IETF Logo Mail Archive

Re: [DNSOP] rfc4641bis: NSEC vs NSEC3.

Eric Rescorla <ekr@rtfm.com> Mon, 22 February 2010 17:44 UTC

Return-Path: <ekr@rtfm.com>
X-Original-To: dnsop@core3.amsl.com
Delivered-To: dnsop@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 8064828C221 for <dnsop@core3.amsl.com>; Mon, 22 Feb 2010 09:44:20 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.823
X-Spam-Level:
X-Spam-Status: No, score=-1.823 tagged_above=-999 required=5 tests=[AWL=0.154, BAYES_00=-2.599, FM_FORGED_GMAIL=0.622]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id i1Ke4TmzEehq for <dnsop@core3.amsl.com>; Mon, 22 Feb 2010 09:44:19 -0800 (PST)
Received: from mail-yx0-f174.google.com (mail-yx0-f174.google.com [209.85.210.174]) by core3.amsl.com (Postfix) with ESMTP id B1E2828C180 for <dnsop@ietf.org>; Mon, 22 Feb 2010 09:44:19 -0800 (PST)
Received: by yxe4 with SMTP id 4so4410329yxe.31 for <dnsop@ietf.org>; Mon, 22 Feb 2010 09:46:15 -0800 (PST)
MIME-Version: 1.0
Received: by 10.90.22.33 with SMTP id 33mr6064175agv.104.1266860775519; Mon, 22 Feb 2010 09:46:15 -0800 (PST)
In-Reply-To: <20100222172325.GC99592@isc.org>
References: <4B807DC0.9050807@ogud.com> <201002220022.o1M0M3qR048760@drugs.dv.isc.org> <A8EB3AAE-0DA6-4C4E-B2D1-E548884F63D5@dnss.ec> <4B8251E9.70904@nlnetlabs.nl> <699B9362-B927-4148-B79E-2AEB6D713BE8@dnss.ec> <4B82897F.7080000@nlnetlabs.nl> <9C97F5BFBD540A6242622CC7@Ximines.local> <20100222161251.GA99592@isc.org> <FD83B7A9-583C-4E6C-9301-414D043DBB08@dnss.ec> <20100222172325.GC99592@isc.org>
Date: Mon, 22 Feb 2010 09:46:15 -0800
Message-ID: <d3aa5d01002220946o18084007kc1bc893b8e7e2896@mail.gmail.com>
From: Eric Rescorla <ekr@rtfm.com>
To: Evan Hunt <each@isc.org>
Content-Type: text/plain; charset="ISO-8859-1"
Content-Transfer-Encoding: quoted-printable
Cc: dnsop@ietf.org, Roy Arends <roy@dnss.ec>, Alex Bligh <alex@alex.org.uk>
Subject: Re: [DNSOP] rfc4641bis: NSEC vs NSEC3.
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/dnsop>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 22 Feb 2010 17:44:20 -0000

On Mon, Feb 22, 2010 at 9:23 AM, Evan Hunt <each@isc.org> wrote:
>> This is absurd. If we're going to do this, I'd like the security
>> considerations to reflect all of the non-zero probabilities of errors
>> occuring (those that have a higher probability).
>
> I just answered this point in private mail to someone else, failing to
> realize until after I'd sent it that it was off-list, so I'll repeat
> myself...
>
> My point is not to say that hash collisions are a problem or that NSEC3 is
> a poor choice.  My point is that it's bad form to make mathematically false
> statements--even if they're *almost completely* true--and especially so
> when you get anywhere near cryptographers.
>
> "NSEC3 is exactly as good as NSEC" is a mathematical statement.  It's very,
> very close to true, but in math that still makes it false.  "NSEC3 is as
> good as NSEC except under conditions so fantastically improbable that it's
> safe to ignore them" is a few more words, but has the benefit of actually
> being *true*, and I think that's what the draft should say.

Well, I wouldn't want to say "NSEC3 is exactly as good as NSEC" in any
case, since
it's not true. It's more inconvenient to implement, and somewhat more secure.

So, I agree that we shouldn't say things that are factually false, but I'm not
overly concerned about this.

-Ekr

v2.23.0 | Report a Bug | By Email