Re: [Curdle] Confirming a change to draft-ietf-curdle-rsa-sha2-12

"Mark D. Baushke" <mdb@juniper.net> Mon, 12 March 2018 10:00 UTC

Return-Path: <mdb@juniper.net>
X-Original-To: curdle@ietfa.amsl.com
Delivered-To: curdle@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6DCA5126CD8 for <curdle@ietfa.amsl.com>; Mon, 12 Mar 2018 03:00:00 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.701
X-Spam-Level:
X-Spam-Status: No, score=-2.701 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=juniper.net
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Dx_1JwC-Yqfy for <curdle@ietfa.amsl.com>; Mon, 12 Mar 2018 02:59:59 -0700 (PDT)
Received: from mx0b-00273201.pphosted.com (mx0b-00273201.pphosted.com [67.231.152.164]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E2BD4126CC7 for <curdle@ietf.org>; Mon, 12 Mar 2018 02:59:58 -0700 (PDT)
Received: from pps.filterd (m0108161.ppops.net [127.0.0.1]) by mx0b-00273201.pphosted.com (8.16.0.22/8.16.0.22) with SMTP id w2C9x79Q031440; Mon, 12 Mar 2018 02:59:56 -0700
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=juniper.net; h=to : cc : subject : in-reply-to : references : from : date : message-id : sender : mime-version : content-type; s=PPS1017; bh=kxSei32GgjFMPaqPbv1eAoYDpc5fx/baa8yXs2IlWys=; b=K3bUKJQ6a6YK0rkIliTP7qLpE2Y5FFtp/2seBzFxYpDSe1j2y+2ke3LLCfVGvdcjNz8l dMmqHj5v0C7ZdU/AUSoXSOk7vS4bmAA1HA6akPhvpsnjg7Rx5zmIGZNsfnkX7ww1smLy Bof/G4SM9P7lZovt2UM2B87JCvYxKvB8FAB1air0EOtHG8o1ttpSEwVO2HtjvYh6Qxb7 FmT9OOg+MyRgR75G5YNpd1qyMZyFgxLnkXhL8saFqso67CuJGigMw0o6J7D4UqdeEvi3 MQhV8LkSjN2bZ/+MEQ0wFm6nI/Jqbj9kbcC3rll1zdL7W40EuTloRbBO7+cT36zotZAQ 4A==
Received: from nam02-cy1-obe.outbound.protection.outlook.com (mail-cys01nam02lp0055.outbound.protection.outlook.com [207.46.163.55]) by mx0b-00273201.pphosted.com with ESMTP id 2gnc4trq86-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-SHA384 bits=256 verify=NOT); Mon, 12 Mar 2018 02:59:56 -0700
Received: from BY1PR0501CA0021.namprd05.prod.outlook.com (2a01:111:e400:4821::31) by DM5PR05MB3482.namprd05.prod.outlook.com (2603:10b6:4:41::17) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.588.7; Mon, 12 Mar 2018 09:59:50 +0000
Received: from DM3NAM05FT046.eop-nam05.prod.protection.outlook.com (2a01:111:f400:7e51::207) by BY1PR0501CA0021.outlook.office365.com (2a01:111:e400:4821::31) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.588.7 via Frontend Transport; Mon, 12 Mar 2018 09:59:49 +0000
Received-SPF: SoftFail (protection.outlook.com: domain of transitioning juniper.net discourages use of 66.129.239.12 as permitted sender)
Received: from p-emfe01a-sac.jnpr.net (66.129.239.12) by DM3NAM05FT046.mail.protection.outlook.com (10.152.98.160) with Microsoft SMTP Server (version=TLS1_0, cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA) id 15.20.588.11 via Frontend Transport; Mon, 12 Mar 2018 09:59:49 +0000
Received: from p-mailhub01.juniper.net (10.47.226.20) by p-emfe01a-sac.jnpr.net (172.24.192.21) with Microsoft SMTP Server (TLS) id 14.3.123.3; Mon, 12 Mar 2018 02:59:49 -0700
Received: from eng-mail01.juniper.net (eng-mail01.juniper.net [172.17.28.114]) by p-mailhub01.juniper.net (8.14.4/8.11.3) with ESMTP id w2C9xlBt012180; Mon, 12 Mar 2018 02:59:47 -0700 (envelope-from mdb@juniper.net)
Received: from eng-mail01.juniper.net (localhost [127.0.0.1]) by eng-mail01.juniper.net (Postfix) with ESMTP id BEBC21145A; Mon, 12 Mar 2018 02:59:46 -0700 (PDT)
To: denis bider <denisbider.ietf@gmail.com>
CC: "Salz, Rich" <rsalz@akamai.com>, "curdle@ietf.org" <curdle@ietf.org>
In-Reply-To: <CADPMZDBnG1hv5D74vLv2bXqxZjceJgHQ9oYrufKHskLdV7nRSQ@mail.gmail.com>
References: <4C40F019-21FB-46AC-95D3-CC94BB976AAB@akamai.com> <12087.1520816187@eng-mail01.juniper.net> <CADPMZDCwRN-GHXhAe=-xPFHMnUBN39UWmENGNUeLbFkneEAgcA@mail.gmail.com> <17856.1520829824@eng-mail01.juniper.net> <CADPMZDBnG1hv5D74vLv2bXqxZjceJgHQ9oYrufKHskLdV7nRSQ@mail.gmail.com>
Comments: In-reply-to: denis bider <denisbider.ietf@gmail.com> message dated "Mon, 12 Mar 2018 04:41:43 -0500."
From: "Mark D. Baushke" <mdb@juniper.net>
Date: Mon, 12 Mar 2018 02:59:46 -0700
Message-ID: <28093.1520848786@eng-mail01.juniper.net>
Sender: <mdb@juniper.net>
MIME-Version: 1.0
Content-Type: text/plain
X-EOPAttributedMessage: 0
X-MS-Office365-Filtering-HT: Tenant
X-Forefront-Antispam-Report: CIP:66.129.239.12; IPV:NLI; CTRY:US; EFV:NLI; SFV:NSPM; SFS:(10019020)(39860400002)(376002)(39380400002)(396003)(346002)(2980300002)(189003)(199004)(16586007)(478600001)(54906003)(26005)(2950100002)(336012)(6916009)(48376002)(50466002)(186003)(97876018)(77096007)(86362001)(6246003)(47776003)(229853002)(6266002)(39060400002)(53936002)(4326008)(55016002)(4743002)(7846003)(6392003)(76176011)(81156014)(81166006)(53416004)(106466001)(105596002)(68736007)(345774005)(8676002)(5660300001)(2906002)(97736004)(8936002)(76506005)(7696005)(51416003)(69596002)(316002)(2810700001)(93886005)(117636001)(356003)(305945005)(558084003)(7126002)(42262002); DIR:OUT; SFP:1102; SCL:1; SRVR:DM5PR05MB3482; H:p-emfe01a-sac.jnpr.net; FPR:; SPF:SoftFail; PTR:InfoDomainNonexistent; MX:1; A:1; LANG:en;
X-Microsoft-Exchange-Diagnostics: 1; DM3NAM05FT046; 1:n6Z3SI67/7AbLj4I3iD8D+87MLoerLNZBB3/TWXMNiKrdw2AbRezBe5v9xBo0PXKt+19TPVJlPbnl8hYZHeqDHHf1vYownSUJYzAl9/BUXlNYEuDo3E0J9XGvHuQZXWP
X-MS-PublicTrafficType: Email
X-MS-Office365-Filtering-Correlation-Id: 22e6be34-5535-4560-b375-08d587fffe26
X-Microsoft-Antispam: UriScan:; BCL:0; PCL:0; RULEID:(7020095)(4652020)(5600026)(4604075)(4534165)(4627221)(201703031133081)(201702281549075)(2017052603328)(7153060); SRVR:DM5PR05MB3482;
X-Microsoft-Exchange-Diagnostics: 1; DM5PR05MB3482; 3:3QLPsdshJHpah/tcy6HYel4u8mXVgeV/lf9qVz00daaMRuGzLVV7jCA5R/1DPJil39yxa4Nl6CCj/KVU1pmRUNnpU8ELUCHFT28V9sVx8QNtM1KYjtRqbM7RIPqOBk8Sx2BAkjPIiAiCtqBBepeXHmsC+cOukChIur/E3iyprQvNcT3g/fhxbjByHoa6lQb1LHPFudfmpkq5ErWregiBpx7IozEgNRFGcutj3lFj1wNu/moPJNtu6nCVTaXP+nkKa4XOsqoYI6taKrPqt9AUGViaLteSbJ2Ff3U3CWvY0RQxiteX+fHViBVUpt+zQ7HowQNir3x41I/ZN34RzHg6MDOs9phDHdMWFyvJrkYPc8U=; 25:Tw5JlZzGLWhxZcEd2I9quBqAUcJE00YlKadgn3prxmW6pV00Fci1tSUZKzOWHAsGpPqHV5BlZYFZLlwI20Tjg/vmJAtxNn1zXMSVq/EwEa6CP9xkH/gwqFpUpzz/ulPYV1DqMml2Fygd6hdUg9iY7UwZWBEkfRznBYmXK8Fgv89DloQKq+182Zi8lZTDhWONA+yUClN/GnVk6K4IwhS089y3ID4ZKmyTmzPYqQY1+ugafrjKHBoc+0UjnhtLs21h6vWaCVikGU4XWkk+CXRi9aiVNn1MTRboJzpUy+23iCditKZGurjtXurwEWf1Hr+SP+maOz5gxS5WXWZYwL/cUw==
X-MS-TrafficTypeDiagnostic: DM5PR05MB3482:
X-Microsoft-Exchange-Diagnostics: 1; DM5PR05MB3482; 31:Jv1ib2Xf2sbev6QNITeTDFj1Wxoq9smRVagm2hE/oLSzMbl/03BAgxdaaepmCPgo+qN0urwop+DFY2ALpn4/uzUppzkEkYmljWyz6trk3ilLDmEM1TIpV4TaxsusxWq+YJoQMCFZNK0B6Rztrpf5LPXoBlUWaOYm4neb//jiQuJI7GkWUCgZlqxlGagPvn/qW5/rSUw3E1igkwaCePoHcYFPyQUHRpGmpfVTOTifB00=; 20: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
X-Microsoft-Antispam-PRVS: <DM5PR05MB34824A53C5235730B34287FFBFD30@DM5PR05MB3482.namprd05.prod.outlook.com>
X-Exchange-Antispam-Report-Test: UriScan:;
X-Exchange-Antispam-Report-CFA-Test: BCL:0; PCL:0; RULEID:(8211001083)(6040522)(2401047)(8121501046)(5005006)(3002001)(93006095)(93003095)(10201501046)(3231220)(944501244)(52105095)(6055026)(6041310)(20161123564045)(201703131423095)(201702281528075)(20161123555045)(201703061421075)(201703061406153)(20161123560045)(20161123562045)(20161123558120)(6072148)(201708071742011); SRVR:DM5PR05MB3482; BCL:0; PCL:0; RULEID:; SRVR:DM5PR05MB3482;
X-Microsoft-Exchange-Diagnostics: 1; DM5PR05MB3482; 4:UgvnCBLa2gZONvEHfw1q2Yl5ucPVfYOta7uZoyOrHw6zEZQw6yi3h1cHAPLstrIKfgraTNyDS1C32aXltTELK+qRWea037K/sMIxFe1k0VIUpDE2SwPo4U/RsjAavlOqzH6bwd7dAobT1f9rJBZIStiFUOrVxmw/eZ2Wu0WFCnlziRSdch99FzD2o/p42zL93+bXi/NzBgh5Y+Gl7HnPbcWYQOwypK5cPIzSbCg7q8AGQu7QO3XF0z9bMQCx6LXj0xEvUi1BAjxppIMT/V0r3Q==
X-Forefront-PRVS: 06098A2863
X-Microsoft-Exchange-Diagnostics: =?us-ascii?Q?1; DM5PR05MB3482; 23:cJ+hn5G5AyWukbjKsj3nsPkWoRZzHhnzaDb0M8r9R?= =?us-ascii?Q?qVafn+pH+7bn1Vvh8KcEU+6G+jWNfRL2TJXGcjGrg7rzjwLqILYFyX7PJMwL?= =?us-ascii?Q?e89icg/iefFPb6ZkCSiLjlvn+VbBvMStHBIGsTuurRZKYxud+B097sFg33x9?= =?us-ascii?Q?zvoSU4V0q3DAgf1UTEW2/HfndfJnAiNIrF+m9Z+MfiouJDKk1uxxWvZHnWPg?= =?us-ascii?Q?DfJ6pI5iLl7o2U4zAuTx/2Pf4cpoqu49ANLP/lQGQ3niUmszOyyap3mDhyov?= =?us-ascii?Q?Bi8xVDWz+cINCtRzs4MJaO4IImsz6PMMYdolBDljs6vOZCPxrMFHESY4avXQ?= =?us-ascii?Q?NSUdep2vBqQ4DqnFYhSDwHj4jspsBes3UD5+EgifN4yqKCSQ37PBnEmj1A/x?= =?us-ascii?Q?q5vnfF/h16B6IT/jeo1ya8Sp8SHyLPOJGcb/lFhsdCkoxG+Zx/rouMtH0+Fc?= =?us-ascii?Q?cGcIzY38m2+1FGcQ0V1Ef4VQ0ArrvxkAm04G93PBDVUllJgmEihnr3xN5APN?= =?us-ascii?Q?86z/tLycWNdL2vuzhb76NQRgiUUtt5/N1qGlAhx8RNEIY6WmO8LF1hEJ+5Um?= =?us-ascii?Q?vDZmfNkk1oh0MasX/66OAn5k82P0IJo2CbITKOSmWw+o4n/d4WZsrv8xgdA9?= =?us-ascii?Q?XmaWIFhJxfWbrzRAmbL6ojmQhKdje79K9mgxYTZD9HnW/zkvCssInKvlCiGv?= =?us-ascii?Q?DNJwPWtIB3J/L0VlDKHkkNzrj0YOSLfkr3oeD/47F0KnEzWdRYA9SCNV9oH9?= =?us-ascii?Q?PFNKzQOXi9qTXfeWUv1BDSOdktJQehD6267Cp0GUzfLQMrAiK6+7e1qCPiFx?= =?us-ascii?Q?HGlPlbo2cQEGrERE+Bf7z4Xlo09y3bNupgYE2x5ZvmUSpLBMOOWbaEODuh6D?= =?us-ascii?Q?kKIlbA/MtwEGkCzfkVsTlL4yeJR+/nk+baBHCj0KoT4cRXAdxVygiG9zhQA8?= =?us-ascii?Q?v8RfmKvGKgdv6h8kjLt0v0R2sUCP8A9AvGp3eWpLaA1p5Ok3L1OhKOOuKnH/?= =?us-ascii?Q?PmPFf7mrmDcSQggqVIqyaGjKqQEdBE8YftWykFwxAbDkWOu6IBdmJBdaAjVN?= =?us-ascii?Q?tto5d1LDyJJzxnQ9X7H2uC32iKP2Mb4qVrsXjS2Fjf1DdZAoOJDkCVe/Na27?= =?us-ascii?Q?W6fPyHOzmXJb94v6SZAfOnuIzSCC2HhWu69prz8gLEUIc/9IhCXgEEyIEKYj?= =?us-ascii?Q?HK/G6t5GTQ8Rmf6C4ebvn6MTRbwMtiAoWI2vjbqcsam8Qdj0TjZybn/60+Cl?= =?us-ascii?Q?IhRJM2PMzLl73xCSiEYb4/mclFHIsuBC9mb7lQgt6A5G0Xic1jUc//cWvDO5?= =?us-ascii?Q?jC9dZXOmbxYAnqW2bKHryI0nsqzBGMNUZg4PbCl7DfI?=
X-Microsoft-Antispam-Message-Info: 4XTwTn5oMXYitDYg8bYo+PldSGRk9UMRlmfG8lzHvHtM1OEeO3G1sbxZ2iaHxKdVJS1NtnMeNci0PfROxGWOPSgXHYQMqVMLkZ7uSXM0xKQxzK2iS1OkWYhzCZVVT9qZ6aIV0Dd2Y8vl/KihrBP2QZJkufltz/L/Z1iM2Qp8iQrLYAZFyKJ3WPJ4NL9NX9si
X-Microsoft-Exchange-Diagnostics: 1; DM5PR05MB3482; 6:TEfPKlRAf/IfoILOsRAgii4smDjxz1hpx+/yfh2TdnYLo34LOO/J91Z2BOhSM5zSznqvwuIqpTphYDsJwHpdI5lsNJIN2pn9OlIGzpVBgNrjhrlwPXuzgHEfXgxSET9FUEnLeo9x5dh4MHqsKG/e0/3CSsJyEB+0rY0s/upOD/zpdDnZWqs2A792XN2wW2f1vis8XPV0wDZcP6jtsfaNHj9/KVPr6400nFseTeAc0tYHsjkp1e5kd+SblT4e7lu9VKl5H/EhYJ+gxV7TnDSG+dQ8Ue2RAIALAMqoqSNejyUhSu0EVBcXp1qTOBUxEmXWiazIuKM86HfsDcuaNINQpaMrt4rSFHC0IG3+KL/lTHA=; 5:+O10v6NWnKnV/otk0KCUnkTjmwxrHPW7jxMINEXBRmBwc+rQJnbnM9QtyCs60oLVWq3JyYwxYDiM7sh8P806WxzpuOM4BKh5fN8okyR4tFdTLFnrAQf0w1eSngWT8lfUC3G91+rIDtOwbCzuypmQ9a8ApeehMQskcWz2dCq9krY=; 24:23OHEnS2FwZIfbRc8tNj8s0+iUy9coNaDzezFllbCBvt8YoBa0rel2mUJZpWJQERmExb+1ystgsaz56JYekYkXaXzGK4dCUjLwSXeF2g6ho=; 7:nbJHmmyMvkQYnsEvLglWGwC4aL6auMD6I/sc+MRh2KNHZD3GNP5wWKiRqL24dRgogyPeagkxjissmMon/B3vZuQdr0+Eflw57TU+INY8ED2/XPNUK8x/p+tV4kIEzO0Ifj/E2fa1n/ugMjBSFql+5SNU9NLKk6FaniX+qM5xt6XwaSq+EozzGTfXU+Ty3AxvHU12o/LeHRkXfqj8EckA027CGwFk1ypFrf03i8cqjABcH39ki1a+e7tVqjyXm8yS
SpamDiagnosticOutput: 1:99
SpamDiagnosticMetadata: NSPM
X-OriginatorOrg: juniper.net
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 12 Mar 2018 09:59:49.0183 (UTC)
X-MS-Exchange-CrossTenant-Network-Message-Id: 22e6be34-5535-4560-b375-08d587fffe26
X-MS-Exchange-CrossTenant-Id: bea78b3c-4cdb-4130-854a-1d193232e5f4
X-MS-Exchange-CrossTenant-OriginalAttributedTenantConnectingIp: TenantId=bea78b3c-4cdb-4130-854a-1d193232e5f4; Ip=[66.129.239.12]; Helo=[p-emfe01a-sac.jnpr.net]
X-MS-Exchange-CrossTenant-FromEntityHeader: HybridOnPrem
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DM5PR05MB3482
X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10432:, , definitions=2018-03-12_05:, , signatures=0
X-Proofpoint-Spam-Details: rule=outbound_spam_notspam policy=outbound_spam score=0 priorityscore=1501 malwarescore=0 suspectscore=1 phishscore=0 bulkscore=0 spamscore=0 clxscore=1015 lowpriorityscore=0 mlxscore=0 impostorscore=0 mlxlogscore=782 adultscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.0.1-1711220000 definitions=main-1803120116
Archived-At: <https://mailarchive.ietf.org/arch/msg/curdle/h83-GYqTQp98x9MzkV9MOOg4SDw>
Subject: Re: [Curdle] Confirming a change to draft-ietf-curdle-rsa-sha2-12
X-BeenThere: curdle@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "List for discussion of potential new security area wg." <curdle.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/curdle>, <mailto:curdle-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/curdle/>
List-Post: <mailto:curdle@ietf.org>
List-Help: <mailto:curdle-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/curdle>, <mailto:curdle-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 12 Mar 2018 10:00:00 -0000

Hi denis,

Argument #3 works for me.

MAY is best. SHOULD lets broken implementations continue to be broken.

Thank you for your responses.

	Enjoy!
	-- Mark