IETF Logo Mail Archive

Re: [dane] [openpgp] The DANE draft

Warren Kumari <warren@kumari.net> Thu, 06 August 2015 17:07 UTC

Return-Path: <warren@kumari.net>
X-Original-To: dane@ietfa.amsl.com
Delivered-To: dane@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 41CAB1B3C48 for <dane@ietfa.amsl.com>; Thu, 6 Aug 2015 10:07:26 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.978
X-Spam-Level:
X-Spam-Status: No, score=-1.978 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, FM_FORGED_GMAIL=0.622, RCVD_IN_DNSWL_LOW=-0.7] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id UC64ChVF1RFB for <dane@ietfa.amsl.com>; Thu, 6 Aug 2015 10:07:24 -0700 (PDT)
Received: from mail-ob0-f169.google.com (mail-ob0-f169.google.com [209.85.214.169]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 96A461B3C43 for <dane@ietf.org>; Thu, 6 Aug 2015 10:07:24 -0700 (PDT)
Received: by obbop1 with SMTP id op1so60644493obb.2 for <dane@ietf.org>; Thu, 06 Aug 2015 10:07:24 -0700 (PDT)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:in-reply-to:references:date :message-id:subject:from:to:cc:content-type; bh=weHIQBlcjA34ZfpGdWyTWLpIh+A4QkQpjCCPdrseWcU=; b=Ku6msGR96flBOfukgJTqLXymjab1gRir07AkcYCWEygkMXRJhhjNQX9bkC2gzFIv6Y jhhQEIxaQGu1CRe5Gi3oFT4Kfvo7UdPRo9EQRXe53Aqdx7hSfxss4Y+TWenvV7Xbc4FF uRZJoCbdeLwBmtZKg38xVqqPjD5ABAzpBIKhf5RzWzXNHuUw1AU7lIEfkD8fC5z08XU8 v3La2B7NFNLvNYgzk8M75hODbFOIggb8nP4o9xi/1u/lcnGYSx/vClxXbFJ8Dh6DQqov dIQa4vX9tar1+CxwI218C1MmjOVv0CzUJqJTWYgVQY7zPxUj6e0vCFQZVWw9SbG4dfTl VPpw==
X-Gm-Message-State: ALoCoQmrqQqKPkchJCB5vQcoG4Lyb8Ywm6sexbY9Ne8MUNDAitklREyCPrp0GClCNDfsW78W930H
MIME-Version: 1.0
X-Received: by 10.60.76.35 with SMTP id h3mr2657858oew.46.1438880843993; Thu, 06 Aug 2015 10:07:23 -0700 (PDT)
Received: by 10.202.232.1 with HTTP; Thu, 6 Aug 2015 10:07:23 -0700 (PDT)
In-Reply-To: <814D0BFB77D95844A01CA29B44CBF8A7015D69D2@lhreml504-mbs>
References: <87bnf1hair.fsf@alice.fifthhorseman.net> <alpine.LFD.2.11.1507250832510.854@bofh.nohats.ca> <87bnem2xjq.fsf@alice.fifthhorseman.net> <alpine.LFD.2.11.1508050331340.1451@bofh.nohats.ca> <55C1F35A.5070904@cs.tcd.ie> <B7419740-25C9-4F8D-85AE-FC6E11BCC038@vpnc.org> <55C22D64.9080507@strotmann.de> <alpine.LFD.2.11.1508060417450.16408@bofh.nohats.ca> <20150806163914546863148@cnnic.cn> <alpine.LFD.2.11.1508060447180.16408@bofh.nohats.ca> <20150806154724.GG9139@mournblade.imrryr.org> <814D0BFB77D95844A01CA29B44CBF8A7015D69D2@lhreml504-mbs>
Date: Thu, 06 Aug 2015 13:07:23 -0400
Message-ID: <CAHw9_iKhDYJ=NL4xZw0MPk-j8JpkjcoK-0cn-mUhyX6h19ySdA@mail.gmail.com>
From: Warren Kumari <warren@kumari.net>
To: Hosnieh Rafiee <hosnieh.rafiee@huawei.com>
Content-Type: text/plain; charset="UTF-8"
Archived-At: <http://mailarchive.ietf.org/arch/msg/dane/HMd-p_A5sAXSRhVUAXzT9mmHgrs>
Cc: "dane@ietf.org" <dane@ietf.org>
Subject: Re: [dane] [openpgp] The DANE draft
X-BeenThere: dane@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: DNS-based Authentication of Named Entities <dane.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dane>, <mailto:dane-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dane/>
List-Post: <mailto:dane@ietf.org>
List-Help: <mailto:dane-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dane>, <mailto:dane-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 06 Aug 2015 17:07:26 -0000

... and we have just called consensus on this topic - see the email
with the subject "Consensus on the Hash vs Base32 discussion."

This has been a long and involved discussion, and we thank everyone
for hanging in there.

W


On Thu, Aug 6, 2015 at 12:01 PM, Hosnieh Rafiee
<hosnieh.rafiee@huawei.com> wrote:
> Viktor,
>
>> -----Original Message-----
>> From: dane [mailto:dane-bounces@ietf.org] On Behalf Of Viktor Dukhovni
>> Sent: Thursday, August 06, 2015 5:47 PM
>> To: dane@ietf.org
>> Subject: Re: [dane] [openpgp] The DANE draft
>>
>> On Thu, Aug 06, 2015 at 04:54:24AM -0400, Paul Wouters wrote:
>>
>> > I really do believe that the hashing is not an affective security
>> > meassure.
>>
>> Agreed.  Wishful thinking does not make it true.  Just because we'd
>> like to sprinkle crypto pixie dust to make magic happen, does not mean
>> it will happen.
>>
>> Hashes may sound more secure, but they're not really more secure, no
>> matter how much we'd like them to be.
>
> Of course, no one expects to see a miracle from a hash function. But again this is only making it a bit harder, even you say 1% but this is quite different than a plain text.
>
> Best,
> Hosnieh
>
> _______________________________________________
> dane mailing list
> dane@ietf.org
> https://www.ietf.org/mailman/listinfo/dane



-- 
I don't think the execution is relevant when it was obviously a bad
idea in the first place.
This is like putting rabid weasels in your pants, and later expressing
regret at having chosen those particular rabid weasels and that pair
of pants.
   ---maf

v2.23.0 | Report a Bug | By Email