IETF Logo Mail Archive

Re: [Curdle] call for adoption for draft-mu-curdle-ssh-xmss-00

Daniel Migault <daniel.migault@ericsson.com> Fri, 29 November 2019 13:11 UTC

Return-Path: <daniel.migault@ericsson.com>
X-Original-To: curdle@ietfa.amsl.com
Delivered-To: curdle@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 732E1120289 for <curdle@ietfa.amsl.com>; Fri, 29 Nov 2019 05:11:40 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.002
X-Spam-Level:
X-Spam-Status: No, score=-2.002 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ericsson.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id l5IoFA6JKU1U for <curdle@ietfa.amsl.com>; Fri, 29 Nov 2019 05:11:38 -0800 (PST)
Received: from NAM04-SN1-obe.outbound.protection.outlook.com (mail-eopbgr700048.outbound.protection.outlook.com [40.107.70.48]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 6493D1200E9 for <curdle@ietf.org>; Fri, 29 Nov 2019 05:11:38 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=O25WbSslGWhOi6gMUnw1yQYgvHSMW7S49+emMiUxCNeB3+kXU3/WxxhvyOXvmyrIBzW6Uq0wfPuKgkCFPij0t1OxXyjw1PMjg70bZxuYy1SaHpI9vgKO5a0dkDOU+P6fG1zm0dqf/1W+JytgKq8GGvpu2L0ztrz9y075wyARWsZtZbfMkY7xbrk+5ywtM+ML9q/0LJ+t3B9WnV00mzbW99DsrhZyP6/LSAVtOG7WZeStrQczsviLXfCrTeCNym5XfWIml7E9w40/A4mpMPaRfgAXkPCvEiDfl9qoHyqrY9gmlgfp6Sf7gzVunAB97oSsbBtX3kO2tBM8vwh9htlrYQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=oi670/y8U5w3w/fS2KgBXzo9MTj6+nHmy7AW/P+Xeys=; b=NZ/sOk9s2fptrBrpcLxuVfYWyc9qfKOHBMj3aCY7PEAv8PW6b1hWcLgWSaNLLPVnjSqlRLiGDA2+U0OEC2KZ1sKo09oXwmapxkaDXOzXs0apYcV2wufcEVj0PDCgM/wdfvjRMYCWurGHzNuTaC7ZWx8f5qEjp22XgqT/Jw38xOgD5C/lPRPXnGemteZZTL7+rqEwbfp1z2QCMKikgzulJoFxexPy+rrtO/4Pw8O7D+O9Gfz2BazYIz1btIaMMvnrO8usK+8yc31eHFFbjboadFr/nqBm6WgJYGh2z+YaqmB8Z+j8dBqv4+G2mSiuGiRxL7FrYFSw5yu+J+1n2SqdSg==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=ericsson.com; dmarc=pass action=none header.from=ericsson.com; dkim=pass header.d=ericsson.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ericsson.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=oi670/y8U5w3w/fS2KgBXzo9MTj6+nHmy7AW/P+Xeys=; b=O8HNTPgsaxXRUE2WjNmYgHkjER2KaexgW6vl+Y1zcWOmlO51tjjQGEjpHU1a7IV5/kuiba2WoEWF71CglBoUsXMkndqkJ6/FtxqVMW5W4uIH+pIXy7kVBrhV20JnfQTFJ3PsQHo/A0IGavcSHf805kAWIfcQm4pqy7D7QxXHA+U=
Received: from SN6PR15MB2302.namprd15.prod.outlook.com (52.132.124.11) by SN6PR15MB2448.namprd15.prod.outlook.com (52.135.65.160) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2495.21; Fri, 29 Nov 2019 13:11:33 +0000
Received: from SN6PR15MB2302.namprd15.prod.outlook.com ([fe80::7114:a811:dc75:5e88]) by SN6PR15MB2302.namprd15.prod.outlook.com ([fe80::7114:a811:dc75:5e88%7]) with mapi id 15.20.2495.014; Fri, 29 Nov 2019 13:11:33 +0000
From: Daniel Migault <daniel.migault@ericsson.com>
To: Stephen Farrell <stephen.farrell@cs.tcd.ie>, "Hammell, Jonathan F" <Jonathan.Hammell@cyber.gc.ca>, "'curdle@ietf.org'" <curdle@ietf.org>
Thread-Topic: [Curdle] call for adoption for draft-mu-curdle-ssh-xmss-00
Thread-Index: AQHVpqW7c1Sj089W4kCeu+2dS+4/KqeiH3Kg
Date: Fri, 29 Nov 2019 13:11:33 +0000
Message-ID: <SN6PR15MB23026A1851A068FAAD13AA1AE3460@SN6PR15MB2302.namprd15.prod.outlook.com>
References: <20191128195955.D27F61208C7@ietfa.amsl.com> <086cc504-34b7-1b34-7a53-0d1f69ffdc88@cs.tcd.ie>
In-Reply-To: <086cc504-34b7-1b34-7a53-0d1f69ffdc88@cs.tcd.ie>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: spf=none (sender IP is ) smtp.mailfrom=daniel.migault@ericsson.com;
x-originating-ip: [96.22.11.129]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 7985d6b8-856b-43f9-6b04-08d774cda860
x-ms-traffictypediagnostic: SN6PR15MB2448:
x-microsoft-antispam-prvs: <SN6PR15MB2448EE8D600B27B7BF1ACEF8E3460@SN6PR15MB2448.namprd15.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:7691;
x-forefront-prvs: 0236114672
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(4636009)(366004)(189003)(199004)(13464003)(81166006)(296002)(81156014)(9686003)(66066001)(7736002)(305945005)(110136005)(5660300002)(99286004)(52536014)(6246003)(446003)(8676002)(55016002)(186003)(102836004)(66946007)(25786009)(11346002)(86362001)(26005)(76116006)(8936002)(14454004)(53546011)(64756008)(66446008)(66556008)(66476007)(74316002)(229853002)(6506007)(71200400001)(33656002)(966005)(71190400001)(3846002)(6116002)(7696005)(76176011)(6306002)(2906002)(498600001)(44832011)(14444005)(256004)(6436002)(491001); DIR:OUT; SFP:1101; SCL:1; SRVR:SN6PR15MB2448; H:SN6PR15MB2302.namprd15.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; MX:1; A:1;
received-spf: None (protection.outlook.com: ericsson.com does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: PPYaydFo+0JhmGIRGtgDWL/kaxgCdQF/ehOwB9N+R8QXpeVfXyTVQLuOXZxLFzZMUQghC319Sl6H16un9+Ja5kBWzYwf+OQwMOvlC8fceTChIq80Tsgp3o25nwpCnqLeeCVc11gm5WhLjhsqVSYOCgeuxCZ+xpsS5hCiduM2YCUN5ybgTDxYLcB+zyBP0hbJpWActY5CTJEbXXSQOpjtVOcgpS8D08QNNlw0SMm5arYkqejZJWkIP8thu/u88jsNOybVc+4KQ3qxEcFaQs/Mwm6j8SrZOyEja37Y/5MEHF971Yec0lFSgoxnB/AIrkWbXmh3NDViQBxoPoRXqSXRInSk94tEDG7IsW94ABlmVPjwfP7QyOlSCyFjDcjeogw+V7O8qVZf529U0zaSMw0G80/hkqYwmdMjMbEKHPU8xBML2DvXa3g5tv0ELtvI0cBcqvjHhMpQgkwDToui9Fa7kSWwE4dqw2L5nbQTGBzt8xE=
x-ms-exchange-transport-forked: True
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: ericsson.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 7985d6b8-856b-43f9-6b04-08d774cda860
X-MS-Exchange-CrossTenant-originalarrivaltime: 29 Nov 2019 13:11:33.7084 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 92e84ceb-fbfd-47ab-be52-080c6b87953f
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: qNAfwuiRBVShM4Q13VV9Vnngh+EdLfQRcopk//8l2eTF5Euz3/PrEKnRp/SSXG+VeYnF56TpfQmdE7g197w30/oaOviHqF1AEGy67IizVlE=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: SN6PR15MB2448
Archived-At: <https://mailarchive.ietf.org/arch/msg/curdle/r8n87f0AYq9ZixTcY5vuLzUJldM>
Subject: Re: [Curdle] call for adoption for draft-mu-curdle-ssh-xmss-00
X-BeenThere: curdle@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "List for discussion of potential new security area wg." <curdle.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/curdle>, <mailto:curdle-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/curdle/>
List-Post: <mailto:curdle@ietf.org>
List-Help: <mailto:curdle-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/curdle>, <mailto:curdle-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 29 Nov 2019 13:11:40 -0000


-----Original Message-----
From: Curdle <curdle-bounces@ietf.org> On Behalf Of Stephen Farrell
Sent: Friday, November 29, 2019 6:11 AM
To: Hammell, Jonathan F <Jonathan.Hammell@cyber.gc.ca>; 'curdle@ietf.org' <curdle@ietf.org>
Subject: Re: [Curdle] call for adoption for draft-mu-curdle-ssh-xmss-00



On 28/11/2019 19:59, Hammell, Jonathan F wrote:
> Classification: UNCLASSIFIED
> 
> Hash-based signature schemes, such as XMSS, are appropriate for use 
> cases where a limited number of signing operations will take place 
> (due to the tree-based structure and high cost of signature
> generation) and those signatures will be validated far in the future 
> (requiring the quantum-safe property).  Signing for SSH connections 
> does not fit this model.  Furthermore, as others have pointed out, 
> there are many concerns with managing the state of the private key in 
> typical SSH scenarios.
> 
> I only see security concerns with using XMSS in SSH and no strong 
> advantages.  Therefore, I am opposed to adoption.
> 

I think the above seems correct. I also hope that SSH implementers don't adopt stateful signature schemes.

S

PS: Anyone know if ietf-ssh@netbsd.org still active or if some other list has superseded that?

<mglt>For what I know, I think it is still active. </mglt>

> Jonathan -- Canadian Centre for Cyber Security
> 
>> Daniel Migault <daniel.migault@ericsson.com> Wed, 20 November 2019
>> 14:38 UTCShow header
>> 
>> Hi,
>> 
>> This mail starts a call for adoption for
>> draft-mu-curdle-ssh-xmss-00 XMSS public key algorithms for the Secure 
>> Shell (SSH) protocol. Please state on the mailing list whether you 
>> support the adoption of the draft or if you have any objection by 
>> December 5.
>> 
>> Yours, Rich and Daniel
>> 
>> [1] https://datatracker.ietf.org/doc/draft-mu-curdle-ssh-xmss/
> 
> 
> _______________________________________________ Curdle mailing list 
> Curdle@ietf.org https://www.ietf.org/mailman/listinfo/curdle
>

v2.23.0 | Report a Bug | By Email