IETF Logo Mail Archive

Re: [dsfjdssdfsd] Any plans for drafts or discussions on here?

"Dan Harkins" <dharkins@lounge.org> Wed, 22 January 2014 16:13 UTC

Return-Path: <dharkins@lounge.org>
X-Original-To: dsfjdssdfsd@ietfa.amsl.com
Delivered-To: dsfjdssdfsd@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6E4871A046C for <dsfjdssdfsd@ietfa.amsl.com>; Wed, 22 Jan 2014 08:13:16 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.467
X-Spam-Level:
X-Spam-Status: No, score=-2.467 tagged_above=-999 required=5 tests=[BAYES_05=-0.5, IP_NOT_FRIENDLY=0.334, RCVD_IN_DNSWL_MED=-2.3, SPF_HELO_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 97Q09aEltU-o for <dsfjdssdfsd@ietfa.amsl.com>; Wed, 22 Jan 2014 08:13:14 -0800 (PST)
Received: from colo.trepanning.net (colo.trepanning.net [69.55.226.174]) by ietfa.amsl.com (Postfix) with ESMTP id 9A5C31A0469 for <dsfjdssdfsd@ietf.org>; Wed, 22 Jan 2014 08:13:14 -0800 (PST)
Received: from www.trepanning.net (localhost [127.0.0.1]) by colo.trepanning.net (Postfix) with ESMTP id F30541022404A; Wed, 22 Jan 2014 08:13:13 -0800 (PST)
Received: from 205.201.168.123 (SquirrelMail authenticated user dharkins@lounge.org) by www.trepanning.net with HTTP; Wed, 22 Jan 2014 08:13:14 -0800 (PST)
Message-ID: <e309a1b8c4a77ce1da4adfab1fc1db37.squirrel@www.trepanning.net>
In-Reply-To: <30316745-8091-46AD-95A1-407757489FF9@vpnc.org>
References: <52DD996F.3040708@cs.tcd.ie> <CAF4+nEHEWaSr3HMuGtQ=vQzuuhkTo2uNpedUTNgmT5NsWRsTfA@mail.gmail.com> <30316745-8091-46AD-95A1-407757489FF9@vpnc.org>
Date: Wed, 22 Jan 2014 08:13:14 -0800
From: Dan Harkins <dharkins@lounge.org>
To: Paul Hoffman <paul.hoffman@vpnc.org>
User-Agent: SquirrelMail/1.4.14 [SVN]
MIME-Version: 1.0
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: 8bit
X-Priority: 3 (Normal)
Importance: Normal
Cc: Donald Eastlake <d3e3e3@gmail.com>, dsfjdssdfsd@ietf.org, Stephen Farrell <stephen.farrell@cs.tcd.ie>
Subject: Re: [dsfjdssdfsd] Any plans for drafts or discussions on here?
X-BeenThere: dsfjdssdfsd@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "The dsfjdssdfsd list provides a venue for discussion of randomness in IETF protocols, for example related to updating RFC 4086." <dsfjdssdfsd.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dsfjdssdfsd>, <mailto:dsfjdssdfsd-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/dsfjdssdfsd/>
List-Post: <mailto:dsfjdssdfsd@ietf.org>
List-Help: <mailto:dsfjdssdfsd-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dsfjdssdfsd>, <mailto:dsfjdssdfsd-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 22 Jan 2014 16:13:16 -0000

  Paul,

On Mon, January 20, 2014 5:28 pm, Paul Hoffman wrote:
> On Jan 20, 2014, at 5:53 PM, Donald Eastlake <d3e3e3@gmail.com> wrote:
>
>> I've been a bit snowed under just recently and this week but I have
>> accumulated some changes and suggestions on the randomness requirement
>> sod security draft and do plan to do a revision soon.
>
> It would be good to see those revisions. It still feels very wrong for us
> to be suggesting to application developers that they should be doing their
> own randomness; they should be asking their OS unless they are experts,
> and those experts don't need an RFC.

  "Ask your OS" is putting faith in the guy that wrote the relevant code
in your OS. It might be a reasonable leap but it's a leap nevertheless.
Recent events should tell us that we should not trust a single source for
these things (even if we are told that this single source is actually the
output of a bunch of uncorrelated sources of entropy being mixed up).

  I see value in draft-eastlake-randomness3 and I also see value in an
Informational RFC on a good DRBG for those who feel the need to have
a belt as well as suspenders.

  Dan.

v2.23.0 | Report a Bug | By Email