Re: [Curdle] Kathleen Moriarty's Yes on draft-ietf-curdle-ssh-dh-group-exchange-05: (with COMMENT)

"Mark D. Baushke" <mdb@juniper.net> Wed, 20 September 2017 16:34 UTC

Received-SPF: SoftFail (protection.outlook.com: domain of transitioning juniper.net discourages use of 66.129.239.12 as permitted sender)
To: Kathleen Moriarty <kathleen.moriarty.ietf@gmail.com>
CC: "Salz, Rich" <rsalz@akamai.com>, Spencer Dawkins at IETF <spencerdawkins.ietf@gmail.com>, Loganaden Velvindron <logan@hackers.mu>, draft-ietf-curdle-ssh-dh-group-exchange <draft-ietf-curdle-ssh-dh-group-exchange@ietf.org>, curdle <curdle@ietf.org>, curdle <curdle-chairs@ietf.org>, The IESG <iesg@ietf.org>, Daniel Migault <daniel.migault@ericsson.com>
In-Reply-To: <CAHbuEH7O=v2k7UWH-nw-+G80oW7q-pK=F7vxB91BfLRuGsXCJw@mail.gmail.com>
References: <CAHbuEH7O=v2k7UWH-nw-+G80oW7q-pK=F7vxB91BfLRuGsXCJw@mail.gmail.com>
Comments: In-reply-to: Kathleen Moriarty <kathleen.moriarty.ietf@gmail.com> message dated "Fri, 15 Sep 2017 16:41:38 -0400."
From: "Mark D. Baushke" <mdb@juniper.net>
Date: Wed, 20 Sep 2017 09:27:59 -0700
Message-ID: <21187.1505924879@eng-mail01.juniper.net>
Sender: mdb@juniper.net
MIME-Version: 1.0
Content-Type: text/plain
SpamDiagnosticOutput: 1:99
SpamDiagnosticMetadata: NSPM
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 20 Sep 2017 16:28:52.8541 (UTC)
X-MS-Exchange-CrossTenant-Id: bea78b3c-4cdb-4130-854a-1d193232e5f4
X-MS-Exchange-CrossTenant-OriginalAttributedTenantConnectingIp: TenantId=bea78b3c-4cdb-4130-854a-1d193232e5f4; Ip=[66.129.239.12]; Helo=[p-emfe01a-sac.jnpr.net]
X-MS-Exchange-CrossTenant-FromEntityHeader: HybridOnPrem
X-MS-Exchange-Transport-CrossTenantHeadersStamped: CY4PR05MB3605
Archived-At: <https://mailarchive.ietf.org/arch/msg/curdle/iLEHSeoj1DFSBGERw7SLNiGig6M>
Subject: Re: [Curdle] Kathleen Moriarty's Yes on draft-ietf-curdle-ssh-dh-group-exchange-05: (with COMMENT)
X-BeenThere: curdle@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "List for discussion of potential new security area wg." <curdle.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/curdle>, <mailto:curdle-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/curdle/>
List-Post: <mailto:curdle@ietf.org>
List-Help: <mailto:curdle-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/curdle>, <mailto:curdle-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 20 Sep 2017 16:34:23 -0000

Hi Kathleen,

Aside: Regarding SHOULD+ and SHOULD- in IETF drafts...

    The draft-ietf-curdle-ssh-kex-sha2-08.txt edition of that document
    defined and used SHOULD+ and SHOULD-, but many reviewers did not like
    them. So, I removed them from the draft-ietf-curdle-ssh-kex-sha2-09.txt
    edition.

Regarding the language in the current draft...

The primary author of draft-ietf-curdle-ssh-dh-group-exchange-05 is
Loganaden Velvindron.

I believe that he is the one who should make any changes to the
document to address comments provided in this review process.

I have no objections to suggesting that MIN value SHOULD be 2048
and that n SHOULD be 3072 or be capable of being set to 3072 by
an implementation as 2048 is not expected to need to be updated
within the next five years, perhaps abruptly. I actually think
that this would be a good idea.

Does this make sense to anyone else?

	Thanks,
	-- Mark

[Curdle] Kathleen Moriarty's Yes on draft-ietf-cu… Kathleen Moriarty
Re: [Curdle] Kathleen Moriarty's Yes on draft-iet… Loganaden Velvindron
Re: [Curdle] Kathleen Moriarty's Yes on draft-iet… Spencer Dawkins at IETF
Re: [Curdle] Kathleen Moriarty's Yes on draft-iet… Ben Campbell
Re: [Curdle] Kathleen Moriarty's Yes on draft-iet… Kathleen Moriarty
Re: [Curdle] Kathleen Moriarty's Yes on draft-iet… Salz, Rich
Re: [Curdle] Kathleen Moriarty's Yes on draft-iet… Kathleen Moriarty
Re: [Curdle] Kathleen Moriarty's Yes on draft-iet… Salz, Rich
Re: [Curdle] Kathleen Moriarty's Yes on draft-iet… Mark D. Baushke
Re: [Curdle] Kathleen Moriarty's Yes on draft-iet… Kathleen Moriarty
Re: [Curdle] Kathleen Moriarty's Yes on draft-iet… Mark D. Baushke
Re: [Curdle] Kathleen Moriarty's Yes on draft-iet… Kathleen Moriarty
Re: [Curdle] Kathleen Moriarty's Yes on draft-iet… Spencer Dawkins at IETF
Re: [Curdle] Kathleen Moriarty's Yes on draft-iet… Kathleen Moriarty
Re: [Curdle] Kathleen Moriarty's Yes on draft-iet… denis bider
Re: [Curdle] Kathleen Moriarty's Yes on draft-iet… Mark D. Baushke
Re: [Curdle] Kathleen Moriarty's Yes on draft-iet… Eric Rescorla
Re: [Curdle] Kathleen Moriarty's Yes on draft-iet… Loganaden Velvindron
Re: [Curdle] Kathleen Moriarty's Yes on draft-iet… Daniel Migault
Re: [Curdle] Kathleen Moriarty's Yes on draft-iet… Eric Rescorla
Re: [Curdle] Kathleen Moriarty's Yes on draft-iet… Loganaden Velvindron
Re: [Curdle] Kathleen Moriarty's Yes on draft-iet… Kathleen Moriarty
Re: [Curdle] Kathleen Moriarty's Yes on draft-iet… Loganaden Velvindron
Re: [Curdle] Kathleen Moriarty's Yes on draft-iet… Loganaden Velvindron
Re: [Curdle] Kathleen Moriarty's Yes on draft-iet… Kathleen Moriarty