IETF Logo Mail Archive

Re: [Dcrup] I-D Action: draft-ietf-dcrup-dkim-usage-00.txt

Jim Fenton <fenton@bluepopcorn.net> Mon, 05 June 2017 20:23 UTC

Return-Path: <fenton@bluepopcorn.net>
X-Original-To: dcrup@ietfa.amsl.com
Delivered-To: dcrup@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id CBB06129C6B for <dcrup@ietfa.amsl.com>; Mon, 5 Jun 2017 13:23:50 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2
X-Spam-Level:
X-Spam-Status: No, score=-2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RP_MATCHES_RCVD=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=bluepopcorn.net
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id rDmKgWJ8zmTi for <dcrup@ietfa.amsl.com>; Mon, 5 Jun 2017 13:23:49 -0700 (PDT)
Received: from v2.bluepopcorn.net (v2.bluepopcorn.net [IPv6:2607:f2f8:a994::2]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 70843128BB6 for <dcrup@ietf.org>; Mon, 5 Jun 2017 13:23:49 -0700 (PDT)
Received: from splunge.local ([IPv6:2601:647:5500:1330:3898:64a5:7bf:a335]) (authenticated bits=0) by v2.bluepopcorn.net (8.14.4/8.14.4/Debian-8+deb8u1) with ESMTP id v55KNlvA022171 (version=TLSv1/SSLv3 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128 verify=NO) for <dcrup@ietf.org>; Mon, 5 Jun 2017 13:23:49 -0700
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=bluepopcorn.net; s=supersize; t=1496694229; bh=Lz2yQ1zjEmcF4IaJ2dMfGPtOxq+r+jQ+RPMbG1/NngM=; h=Subject:To:References:From:Date:In-Reply-To; b=mBU6rPmVH9LwTE2VaZNXZR7iHd+KDqWOAvQyf23CZAuPtarjIiQ/TH3c8909oKrFa XbSXj0cWOeX/PZ7mU5a4GeUUVveRC6847Nsqrgu6Iy+grlj6U2VN831jSbalQRMCwG iIaFF5uEGkVZ6cMWL0bqjgkyG7IcYUCuvkw1tLGk=
To: dcrup@ietf.org
References: <149619233095.19793.14947085917778354002@ietfa.amsl.com> <A5830D7B-CC95-4296-99B6-B4A1BE5CF617@nist.gov> <1830430.b8hTZcbnc5@kitterma-e6430> <CAL0qLwYOr0iMh2HkyBBUbwBE+4Mz=ZDxyPiHBtzKcFBbNwwSSg@mail.gmail.com>
From: Jim Fenton <fenton@bluepopcorn.net>
Message-ID: <5b4fafd6-11f7-5c9e-6c28-bcbfb38b108f@bluepopcorn.net>
Date: Mon, 05 Jun 2017 13:23:41 -0700
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.12; rv:52.0) Gecko/20100101 Thunderbird/52.1.1
MIME-Version: 1.0
In-Reply-To: <CAL0qLwYOr0iMh2HkyBBUbwBE+4Mz=ZDxyPiHBtzKcFBbNwwSSg@mail.gmail.com>
Content-Type: multipart/alternative; boundary="------------8B18006C9753EC90D438D5C1"
Content-Language: en-US
Archived-At: <https://mailarchive.ietf.org/arch/msg/dcrup/MhjddRTiZBAxgSd1w53fIEaCk_4>
Subject: Re: [Dcrup] I-D Action: draft-ietf-dcrup-dkim-usage-00.txt
X-BeenThere: dcrup@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: DKIM Crypto Update <dcrup.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dcrup>, <mailto:dcrup-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dcrup/>
List-Post: <mailto:dcrup@ietf.org>
List-Help: <mailto:dcrup-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dcrup>, <mailto:dcrup-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 05 Jun 2017 20:23:51 -0000

On 6/5/17 1:18 PM, Murray S. Kucherawy wrote:
> On Mon, Jun 5, 2017 at 9:53 AM, Scott Kitterman <sklist@kitterman.com
> <mailto:sklist@kitterman.com>> wrote:
>
>     I hear you.  I expect this to be the most contentious part of the
>     draft.
>
>     Here's my counter argument:
>
>     The first DKIM RFC (RFC 4871), published in 2007 said:
>
>     > Signers MUST implement and SHOULD sign using rsa-sha256
>
>     I believe that the only reason rsa-sha1 was included at all was to
>     make
>     transition from domainkeys easier (see RFC 4870).  That's also (as I
>     understand it where the 512 bit minimum key size came from).
>
>
> As I recall, there were also implementations of DKIM made during its
> development (even before its IETF time) that supported both, and
> defaulted to rsa-sha1 because support for SHA256 in OpenSSL was new
> and not universally deployed.  Some of them were still running in the
> wild, and SHA1 wasn't fully deprecated, so the choice was made to be
> inclusive while encouraging use of the newer stuff as much as possible.

That matches my recollection. There was an effort to maintain DomainKeys
compatibility for selector (DNS TXT) records but the choice of hash
doesn't affect them. The signatures were different anyway.
>  
>
>     As a working group document editor, I'll change it however the
>     group wants (of
>     course), but I think we should either kill rsa-sha1 entirely in
>     this document
>     or leave it out entirely and let one of the follow-on documents
>     add a new
>     algorithm and remove rsa-sha1.  Preferably a clean kill or,
>     failing that, not
>     at all is what I think we should do.
>
>
> I would omit it from the updated version entirely, and mark it
> "obsolete" in the registry.

Concur.

-Jim

v2.46.0 | Report a Bug | By Email | System Status