quota RFC 2119 or has any 
> normative words.
> Consistently, I don't think the description in this document has any 
> mandatory requirements for any implementations of protocols. Actually, 
> the most important quota of this document, RFC8032, is Informational, 
> which is a Downref in this document. Therefore, I think it is more 
> proper this document intends for Informational status.
> 
> Minor issue: no.
> 
> Regards,
> 
> Sheng
> 
> 
> _______________________________________________
> Curdle mailing list
> Curdle@ietf.org
> https://www.ietf.org/mailman/listinfo/curdle

v2.23.0 | Report a Bug | By Email