Re: [Dcrup] Cal to adopt draft-kitterman-dcrup-dkim-usage
Russ Housley <housley@vigilsec.com> Mon, 22 May 2017 20:39 UTC
Return-Path: <housley@vigilsec.com>
X-Original-To: dcrup@ietfa.amsl.com
Delivered-To: dcrup@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 1481312702E for <dcrup@ietfa.amsl.com>; Mon, 22 May 2017 13:39:09 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.899
X-Spam-Level:
X-Spam-Status: No, score=-1.899 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 07QOEAfTDxwQ for <dcrup@ietfa.amsl.com>; Mon, 22 May 2017 13:39:07 -0700 (PDT)
Received: from mail.smeinc.net (mail.smeinc.net [209.135.209.11]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id AF965128792 for <dcrup@ietf.org>; Mon, 22 May 2017 13:39:07 -0700 (PDT)
Received: from localhost (localhost [127.0.0.1]) by mail.smeinc.net (Postfix) with ESMTP id DE94730053F for <dcrup@ietf.org>; Mon, 22 May 2017 16:39:06 -0400 (EDT)
X-Virus-Scanned: amavisd-new at mail.smeinc.net
Received: from mail.smeinc.net ([127.0.0.1]) by localhost (mail.smeinc.net [127.0.0.1]) (amavisd-new, port 10026) with ESMTP id 6-owdUxK9BP2 for <dcrup@ietf.org>; Mon, 22 May 2017 16:39:05 -0400 (EDT)
Received: from a860b60074bd.home (pool-108-45-101-150.washdc.fios.verizon.net [108.45.101.150]) by mail.smeinc.net (Postfix) with ESMTPSA id 9A20C3000FF; Mon, 22 May 2017 16:39:05 -0400 (EDT)
Content-Type: text/plain; charset="us-ascii"
Mime-Version: 1.0 (Mac OS X Mail 10.3 \(3273\))
From: Russ Housley <housley@vigilsec.com>
In-Reply-To: <25a5579ea1984fdda0e340b74737b723@usma1ex-dag1mb1.msg.corp.akamai.com>
Date: Mon, 22 May 2017 16:39:05 -0400
Cc: "dcrup@ietf.org" <dcrup@ietf.org>
Content-Transfer-Encoding: quoted-printable
Message-Id: <A34AED4A-73DE-4DB3-8032-FF2366528101@vigilsec.com>
References: <25a5579ea1984fdda0e340b74737b723@usma1ex-dag1mb1.msg.corp.akamai.com>
To: Rich Salz <rsalz@akamai.com>
X-Mailer: Apple Mail (2.3273)
Archived-At: <https://mailarchive.ietf.org/arch/msg/dcrup/fjyRvoHlWbP0kIBbRi18J6a0SE0>
Subject: Re: [Dcrup] Cal to adopt draft-kitterman-dcrup-dkim-usage
X-BeenThere: dcrup@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: DKIM Crypto Update <dcrup.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dcrup>, <mailto:dcrup-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dcrup/>
List-Post: <mailto:dcrup@ietf.org>
List-Help: <mailto:dcrup-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dcrup>, <mailto:dcrup-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 22 May 2017 20:39:09 -0000
This document call for RSA using PKCS#1 v1.5 with SHA-256 and allows keys as small as 1024 bits. Keys this short need to be changed often, and the security considerations need to be expanded to explain the situation. It should probably say that long-lived keys need to be at least 2048 bits, and the shorter keys need to be change <TBD> often. Russ > On May 19, 2017, at 10:47 PM, Salz, Rich <rsalz@akamai.com> wrote: > >> https://datatracker.ietf.org/doc/draft-kitterman-dcrup-dkim-usage/ > > We had some discussion, mostly me and Scott admittedly. > > What do folks thing of the WG adopting this? > > Please reply by next Friday.
- [Dcrup] Cal to adopt draft-kitterman-dcrup-dkim-u… Salz, Rich
- Re: [Dcrup] Cal to adopt draft-kitterman-dcrup-dk… John Levine
- Re: [Dcrup] Cal to adopt draft-kitterman-dcrup-dk… A. Schulze
- Re: [Dcrup] Cal to adopt draft-kitterman-dcrup-dk… Russ Housley
- Re: [Dcrup] Cal to adopt draft-kitterman-dcrup-dk… Peter Goldstein