Re: [Curdle] Looking for comments on draft-ietf-curdle-ssh-kex-sha2

"Mark D. Baushke" <mdb@juniper.net> Wed, 25 November 2020 17:16 UTC

Return-Path: <mdb@juniper.net>
X-Original-To: curdle@ietfa.amsl.com
Delivered-To: curdle@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 21CE03A191F for <curdle@ietfa.amsl.com>; Wed, 25 Nov 2020 09:16:43 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.12
X-Spam-Level:
X-Spam-Status: No, score=-2.12 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_MSPIKE_H4=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=juniper.net header.b=gCE7dmTX; dkim=pass (1024-bit key) header.d=juniper.net header.b=TxSDhqmh
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id a16hk78x0PON for <curdle@ietfa.amsl.com>; Wed, 25 Nov 2020 09:16:41 -0800 (PST)
Received: from mx0a-00273201.pphosted.com (mx0a-00273201.pphosted.com [208.84.65.16]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E99AD3A12F3 for <curdle@ietf.org>; Wed, 25 Nov 2020 09:16:41 -0800 (PST)
Received: from pps.filterd (m0108156.ppops.net [127.0.0.1]) by mx0a-00273201.pphosted.com (8.16.0.43/8.16.0.43) with SMTP id 0APHFOws032003; Wed, 25 Nov 2020 09:16:41 -0800
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=juniper.net; h=to : cc : subject : in-reply-to : references : from : mime-version : content-type : content-id : date : message-id; s=PPS1017; bh=MCGxRjB/ttbUh9ukA3Agr7hbkyoWzX+NYKSAKjiMcjY=; b=gCE7dmTX84HugWKCN9sdSZDEUNA+jz0XVWyG6hDaRayvKYJUPp9Fzafxc7S30Oj2X2Bv kHqRYAeqqxzP5818M0mThuXkyDhOT0zxtxLT6VEXNO7INQi59eZk4cciAVxXzbULECxb tc/g1Deb2I1ttRyze6n94BgBwUIWPQ1kTfg9dMGun3kqzEZ2gn4eiy8ZuLK0bt9xyTwj YvZbsiJYmEVtOWUVIzJaH/4VfNyUTQoicHqk11qO8SL+AWE/d1dle4QzE+SmCOwZkucN VyvfAumkl5v798iY2ae0Bssq82nk4J6oug/Qq7wz/y+FEzKjPSc6ujCPRKkLsTxi9bAl wg==
Received: from nam12-mw2-obe.outbound.protection.outlook.com (mail-mw2nam12lp2048.outbound.protection.outlook.com [104.47.66.48]) by mx0a-00273201.pphosted.com with ESMTP id 351k5as299-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Wed, 25 Nov 2020 09:16:41 -0800
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=YMXbGj9Bh5lPUnsxouzFs/ne19zyaROz/KO8ZhSYUHz90DjpFZ0i9W0ddyHDddIZ1zJ68DNOGLQF5iHZW2aQY0wTvvDD+v2beAsW5NR2imRyJcTlyS04rxqPzdUSzswlVQv6Texm01bwrTyVtUa8QXDOz4yzmgVqJubEiUnnpxBMG4F8KCqpvBC7zD1y20tu2oEn2q0oJekaiM14w4t3R+9GfZRTlS9Cr3Mcxfakv+FEaAsxSY6GuBUoVoYbl6c5DOvx6i8qX89nbIeueWmyV+fIPt2bOgJMgBA3kFIyzGibRQs2sMpimijQi0+6esjRshimBYdbTil4id6xWC6Qsg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=MCGxRjB/ttbUh9ukA3Agr7hbkyoWzX+NYKSAKjiMcjY=; b=eUL5YVLPfYcIA5AdAiJnA7FVC+1s/ZwEqZ1xT45P7+Sj1ZLZtcixIjAlMR3dE0cYsQ60g2uBGdcSQ9syBzBwEwp4i4A6jSsG3Q1O0hVzunNQLYaK9feu39CEP7HlZfJx/m3k1X6rtdYph7Qa68U6J8qUzQw7kKyJX4tuVttThDTS6/shFt4l2UxqJ34Se2DQMXp7wrKUu2r2RraZVc8yWYmMINR1tIHFzvL9+dyqpnnTH4hSJXiH0OAzaVHDTmdFMNVMbnYyKGvstaMpnb5i4yulVBvgqPxxja4ZKCCfjoM6qMckQ+QlvISgBr/F64Ok/Z1Rg0MEjasHR6R9hqgqLg==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=softfail (sender ip is 66.129.242.13) smtp.rcpttodomain=ietf.org smtp.mailfrom=juniper.net; dmarc=fail (p=reject sp=reject pct=100) action=oreject header.from=juniper.net; dkim=none (message not signed); arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=juniper.net; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=MCGxRjB/ttbUh9ukA3Agr7hbkyoWzX+NYKSAKjiMcjY=; b=TxSDhqmhfwyTqEokc1a2fi5xH44sSYBMf4Wy2k3k3dJZEbeeyyrNj7l6In46B3Ke/ctBmUcFR9gjE8uL7pm2N9DpfHgJtgnka0ZRsLYcm1Spjm3+AaUq52+v0A+GHziTTNVa9z964pn6RiQwx1ux5P3RHobhZQwN9pWazeaZDM8=
Received: from DM6PR11CA0049.namprd11.prod.outlook.com (2603:10b6:5:14c::26) by DM6PR05MB4137.namprd05.prod.outlook.com (2603:10b6:5:81::28) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3611.9; Wed, 25 Nov 2020 17:16:39 +0000
Received: from DM3NAM05FT003.eop-nam05.prod.protection.outlook.com (2603:10b6:5:14c:cafe::7d) by DM6PR11CA0049.outlook.office365.com (2603:10b6:5:14c::26) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3611.22 via Frontend Transport; Wed, 25 Nov 2020 17:16:39 +0000
X-MS-Exchange-Authentication-Results: spf=softfail (sender IP is 66.129.242.13) smtp.mailfrom=juniper.net; ietf.org; dkim=none (message not signed) header.d=none;ietf.org; dmarc=fail action=oreject header.from=juniper.net;
Received-SPF: SoftFail (protection.outlook.com: domain of transitioning juniper.net discourages use of 66.129.242.13 as permitted sender)
Received: from P-EXFEND-EQX-02.jnpr.net (66.129.242.13) by DM3NAM05FT003.mail.protection.outlook.com (10.152.98.108) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384) id 15.20.3589.12 via Frontend Transport; Wed, 25 Nov 2020 17:16:39 +0000
Received: from P-EXBEND-EQX-01.jnpr.net (10.104.8.52) by P-EXFEND-EQX-02.jnpr.net (10.104.8.55) with Microsoft SMTP Server (TLS) id 15.0.1497.2; Wed, 25 Nov 2020 09:16:38 -0800
Received: from P-EXBEND-EQX-01.jnpr.net (10.104.8.52) by P-EXBEND-EQX-01.jnpr.net (10.104.8.52) with Microsoft SMTP Server (TLS) id 15.0.1497.2; Wed, 25 Nov 2020 09:16:38 -0800
Received: from p-mailhub01.juniper.net (10.104.20.6) by P-EXBEND-EQX-01.jnpr.net (10.104.8.52) with Microsoft SMTP Server (TLS) id 15.0.1497.2 via Frontend Transport; Wed, 25 Nov 2020 09:16:38 -0800
Received: from eng-mail01.juniper.net (eng-mail01.juniper.net [10.108.17.159]) by p-mailhub01.juniper.net (8.14.4/8.11.3) with ESMTP id 0APHGbpR007990; Wed, 25 Nov 2020 09:16:37 -0800 (envelope-from mdb@juniper.net)
To: Hubert Kario <hkario@redhat.com>
CC: <curdle@ietf.org>
In-Reply-To: <7107b6ac-0e6c-419d-96ac-d0a53b65ee5b@redhat.com>
References: <25423.1596646626@eng-mail01.juniper.net> <SA0PR15MB37917F0E55D801609AF23EB0E34B0@SA0PR15MB3791.namprd15.prod.outlook.com> <20200807052623.GM92412@kduck.mit.edu> <71619.1606168457@eng-mail01.juniper.net> <7107b6ac-0e6c-419d-96ac-d0a53b65ee5b@redhat.com>
Comments: In-reply-to: Hubert Kario <hkario@redhat.com> message dated "Wed, 25 Nov 2020 13:53:11 +0100."
From: "Mark D. Baushke" <mdb@juniper.net>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-ID: <82621.1606324597.1@eng-mail01.juniper.net>
Date: Wed, 25 Nov 2020 09:16:37 -0800
Message-ID: <82623.1606324597@eng-mail01.juniper.net>
X-EXCLAIMER-MD-CONFIG: e3cb0ff2-54e7-4646-8a04-0dae4ac7b136
X-EOPAttributedMessage: 0
X-MS-Office365-Filtering-HT: Tenant
X-MS-PublicTrafficType: Email
X-MS-Office365-Filtering-Correlation-Id: 9ae387a2-5264-41dc-07b5-08d89165df23
X-MS-TrafficTypeDiagnostic: DM6PR05MB4137:
X-Microsoft-Antispam-PRVS: <DM6PR05MB4137645561ADEA4A4BBBCCAEBFFA0@DM6PR05MB4137.namprd05.prod.outlook.com>
X-MS-Oob-TLC-OOBClassifiers: OLM:10000;
X-MS-Exchange-SenderADCheck: 1
X-Microsoft-Antispam: BCL:0;
X-Microsoft-Antispam-Message-Info: z8CDyAP9dZDsE5JEvN/NhP3jWQSEAv0XTOQOYu3i77D0FAFNhBwvEN/oLS9g16bv+AvI71yUfOCiNJ8QC5YY/RS4GFlxGWN18R1FEXZh6fSwtcG23GBTMfA/zzRbL0J2eJDLoCFBZAcWdYxZxSvC++igT7Fusi4TkMKDofh1z6wZcWOpigfclGcsEfCMGwxyHStcXhVZvkIv5B+iANom37t4PJ+K5Bg8QMfR9C25Dpy0Amfe4aVmr9/iGfux4WqOyZ7OEUSMscJqgBMYxFgyiIxMa4NXTpx+r3TYW/PA+VNMe1Q91Cnz9upU4Y7AsrLP1IvNl95qjozArFhkbJWrFMKTg2YX2ky4AWY97sEf3OK8fOkQjkDKl6t4ABxKg34TLGd0P0i/WS0KQIeumq+arQ==
X-Forefront-Antispam-Report: CIP:66.129.242.13; CTRY:US; LANG:en; SCL:1; SRV:; IPV:CAL; SFV:NSPM; H:P-EXFEND-EQX-02.jnpr.net; PTR:InfoDomainNonexistent; CAT:NONE; SFS:(4636009)(346002)(136003)(376002)(39860400002)(396003)(46966005)(82740400003)(82310400003)(47076004)(8936002)(186003)(4326008)(6916009)(316002)(83380400001)(5660300002)(8676002)(70206006)(7696005)(2906002)(356005)(478600001)(336012)(86362001)(81166007)(26005)(70586007)(426003); DIR:OUT; SFP:1102;
X-OriginatorOrg: juniper.net
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 25 Nov 2020 17:16:39.3304 (UTC)
X-MS-Exchange-CrossTenant-Network-Message-Id: 9ae387a2-5264-41dc-07b5-08d89165df23
X-MS-Exchange-CrossTenant-Id: bea78b3c-4cdb-4130-854a-1d193232e5f4
X-MS-Exchange-CrossTenant-OriginalAttributedTenantConnectingIp: TenantId=bea78b3c-4cdb-4130-854a-1d193232e5f4; Ip=[66.129.242.13]; Helo=[P-EXFEND-EQX-02.jnpr.net]
X-MS-Exchange-CrossTenant-AuthSource: DM3NAM05FT003.eop-nam05.prod.protection.outlook.com
X-MS-Exchange-CrossTenant-AuthAs: Anonymous
X-MS-Exchange-CrossTenant-FromEntityHeader: HybridOnPrem
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DM6PR05MB4137
X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:6.0.312, 18.0.737 definitions=2020-11-25_10:2020-11-25, 2020-11-25 signatures=0
X-Proofpoint-Spam-Details: rule=outbound_spam_notspam policy=outbound_spam score=0 adultscore=0 lowpriorityscore=0 suspectscore=1 mlxlogscore=999 spamscore=0 mlxscore=0 phishscore=0 malwarescore=0 impostorscore=0 clxscore=1015 priorityscore=1501 bulkscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.12.0-2009150000 definitions=main-2011250108
Archived-At: <https://mailarchive.ietf.org/arch/msg/curdle/jQTYgaGirlZrX4eWqn-mdGRtmGE>
Subject: Re: [Curdle] Looking for comments on draft-ietf-curdle-ssh-kex-sha2
X-BeenThere: curdle@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "List for discussion of potential new security area wg." <curdle.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/curdle>, <mailto:curdle-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/curdle/>
List-Post: <mailto:curdle@ietf.org>
List-Help: <mailto:curdle-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/curdle>, <mailto:curdle-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 25 Nov 2020 17:16:43 -0000

Hubert Kario <hkario@redhat.com> writes:

> On Monday, 23 November 2020 22:54:17 CET, Mark D. Baushke wrote:
> > The diffie-hellman-group1-sha1 exchange was a mandatory to implement and
> > is now a SHOULD NOT. I could move it to MUST NOT if everyone else thinks
> > it best.
> 
> +1 for a MUST NOT, though I'm ok with keeping it at SHOULD NOT

Good. Personally, I favor MUST NOT, but I was being conservative in how
fast something goes from a MUST to a MUST NOT.

> > The diffie-hellman-group14-sha1 exchange was a mandatory to implement
> > MUST and is now a SHOULD. Similarly for gss-group1-sha1-*

Minor typo here. I intended 'gss-group14-sha1-*' which shadows the
non-gss name.

> no, I think it should be SHOULD NOT, the sha-1 disqualifies it

Okay. I hope others provide their inputs on this one. I have no issues
with making it a SHOULD NOT if that is desirable by others on the list.

> > A plurality of the list seemed to be in favor of this, but if 2048-bit
> > (112 bits of security) is falling out of favor (along with 3DES), then
> > perhaps a different KeX is desirable to be MUST.
> 
> while small security margin of 3DES is a factor for its deprecation,
> the most problematic part of 3DES is the 64 bit block size

Yes.

> and AFAIK, we're not even considering deprecation of 2048 bit RSA in
> the web PKIX, so, I don't see any arguments against making group14
> mandatory

Good points. Thank you.

	Be safe, stay healthy,
	-- Mark