IETF Logo Mail Archive

Re: [Dcrup] FW: IETF WG state changed for draft-ietf-dcrup-dkim-usage

"John Levine" <johnl@taugh.com> Tue, 15 August 2017 02:37 UTC

Return-Path: <johnl@taugh.com>
X-Original-To: dcrup@ietfa.amsl.com
Delivered-To: dcrup@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A06421324AE for <dcrup@ietfa.amsl.com>; Mon, 14 Aug 2017 19:37:59 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id xTYZ8CF-Iopb for <dcrup@ietfa.amsl.com>; Mon, 14 Aug 2017 19:37:58 -0700 (PDT)
Received: from miucha.iecc.com (www.iecc.com [IPv6:2001:470:1f07:1126::4945:4343]) (using TLSv1 with cipher DHE-RSA-CAMELLIA256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id F1D001324A1 for <dcrup@ietf.org>; Mon, 14 Aug 2017 19:37:57 -0700 (PDT)
Received: (qmail 82855 invoked from network); 15 Aug 2017 02:37:56 -0000
Received: from unknown (64.57.183.18) by mail1.iecc.com with QMQP; 15 Aug 2017 02:37:56 -0000
Date: Tue, 15 Aug 2017 01:33:33 -0000
Message-ID: <20170815013333.1308.qmail@ary.lan>
From: John Levine <johnl@taugh.com>
To: dcrup@ietf.org
Cc: sklist@kitterman.com
In-Reply-To: <8695284.qrNCWkNy01@kitterma-e6430>
Organization:
X-Headerized: yes
Mime-Version: 1.0
Content-type: text/plain; charset="utf-8"
Content-transfer-encoding: 8bit
Archived-At: <https://mailarchive.ietf.org/arch/msg/dcrup/XunWBfkCkHEx5jJfRpNxQBJd3w4>
Subject: Re: [Dcrup] FW: IETF WG state changed for draft-ietf-dcrup-dkim-usage
X-BeenThere: dcrup@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: DKIM Crypto Update <dcrup.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dcrup>, <mailto:dcrup-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dcrup/>
List-Post: <mailto:dcrup@ietf.org>
List-Help: <mailto:dcrup-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dcrup>, <mailto:dcrup-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 15 Aug 2017 02:37:59 -0000

In article <8695284.qrNCWkNy01@kitterma-e6430> you write:
>> Another way to look at this: I think it's more appropriate to render
>> rsa-sha1 obsolete, but this approach seems as if we want to act like it
>> never existed.
>
>Fast forward a few years:  Is the fact that it ever existed relevant to 
>anything?  I think it's highly unlikely.  

The Internet being the Internet, sha-1 hashes will trickle in forever.
I'd rather have the diagnostic say "obsolete hash" than "syntax
error."

If you look at this curdle draft that deprecates RC4, it goes through
and makes changes to turn OPTIONAL to MUST NOT and the like, but it
doesn't try to undefine the obsolete rc4 crypto modes.  I think you'll
find that typical in crypto updates.


https://datatracker.ietf.org/doc/draft-ietf-curdle-rc4-die-die-die/

R's,
John

v2.23.0 | Report a Bug | By Email