IETF Logo Mail Archive

Re: [dnsext] WGLC TSIG MD5 Deprecated

Federico Lucifredi <flucifredi@acm.org> Fri, 05 June 2009 12:54 UTC

Return-Path: <owner-namedroppers@ops.ietf.org>
X-Original-To: ietfarch-dnsext-archive@core3.amsl.com
Delivered-To: ietfarch-dnsext-archive@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id E1FAC3A6BB7; Fri, 5 Jun 2009 05:54:24 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -100.495
X-Spam-Level:
X-Spam-Status: No, score=-100.495 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, FH_RELAY_NODNS=1.451, HELO_MISMATCH_COM=0.553, RDNS_NONE=0.1, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id qjr2nqSzDNAP; Fri, 5 Jun 2009 05:54:24 -0700 (PDT)
Received: from psg.com (psg.com [IPv6:2001:418:1::62]) by core3.amsl.com (Postfix) with ESMTP id B40F03A69D7; Fri, 5 Jun 2009 05:54:23 -0700 (PDT)
Received: from majordom by psg.com with local (Exim 4.69 (FreeBSD)) (envelope-from <owner-namedroppers@ops.ietf.org>) id 1MCYrs-000Ca0-8k for namedroppers-data0@psg.com; Fri, 05 Jun 2009 12:49:56 +0000
Received: from [66.92.146.20] (helo=stora.ogud.com) by psg.com with esmtps (TLSv1:AES256-SHA:256) (Exim 4.69 (FreeBSD)) (envelope-from <namedroppers@stora.ogud.com>) id 1MCYre-000CYY-OM for namedroppers@ops.ietf.org; Fri, 05 Jun 2009 12:49:50 +0000
Received: from stora.ogud.com (localhost [127.0.0.1]) by stora.ogud.com (8.14.3/8.14.3) with ESMTP id n55Cne0N002817 for <namedroppers@ops.ietf.org>; Fri, 5 Jun 2009 08:49:40 -0400 (EDT) (envelope-from namedroppers@stora.ogud.com)
Received: (from namedroppers@localhost) by stora.ogud.com (8.14.3/8.14.3/Submit) id n55CneO8002816 for namedroppers@ops.ietf.org; Fri, 5 Jun 2009 08:49:40 -0400 (EDT) (envelope-from namedroppers)
Received: from [69.17.117.4] (helo=mail2.sea5.speakeasy.net) by psg.com with esmtps (TLSv1:AES256-SHA:256) (Exim 4.69 (FreeBSD)) (envelope-from <flucifredi@acm.org>) id 1MCPIz-000Pc0-2e for namedroppers@ops.ietf.org; Fri, 05 Jun 2009 02:37:23 +0000
Received: (qmail 27562 invoked from network); 5 Jun 2009 02:37:15 -0000
Received: from dsl092-066-189.bos1.dsl.speakeasy.net (HELO spaceman.local) (federico@[66.92.66.189]) (envelope-sender <flucifredi@acm.org>) by mail2.sea5.speakeasy.net (qmail-ldap-1.03) with AES256-SHA encrypted SMTP for <ogud@ogud.com>; 5 Jun 2009 02:37:14 -0000
Message-ID: <4A2884D9.8020408@acm.org>
Date: Thu, 04 Jun 2009 22:37:13 -0400
From: Federico Lucifredi <flucifredi@acm.org>
User-Agent: Thunderbird 2.0.0.21 (Macintosh/20090302)
MIME-Version: 1.0
To: Olafur Gudmundsson <ogud@ogud.com>
CC: namedroppers@ops.ietf.org
Subject: Re: [dnsext] WGLC TSIG MD5 Deprecated
References: <200905081453.n48ErDH3055593@stora.ogud.com> <200905201528.n4KFSsI3055828@stora.ogud.com> <200906041444.n54EiF2e005370@stora.ogud.com>
In-Reply-To: <200906041444.n54EiF2e005370@stora.ogud.com>
X-Enigmail-Version: 0.95.7
OpenPGP: url=http://keyserver.linux.it/pks/lookup?op=get&search=0xAEEBEC184A73884C
Content-Type: text/plain; charset="ISO-8859-1"
Content-Transfer-Encoding: 8bit
X-Scanned-By: MIMEDefang 2.64 on 66.92.146.20
Sender: owner-namedroppers@ops.ietf.org
Precedence: bulk
List-ID: <namedroppers.ops.ietf.org>

[ Moderators note: Post was moderated, either because it was posted by
   a non-subscriber, or because it was over 20K.  
   With the massive amount of spam, it is easy to miss and therefore 
   delete relevant posts by non-subscribers. 
   Please fix your subscription addresses. ]

The document looks good overall, and I support it to go forward in the
adoption process.

The only relevant bit that stands out is the absence of "why" from the
doc. It may have some political reason, but it simply is bad practice in
my view. Point 1 states:

"   When the MD5 [RFC1321] security came to be considered lower than
   expected, [RFC4635] standardized new TSIG algorithms based on SHA
   [RFC3174][RFC3874][RFC4634] digests.

   But [RFC4635] did not deprecate the HMAC-MD5 algorithm."

So, there is implicitly a reason to now go back and degrade MD5's status
to optional. I know the papers, you know the papers. Something should be
said here to explain why we are doing this -- or, if there is no reason,
 we should not be doing it.

Just so that it is clear, I _do_ support the change. I think we should
explain why, however, with something along the thought line of "as
research is progressively weakening MD5's cryptographic strength, it is
now time to allocate mandatory status to algorithms not as of yet so
compromised".

I do not like (6), which goes in the opposite direction. We are doing
this because we believe there is a reason to, are we? :

"6. Security Considerations


   This document does not assume anything about the cryptographic
   security of different hash algorithms.  Its purpose is a better
   availability of some security mechanisms in a predictable time frame."


The second statement is good, the first not so much. Again, we are
trying to allocate mandatory status to algorithms that are not as far
down the process of being compromised... there may be  nicer way to put
it, but someone reading the doc should be able to understand why this is
done without outside knowledge of MD5's progressive weakening.


 This is my only correction, but I feel pretty strongly that the doc
should explain /why/ it is doing /what/ it is doing.

 Best -F


Olafur Gudmundsson wrote:
> 
> Please someone take few minutes to say you have read the document,
> and your impression of it document !!
> 
> I'm extending the LC until June 10'th,
> IF we do not have 5 reviews by then the document will be killed!!!!!
> 
>         Olafur
> 
> 
> At 12:31 20/05/2009, Ólafur Guðmundsson /DNSEXT wrote:
>> Reminder
>> we still need more reviews.
>>
>> In particular none of the people that supported adoption has
>> submitted one.
>>
>>         Olafur
>>
>> Ps: in case you forgot if you supported the document (and agreed to
>> review)
>> Roy Arends, Mark Andrews, Olaf Kolkman, Patrik Fältström, Joe Abley,
>> Brian Dickson, Edward Lewis, Mike StJohns
>>
>> At 18:19 08/05/2009, Ólafur Guðmundsson /DNSEXT wrote:
>>
>>> This note starts a Working Group Last Call for this Standards Track
>>> document
>>> ending on midnight May 24'th UTZ 2009.
>>>
>>> URL for the document and its history:
>>> http://tools.ietf.org/wg/dnsext/draft-ietf-dnsext-tsig-md5-deprecated/
>>>
>>> This document is on the Standards Track,  The document updates
>>> standards track
>>> documents and redefines an IANA registry.
>>>
>>> Please read the document carefully, and send your comments to the
>>> mailing list.
>>>
>>> The document process rules in this working group, require that at least
>>> 5 members of the working to state that they have reviewed the document
>>> and there is consensus of support to publish it as a Standards Track
>>> RFC.
>>>
>>>         Olafur (for the chairs)
>>>
>>>
>>>
>>> -- 
>>> to unsubscribe send a message to namedroppers-request@ops.ietf.org with
>>> the word 'unsubscribe' in a single line as the message text body.
>>> archive: <http://ops.ietf.org/lists/namedroppers/>
>>
>>
>> -- 
>> to unsubscribe send a message to namedroppers-request@ops.ietf.org with
>> the word 'unsubscribe' in a single line as the message text body.
>> archive: <http://ops.ietf.org/lists/namedroppers/>
> 
> 
> -- 
> to unsubscribe send a message to namedroppers-request@ops.ietf.org with
> the word 'unsubscribe' in a single line as the message text body.
> archive: <http://ops.ietf.org/lists/namedroppers/>


-- 
_________________________________________
-- "'Problem' is a bleak word for challenge" - Richard Fish
(Federico L. Lucifredi) - flucifredi@acm.org - GnuPG 0x4A73884C

--
to unsubscribe send a message to namedroppers-request@ops.ietf.org with
the word 'unsubscribe' in a single line as the message text body.
archive: <http://ops.ietf.org/lists/namedroppers/>

v2.23.0 | Report a Bug | By Email