IETF Logo Mail Archive

Re: [Curdle] Opsdir last call review of draft-ietf-curdle-ssh-ed25519-ed448-07

Daniel Migault <daniel.migault@ericsson.com> Wed, 02 January 2019 15:43 UTC

Return-Path: <daniel.migault@ericsson.com>
X-Original-To: curdle@ietfa.amsl.com
Delivered-To: curdle@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3B078130E03 for <curdle@ietfa.amsl.com>; Wed, 2 Jan 2019 07:43:36 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.366
X-Spam-Level:
X-Spam-Status: No, score=-4.366 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.065, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_MED=-2.3, SPF_PASS=-0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ericsson.com header.b=CjtsHKwU; dkim=pass (1024-bit key) header.d=ericsson.com header.b=i8a3ZDtb
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id S-zF4Gh1xXNU for <curdle@ietfa.amsl.com>; Wed, 2 Jan 2019 07:43:34 -0800 (PST)
Received: from sessmg23.ericsson.net (sessmg23.ericsson.net [193.180.251.45]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 684F4130E09 for <curdle@ietf.org>; Wed, 2 Jan 2019 07:43:32 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; d=ericsson.com; s=mailgw201801; c=relaxed/relaxed; q=dns/txt; i=@ericsson.com; t=1546443809; x=1549035809; h=From:Sender:Reply-To:Subject:Date:Message-ID:To:CC:MIME-Version:Content-Type: Content-Transfer-Encoding:Content-ID:Content-Description:Resent-Date:Resent-From: Resent-Sender:Resent-To:Resent-Cc:Resent-Message-ID:In-Reply-To:References:List-Id: List-Help:List-Unsubscribe:List-Subscribe:List-Post:List-Owner:List-Archive; bh=f2Yw4yke4u0hyfqd6D8IpodsIUNdFqyhTPgj9Llhx7A=; b=CjtsHKwUO1Pxx9CJ1aSCDXzmxGKvlAC1SM3FxImiWGGdHQ55c4L3wlRoUovzZepD Nz4qdIg/4uKqnirnDS25N+h72Oo0F2ojeAd06y/qUxgxqeuATUDbNM51CiHfMuag EJ5c2UvUtFtaMWTlywh9Vr/sRmDajTlYXQE0SVKC9OQ=;
X-AuditID: c1b4fb2d-db5ff7000000062f-2a-5c2cdc214f86
Received: from ESESBMB501.ericsson.se (Unknown_Domain [153.88.183.114]) by sessmg23.ericsson.net (Symantec Mail Security) with SMTP id 30.9B.01583.12CDC2C5; Wed, 2 Jan 2019 16:43:29 +0100 (CET)
Received: from ESESBMB505.ericsson.se (153.88.183.172) by ESESBMB501.ericsson.se (153.88.183.168) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256_P256) id 15.1.1466.3; Wed, 2 Jan 2019 16:43:28 +0100
Received: from NAM04-SN1-obe.outbound.protection.outlook.com (153.88.183.157) by ESESBMB505.ericsson.se (153.88.183.172) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256_P256) id 15.1.1466.3 via Frontend Transport; Wed, 2 Jan 2019 16:43:28 +0100
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ericsson.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=f2Yw4yke4u0hyfqd6D8IpodsIUNdFqyhTPgj9Llhx7A=; b=i8a3ZDtbxO+SMjeCQiAz3xWU4y41Ln8SNuubHfeSJDoFDLLmmZivm4M19uJDMZO4IqdmrYUg7JqDUZouJt1pfDzxtlB/AGwLCnernD4Jc2ZAo0s+08WmvVMXE7LLtpkQyZDFjWu5M79IuiCU2rDFBmGGp5ItRI5RWHIyJCAuE3I=
Received: from BL2PR15MB0947.namprd15.prod.outlook.com (10.167.116.21) by BL2PR15MB0932.namprd15.prod.outlook.com (10.167.116.18) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.1495.6; Wed, 2 Jan 2019 15:43:23 +0000
Received: from BL2PR15MB0947.namprd15.prod.outlook.com ([fe80::7504:fcc:895b:b5cf]) by BL2PR15MB0947.namprd15.prod.outlook.com ([fe80::7504:fcc:895b:b5cf%2]) with mapi id 15.20.1495.005; Wed, 2 Jan 2019 15:43:23 +0000
From: Daniel Migault <daniel.migault@ericsson.com>
To: Sheng Jiang <jiangsheng@huawei.com>, "ops-dir@ietf.org" <ops-dir@ietf.org>
CC: "draft-ietf-curdle-ssh-ed25519-ed448.all@ietf.org" <draft-ietf-curdle-ssh-ed25519-ed448.all@ietf.org>, "curdle@ietf.org" <curdle@ietf.org>, "ietf@ietf.org" <ietf@ietf.org>
Thread-Topic: Opsdir last call review of draft-ietf-curdle-ssh-ed25519-ed448-07
Thread-Index: AQHUooIns5Xh3czW1kCDn18j5kGqP6WcDm7Q
Date: Wed, 02 Jan 2019 15:43:23 +0000
Message-ID: <BL2PR15MB0947E4B0DCC8C36615F09B4DE38C0@BL2PR15MB0947.namprd15.prod.outlook.com>
References: <154642329120.32625.18387931087720472774@ietfa.amsl.com>
In-Reply-To: <154642329120.32625.18387931087720472774@ietfa.amsl.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [70.80.131.240]
x-ms-publictraffictype: Email
x-microsoft-exchange-diagnostics: 1; BL2PR15MB0932; 6:VNFo3Omj4AsE2E4LIcxgjQc87Kr0mcFVkc/CjdCA7pWIaHqZApSPCwXMazc3hQcLnn7X+vGjo+U8P/Lz1SmBFGC7quDUi3gSZYI2kzxmgMQdK1iw87QVLq2YgGutT6k4Eo9zwZJ6CC2Xajg7T0VFKY19AQhczXay23TGmA+miojQ2HVvaAVNB97e7x8r8pq25qLqeD5aXrLcP8aZ2DPLInNbSMuy+QqyfXPnE7eCga1eysjvX6MEg8TTFK7UFuSTmb3NXExN6rOcXE1tIq7KkhpfnV/YlPT2VPbG5Qe/hScyHaiAThS6tJuRFDQnUlh5dc6ts3OGPZjGRFWDFOAiQTISOhqGODbn3deCJZUfUHR9QEBYWWqzyFd+0+bYpYvW0nfIBTxop44sKTB11X3N5ySB2FpYF7tx1vrQ+JJoQGpxWIOQRgIULXUFQpPyiRE9exlrSbNapSlPgE0CxpFzmQ==; 5:kSqiPWCKBSouVN0eOzFQxtMh+RwTiGPEVRPGjEuzvo4acuICvwBbzRU0DDr3hfx8Sxq0DFE1kDq9UWCV9OQviP6YTTkoIUQshlqY8ZptP6r85K6gNNtpqeqwIqPdtwVaC3RDXz91a2upQF20CvdPB6Fn2n6t2nqPjJpEJ8X1IrwGxqD0rFSFHZe2TDEgO51LUmhOugx17ZGnzksZKjqtoQ==; 7:9/hKBU2qk542ljdbH04HBMR7CQBnIe73dlbWM6yZnmhkpBc73iqqWzPQH8RoAweo7k+53f38kalr3gajJB4SuOV5ZMczRNBJyG/93KJ7E8b6srVvIAxkF5mfE7TZzYbPbUYwAq8JIakkM7P8lVsTfw==
x-ms-exchange-antispam-srfa-diagnostics: SOS;
x-ms-office365-filtering-correlation-id: bb525ad3-7748-4c00-d693-08d670c90766
x-microsoft-antispam: BCL:0; PCL:0; RULEID:(2390118)(7020095)(4652040)(8989299)(4534185)(4627221)(201703031133081)(201702281549075)(8990200)(5600109)(711020)(2017052603328)(7153060)(7193020); SRVR:BL2PR15MB0932;
x-ms-traffictypediagnostic: BL2PR15MB0932:
x-microsoft-antispam-prvs: <BL2PR15MB0932B791D4434BDB525CC45AE38C0@BL2PR15MB0932.namprd15.prod.outlook.com>
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(8211001083)(3230021)(908002)(999002)(5005026)(6040522)(8220060)(2401047)(8121501046)(3231475)(944501520)(52105112)(93006095)(93001095)(10201501046)(3002001)(6041310)(20161123564045)(201703131423095)(201702281528075)(20161123555045)(201703061421075)(201703061406153)(20161123560045)(20161123562045)(20161123558120)(201708071742011)(7699051)(76991095); SRVR:BL2PR15MB0932; BCL:0; PCL:0; RULEID:; SRVR:BL2PR15MB0932;
x-forefront-prvs: 0905A6B2C7
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(366004)(346002)(376002)(396003)(39860400002)(136003)(13464003)(51914003)(189003)(199004)(99286004)(106356001)(316002)(105586002)(6346003)(26005)(6506007)(53546011)(102836004)(476003)(186003)(44832011)(486006)(11346002)(256004)(446003)(33656002)(8676002)(8936002)(81156014)(81166006)(14444005)(76176011)(7736002)(305945005)(7696005)(54906003)(110136005)(74316002)(2501003)(25786009)(68736007)(5660300001)(66066001)(229853002)(3846002)(6116002)(6436002)(97736004)(2906002)(478600001)(4326008)(71190400001)(71200400001)(86362001)(53936002)(6246003)(55016002)(14454004)(9686003); DIR:OUT; SFP:1101; SCL:1; SRVR:BL2PR15MB0932; H:BL2PR15MB0947.namprd15.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; MX:1; A:1;
received-spf: None (protection.outlook.com: ericsson.com does not designate permitted sender hosts)
authentication-results: spf=none (sender IP is ) smtp.mailfrom=daniel.migault@ericsson.com;
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam-message-info: SZqmqlXSPWfbc/hx6s5AhOawMac/MzOhIzpWzLhBXlUEgZ/v1+eOzfUsgv6+GF/8iHlWdx3EqFpUux1Qi1ja86aeXalCQW7UEw5kvC6EsCmv0PKgSZ7UehZjIjQ4QkfoUmLkMf86SYk0EHSuS/EgTVc258tlS1VkabAlpXqxB4kCPedFHKvQ4vPOS0PiMXvk8hzV0PWah5UGHfWby/0pkZP48kJZT+4Y4IADIL4wxBpI99WW4ZQ2jC5kiA3jdNLv+MhGr5Olc9urPXbZvikCvaiQLCGCaIy6DrklCUOGPu6csyv7VduNrGebnvP2luM6
spamdiagnosticoutput: 1:99
spamdiagnosticmetadata: NSPM
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-Network-Message-Id: bb525ad3-7748-4c00-d693-08d670c90766
X-MS-Exchange-CrossTenant-originalarrivaltime: 02 Jan 2019 15:43:23.3180 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 92e84ceb-fbfd-47ab-be52-080c6b87953f
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BL2PR15MB0932
X-OriginatorOrg: ericsson.com
X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFprOKsWRmVeSWpSXmKPExsUyM2J7ka7iHZ0Ygwu3lCy2LpzFbLH+4Gcm i2cb57NYLFy/ltmit2kJswOrR8uRt6weS5b8ZApgiuKySUnNySxLLdK3S+DKuPpxOnPBHrWK J4c72RoY96h2MXJySAiYSHxc0MfYxcjFISRwhFHi4YZ/UM5XRonpCy+xQTiLmSRO7njHDuKw CExglpjSdpUdIjORSWJR83uosvuMEjNn9LCBTGYTMJJoO9TPDmKLCPhJtC98xQRSxCywmVHi xJmFLCAJYaDEnHeHmSGKAiX6191lgrCNJNo7b4DZLAIqEpMuPQar5xWIkTjf/JkRxBYScJHY 2n4ILM4p4Cqxo+kS2DJGATGJ76fWgPUyC4hL3HoynwniVQGJJXvOM0PYohIvH/9jhbAVJd7s XANly0pcmt8NDgEJgSZ2iROz3kI160p8mDoVqtlXYvXtT1ANFxgl7t7khrC1JO4/2QNVny3x p/c0K8Sgi8wSzSv/QiVkJE7+msMMkfjJKrHkUBvrBEaDWUiuncXIAWRrSqzfpQ8RVpSY0v2Q fRY4AAQlTs58wrKAkWUVo2hxanFxbrqRsV5qUWZycXF+nl5easkmRmByObjlt+4OxtWvHQ8x CnAwKvHwzrykEyPEmlhWXJl7iFGCg1lJhFesGCjEm5JYWZValB9fVJqTWnyIUZqDRUmc94+Q YIyQQHpiSWp2ampBahFMlomDU6qBkUHDWGT2kSNzzzcHrnnDalJplCzz37007q1YSsfv/d/u SbTWCF+6bbPL8q4l290ZrQ4aq//UlLIFm96aFi+zcs5OBZv3ITvnqPPfVnRsnOHn7/j5Tdkc r7WMJY9Lr8xm4jtm6PBo3glZQ6OVed1Rat/8FrcbaVwwPKfmYsewrq4vZ5K9qc9EJZbijERD Leai4kQA/tnCpyoDAAA=
Archived-At: <https://mailarchive.ietf.org/arch/msg/curdle/nJlNQDeJgU0nbgm04NEsU0MspF0>
Subject: Re: [Curdle] Opsdir last call review of draft-ietf-curdle-ssh-ed25519-ed448-07
X-BeenThere: curdle@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "List for discussion of potential new security area wg." <curdle.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/curdle>, <mailto:curdle-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/curdle/>
List-Post: <mailto:curdle@ietf.org>
List-Help: <mailto:curdle-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/curdle>, <mailto:curdle-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 02 Jan 2019 15:43:36 -0000

Hi Sheng,

Thanks for the comment and the suggestion. I agree that it may sound strange to have a standard Track category without any reference to RFC2119. In addition, while the document provides IANA registry updates, the IANA registration does not require a Standard Track. So *technically* the informational category could be fine. 

The motivation for a Standard Track document was to have these algorithms as part of the SSH protocol. In other words, we expect that SSH will come with these algorithms in the future. For that reason we requested the status to be "Standard Track" to remain coherent with RFC425{1-4}.

(RFC4250 and) RFC4253 provided the initial values for the Public Key registry. While the protocol comes with some registry values, my understanding is that updating the registry by adding a new value is not considered as an update the RFC. For that reason we did not provide RFC4253 or RFC4250 in the update status. While the update does not concern the RFC, it affects the protocol and should - in my opinion be associated to the same status as the protocol. 

As a side note, all RFCs that have updated the Public Key Algorithm Names are Standard Track documents. On the other hand, they seem to reference and use the RFC2119 terms. 

I believe that the Standard Track category is the most appropriated, however, I am happy to be wrong and have misunderstood something. Feel free to let me know your opinion on the category, as well as if there are any clarification we should add in the text. I suggest that we add a sentence around the lines: 
""" These signature algorithms are expected to be integrated into the standard implementations of SSH. """
 
Any feed back is welcome!

Yours, 
Daniel
-----Original Message-----
From: Sheng Jiang <jiangsheng@huawei.com> 
Sent: Wednesday, January 02, 2019 5:02 AM
To: ops-dir@ietf.org
Cc: draft-ietf-curdle-ssh-ed25519-ed448.all@ietf.org; curdle@ietf.org; ietf@ietf.org
Subject: Opsdir last call review of draft-ietf-curdle-ssh-ed25519-ed448-07

Reviewer: Sheng Jiang
Review result: Has Issues

Reviewer: Sheng Jiang
Review result: Has Issues

Hi, OPS-DIR, Authors,

I have reviewed this document as part of the Operational directorate's ongoing effort to review all IETF documents being processed by the IESG. These comments were written with the intent of improving the operational aspects of the IETF drafts. Comments that are not addressed in last call may be included in AD reviews during the IESG review. Document editors and WG chairs should treat these comments just like any other last call comments.

This standard track document describes the use of the Ed25519 and Ed448 digital signature algorithm in the Secure Shell (SSH) protocol.  This document is one of the shortest documents I have ever seen. It is clear and well written.
However, I have a fundamental issue regarding to its Intended status "Standards Track", describe below. Therefore, it has issues for publication although I think it is easy to fixed - changing the Intended status.

Major issue: this document has Intended status for Standards Track. However, neither this document fails to quota RFC 2119 or has any normative words.
Consistently, I don't think the description in this document has any mandatory requirements for any implementations of protocols. Actually, the most important quota of this document, RFC8032, is Informational, which is a Downref in this document. Therefore, I think it is more proper this document intends for Informational status.

Minor issue: no.

Regards,

Sheng

v2.23.0 | Report a Bug | By Email