Re: [Dcrup] I-D Action: draft-ietf-dcrup-dkim-crypto-03.txt
Eric Rescorla <ekr@rtfm.com> Sun, 02 July 2017 02:41 UTC
Return-Path: <ekr@rtfm.com>
X-Original-To: dcrup@ietfa.amsl.com
Delivered-To: dcrup@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id ABAA4128B8F for <dcrup@ietfa.amsl.com>; Sat, 1 Jul 2017 19:41:53 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.599
X-Spam-Level:
X-Spam-Status: No, score=-2.599 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=rtfm-com.20150623.gappssmtp.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 7MLQla8-E-Nh for <dcrup@ietfa.amsl.com>; Sat, 1 Jul 2017 19:41:51 -0700 (PDT)
Received: from mail-yw0-x22c.google.com (mail-yw0-x22c.google.com [IPv6:2607:f8b0:4002:c05::22c]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id BA5FE12702E for <dcrup@ietf.org>; Sat, 1 Jul 2017 19:41:51 -0700 (PDT)
Received: by mail-yw0-x22c.google.com with SMTP id 63so61121313ywr.0 for <dcrup@ietf.org>; Sat, 01 Jul 2017 19:41:51 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=rtfm-com.20150623.gappssmtp.com; s=20150623; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=l5zcgY4P8doFD1SIpRjTTR7JZQ71g+aktRW+BydDfhc=; b=rCOx1hUXy8quOVxTSygxqUv5NOTJX3M8tPTXcYtR67MoJoy2UI7s35UNwIrpnevyux sMA0D1ywcKw0puV5KKserPwJ3m+ARlzbGQjCW4x0a3ifarxxn8wtVjL81ufuQlWdk8SI fc9Mpyhhpkt0CjvM/VK4kcZGiyoNBF7n/MMnMAW5ApKzmEhh/zLDxgB9glvuqWpQuBMD N0Jm/ujAAKPRGngO7BQtOu2o9kKDWwQJSfZy2oPdaxqx63VZdAfrTgBqLFxIitENRCEe IxoUIJCkh29qcxP4Y1aHVccVhtWsDk5/zX2OuFI9k8plYO8Xb8ihDBdZRTDokBwq8KeM Q4sg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc; bh=l5zcgY4P8doFD1SIpRjTTR7JZQ71g+aktRW+BydDfhc=; b=MJYPvWnmW2lNFgaUOd1EzOdMSTmoP6cNGoUT9lW8oBv2ohDGm/SeuKGHA8RliVNYln /YTfIbYqUTq0CzoseSKVBr+cKKV2a2Yt3bkVZN/0CTTn/4jaIa0tPlY1tIWznLrkl+pK Gai1cNtgFqP4liwmad3bJv9f9k+VuYFmeZPUZl3BAAyVfq56DwoXaKuGvLvnq0xKXmUv yR4GaXDuQwBjmQu2WnPSwoH7+zkHsMlZOAw5vKT+xMyp2npVGItq8BnIR4sTTopW/gGk 8D1HIUs+PspMYVKJEgsj9xk8QU32Erv+ezh3dZeErO0g5vEayAdVdgBaZIrRGlVsdt4O vzPw==
X-Gm-Message-State: AKS2vOzXUFa5boR527zenVsiYokQ9URmtJLhLmcZZghAVaA3zTdPTYon eHADxjB4mVWK8opSJQJ5BYsjKV3BQaHyQZA=
X-Received: by 10.129.146.15 with SMTP id j15mr21443384ywg.283.1498963311067; Sat, 01 Jul 2017 19:41:51 -0700 (PDT)
MIME-Version: 1.0
Received: by 10.13.215.9 with HTTP; Sat, 1 Jul 2017 19:41:10 -0700 (PDT)
In-Reply-To: <alpine.OSX.2.21.1707012118540.69811@ary.qy>
References: <149895822385.17234.3769626520997443267@ietfa.amsl.com> <alpine.OSX.2.21.1707012118540.69811@ary.qy>
From: Eric Rescorla <ekr@rtfm.com>
Date: Sat, 01 Jul 2017 19:41:10 -0700
Message-ID: <CABcZeBOs1yZ7q3oBgNeVkw=zSQb_SuS4hqK8BH0ebrD5LRYTFg@mail.gmail.com>
To: John R Levine <johnl@taugh.com>
Cc: dcrup@ietf.org
Content-Type: multipart/alternative; boundary="94eb2c094216b0206c05534c97eb"
Archived-At: <https://mailarchive.ietf.org/arch/msg/dcrup/5ef7PqLczkc0SpSLpsO7QyR86qY>
Subject: Re: [Dcrup] I-D Action: draft-ietf-dcrup-dkim-crypto-03.txt
X-BeenThere: dcrup@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: DKIM Crypto Update <dcrup.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dcrup>, <mailto:dcrup-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dcrup/>
List-Post: <mailto:dcrup@ietf.org>
List-Help: <mailto:dcrup-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dcrup>, <mailto:dcrup-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 02 Jul 2017 02:41:54 -0000
On Sat, Jul 1, 2017 at 7:17 PM, John R Levine <johnl@taugh.com> wrote: > This version addresses Jim's comments, reorganizes the draft somewhat to > put all the syntax changes in one place, and makes one significant change. > > SIGNIFICANT CHANGE: Only RSA signatures can use key fingerprints. Since > an eddsa key is 256 bits, and a SHA-256 fingerprint is also 256 bits, > there's no point to eddsa fingerprints, so I took them out. > > If there is an actual problem that eddsa fingerprints would solve > ("symmetry" isn't a problem), let me know. Well, actually the value at hand here is consistency, not "symmetry". In any case, it's not true that eddsa keys are 256 bits. Eddsa keys are 256 bits when you are using X25519 but not when you are using X448. To the extent to which you believe that it's redundant to have both non-FP and FP variants, the answer is to *always* use a fingerprint. -Ekr Otherwise I'll leave them out since we now have less code to write and > verify. > > R's, > John > > > _______________________________________________ > Dcrup mailing list > Dcrup@ietf.org > https://www.ietf.org/mailman/listinfo/dcrup >
- [Dcrup] I-D Action: draft-ietf-dcrup-dkim-crypto-… internet-drafts
- Re: [Dcrup] I-D Action: draft-ietf-dcrup-dkim-cry… John R Levine
- Re: [Dcrup] I-D Action: draft-ietf-dcrup-dkim-cry… Eric Rescorla
- Re: [Dcrup] I-D Action: draft-ietf-dcrup-dkim-cry… John Levine
- Re: [Dcrup] I-D Action: draft-ietf-dcrup-dkim-cry… Eric Rescorla
- Re: [Dcrup] I-D Action: draft-ietf-dcrup-dkim-cry… John R Levine
- Re: [Dcrup] I-D Action: draft-ietf-dcrup-dkim-cry… Salz, Rich
- Re: [Dcrup] I-D Action: draft-ietf-dcrup-dkim-cry… John R Levine
- Re: [Dcrup] I-D Action: draft-ietf-dcrup-dkim-cry… Salz, Rich
- Re: [Dcrup] I-D Action: draft-ietf-dcrup-dkim-cry… Eric Rescorla
- Re: [Dcrup] I-D Action: draft-ietf-dcrup-dkim-cry… Eric Rescorla
- Re: [Dcrup] I-D Action: draft-ietf-dcrup-dkim-cry… John R Levine
- Re: [Dcrup] I-D Action: draft-ietf-dcrup-dkim-cry… Scott Kitterman
- Re: [Dcrup] I-D Action: draft-ietf-dcrup-dkim-cry… Salz, Rich
- Re: [Dcrup] I-D Action: draft-ietf-dcrup-dkim-cry… Salz, Rich
- Re: [Dcrup] I-D Action: draft-ietf-dcrup-dkim-cry… Eric Rescorla
- Re: [Dcrup] I-D Action: draft-ietf-dcrup-dkim-cry… Eric Rescorla
- Re: [Dcrup] I-D Action: draft-ietf-dcrup-dkim-cry… Eric Rescorla
- Re: [Dcrup] I-D Action: draft-ietf-dcrup-dkim-cry… John R Levine
- Re: [Dcrup] I-D Action: draft-ietf-dcrup-dkim-cry… Phillip Hallam-Baker
- Re: [Dcrup] I-D Action: draft-ietf-dcrup-dkim-cry… Eric Rescorla
- Re: [Dcrup] I-D Action: draft-ietf-dcrup-dkim-cry… John R Levine
- Re: [Dcrup] I-D Action: draft-ietf-dcrup-dkim-cry… Eric Rescorla
- Re: [Dcrup] I-D Action: draft-ietf-dcrup-dkim-cry… John R Levine
- Re: [Dcrup] I-D Action: draft-ietf-dcrup-dkim-cry… Eric Rescorla
- Re: [Dcrup] I-D Action: draft-ietf-dcrup-dkim-cry… denis bider
- Re: [Dcrup] I-D Action: draft-ietf-dcrup-dkim-cry… Jim Fenton
- Re: [Dcrup] I-D Action: draft-ietf-dcrup-dkim-cry… John R Levine
- Re: [Dcrup] I-D Action: draft-ietf-dcrup-dkim-cry… Peter Goldstein