IETF Logo Mail Archive

Re: [Emu] I-D Action: draft-ietf-emu-aka-pfs-05.txt

John Mattsson <john.mattsson@ericsson.com> Fri, 12 November 2021 10:17 UTC

Return-Path: <john.mattsson@ericsson.com>
X-Original-To: emu@ietfa.amsl.com
Delivered-To: emu@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D94533A0C63 for <emu@ietfa.amsl.com>; Fri, 12 Nov 2021 02:17:34 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.101
X-Spam-Level:
X-Spam-Status: No, score=-2.101 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ericsson.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id z3EmbcZveBdC for <emu@ietfa.amsl.com>; Fri, 12 Nov 2021 02:17:29 -0800 (PST)
Received: from EUR04-DB3-obe.outbound.protection.outlook.com (mail-eopbgr60079.outbound.protection.outlook.com [40.107.6.79]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id EB40A3A0C5B for <emu@ietf.org>; Fri, 12 Nov 2021 02:17:28 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=fJT6ivvjjmUW/xB9nHMFvPLySURVWTyywyDVpgHp5KeCVewdJPK0ir1VZ+hqBXmVx0GdDIL9afrLVDAnPtLIM+aof/zHS1hzYJJkmPlJrqWnSAiBtfP/3lA46VoHnOSBtGdyxrdZUIp2CBiluIjXANPEGgHk329zA5o7GYwmsobQplSyeRXFP9BsBfXMpmYii+UmIxETmi46mQ2raObgBi0IEE93wSMQnh0CaJAgEQRnHIRBRJz0whzoY19kaCB7wM/VtuxT1EVnhR9+MVFeYDyHkW8w9vRytOgwaxScs4OPVoNrpvKFAoTD2AqQ7UM+stf3mpiqnpicSdsiHKMBKA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=uawJjk59Bi2D0fWKi222ID/n4o+txqdxUdcRPYtWYvE=; b=fuJH83vS2444CUvdyZr/rkT8OCWyxrKMYMYrWgDyZfMHDyC0HAvmqPNYoIEPNZDX+bxHyAOsst3IBY8KsIlnhG3hwbmzNeyEO0eB+oX4VEWjE1zNu+wCt+Xq+K00QLfw145gjv8vU/OIgF7FWbsHHvzL5TAQVn4f8mjIhYD9bvUCYHNUco+Dhi6cfsgD5xmvvgsfRt8Gr94bKITnHcdGJDcmsvarz1ltLANTnBTCaZSQzt/8b6LLxQhKjtjaL1nX/3JLRaxRmMy0l5TENWC/HZrgS9sFuA1VgRETRsbcHZiLxDSJQ9fxlIdTHntm+vdh6aJrEefWhEE8pSmmV7s7Aw==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=ericsson.com; dmarc=pass action=none header.from=ericsson.com; dkim=pass header.d=ericsson.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ericsson.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=uawJjk59Bi2D0fWKi222ID/n4o+txqdxUdcRPYtWYvE=; b=iXQGSw78l3U7qea+EUhySseAF35d8lN0cazBFImJFEPBDrI/9+fnglJzYzs63vReIuR4wpufp72P5ruMTdhHtt9MTb9K4xHCAr8gCDwE2VkiP26M6uf/y3afinq4dH2pl/JdgvghQyy5HDfMSx+gFdqJcguzDI4EYYaKQL7PVdA=
Received: from HE1PR0701MB3050.eurprd07.prod.outlook.com (2603:10a6:3:4b::8) by HE1PR0701MB2203.eurprd07.prod.outlook.com (2603:10a6:3:26::8) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.4690.13; Fri, 12 Nov 2021 10:17:25 +0000
Received: from HE1PR0701MB3050.eurprd07.prod.outlook.com ([fe80::acd7:51e8:bdfe:c133]) by HE1PR0701MB3050.eurprd07.prod.outlook.com ([fe80::acd7:51e8:bdfe:c133%7]) with mapi id 15.20.4690.026; Fri, 12 Nov 2021 10:17:25 +0000
From: John Mattsson <john.mattsson@ericsson.com>
To: "emu@ietf.org" <emu@ietf.org>
Thread-Topic: [Emu] I-D Action: draft-ietf-emu-aka-pfs-05.txt
Thread-Index: AQHX16z5bAOYLi43DEKFSBRty1Yqcg==
Date: Fri, 12 Nov 2021 10:17:25 +0000
Message-ID: <HE1PR0701MB30501DFA56B520DC5A169D7A89959@HE1PR0701MB3050.eurprd07.prod.outlook.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=ericsson.com;
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: de851afd-51ea-41b2-551f-08d9a5c59fd1
x-ms-traffictypediagnostic: HE1PR0701MB2203:
x-microsoft-antispam-prvs: <HE1PR0701MB220397EEB7767EAC2D1F797989959@HE1PR0701MB2203.eurprd07.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:6790;
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:HE1PR0701MB3050.eurprd07.prod.outlook.com; PTR:; CAT:NONE; SFS:(4636009)(366004)(26005)(8676002)(82960400001)(2906002)(71200400001)(76116006)(91956017)(38070700005)(7696005)(66446008)(66556008)(66476007)(64756008)(66946007)(9686003)(966005)(33656002)(4744005)(83380400001)(6916009)(508600001)(86362001)(6506007)(316002)(52536014)(166002)(8936002)(38100700002)(5660300002)(55016002)(44832011)(122000001)(186003); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: =?us-ascii?Q?RP6kSgbahwfHqXUIlHIgG+E0N9hEg5Zl2ZxrRcm7VihF+/AkYS8zR0LHQDfU?= =?us-ascii?Q?ZOD1fOwWoMethSVY1c6N49znVPY8kjVf4xLU17hKrzM0zTTTkIH2aSFS//7C?= =?us-ascii?Q?pirGIORpGoQG7i2Sd59sPBu8bQdX52Lvgi4AZItAiN6MdgIyMdruyQx+WwsB?= =?us-ascii?Q?2Ty3rbOokdjCwGgbkYwU1TiSIkQhjyQ9K5pIPk7Ji8JUMOquVK2+V0r0r4+A?= =?us-ascii?Q?uWutTWPGeitruLgTV049QEkTV9klTbTvNTgU4Q9LDrIQWpgzJvUmM6VxUCTR?= =?us-ascii?Q?UHW6t4YZcCURCZHCYVOFItjYwAeq1zQdMnKWk7OdYJRedFpZFAuiBVeOJWq5?= =?us-ascii?Q?P/Ez16IzOj9bilImrsNNzwY616kzvgUeq4jMhk1O8X8hHTs+CE728YZDhFoz?= =?us-ascii?Q?ZEmGANM/mHP7BDFwERtunv0smBb69DFOib2fI3EfRwnZy4BzWCUcHPpmew05?= =?us-ascii?Q?Bn2IAjkhFzQAgscLgwK3xiEJ4JW7j/q+8zNsbOi0eEy9HPN9ZIsMNkNfooPy?= =?us-ascii?Q?hki3IK2z32krlxYkvWuaK+4G49UIw0VHwAonU2rggu3Ky2rC6uNjGm/ZZ6cZ?= =?us-ascii?Q?z1KBCfhdDn12jlYawp+gXtb7huBlOe1Sa7Muvjfv77FF0065Z7XFjgO8V67F?= =?us-ascii?Q?OqCYilSoGIqehSvPCI3VepyWrRGcveqjBj9ZTkb0cO4PBj9PP3ZdwdBZqcTy?= =?us-ascii?Q?i0EPLbi4J9sELoTDWUCQA2WDQjj95lQ2YrNYYT22hILb8k1EirRy7sxlOIGn?= =?us-ascii?Q?PAtCfCoQBJG22MjPrRNjmH5LdhnJkO/VRUkUbk3cAbcupu9bRcgbjVHAhkNi?= =?us-ascii?Q?mhQA/oRVyQWQPTVy7usF5DcSf5u/E7MSRVMbI7yMuEXwnNGtCEj7nLgvwfa4?= =?us-ascii?Q?1njGw/XjJS/kU1WcDoXhuScMu4PViPOdhlteEo5AHfRZcwK3nJPsiAk5EREI?= =?us-ascii?Q?SuVlfwtzbTavSLy4vu6n6/7uiMX9IfVHFv3ddhLNujWNYskbgwWpM85Fl7u/?= =?us-ascii?Q?m+dLkmf1JAv2pF5TVtt/E+LFiqjPjJ+bim7kRnfuJN0DRyyQM/vDCxD4PeVh?= =?us-ascii?Q?zBDNzq5bquio3fG00KvsK+aW8vbS5C0OZabr2puVatpN54uI9Qcfn1QZbca4?= =?us-ascii?Q?aLgU0Rly/MgFbXZYuLfrt3qFySNBHJC2ATUPejk+8MkNaOmgHgnC81GGWtts?= =?us-ascii?Q?nqtVDS/ONids70+AgmKWt3JDfJCAnCLzEQvY6C+0AF5os/FNW30grM4DZD0b?= =?us-ascii?Q?f/xhHpLTZBvH9acq9dMJgAasVvGKAkNHXrmJAtxgdBuuzLu6mnT8AD0H01u1?= =?us-ascii?Q?QkXZIX46fkCpclpaasW2mzqkdAQ6EBHMV1vLRO7v0DIH57MMYTDBBKaLd9yh?= =?us-ascii?Q?OJ/MR4kp10bw2vquFCrh/KRfgYmuBWvXEXSxoYC8BEKROcAKD8roYjE2E92j?= =?us-ascii?Q?SR2Yb+aKYknnzx0G7f9dtrnFoiCwuZ1BooI9sq2RlWBHkzrqr30A9oPhD1nV?= =?us-ascii?Q?l3ibtDChc1ZwbSKiM2zuYfBkp95Pt9wO1eX6l902dPet7edT7/CNRb/ZXsJA?= =?us-ascii?Q?nNcaFIgPsjhpPaa5UAmSvcCNiZLj60tp71wWZ/PiI8YX0EIiP/Sk2Kyz5l0p?= =?us-ascii?Q?/O0O7OBeT20EtDbCGnqOVLSApL0ObOBqW6CAMVCUin8bX16xIQ47QhRt6QxG?= =?us-ascii?Q?Ie62YQ5VRZCjQCOBALf4EB9+4o0=3D?=
Content-Type: multipart/alternative; boundary="_000_HE1PR0701MB30501DFA56B520DC5A169D7A89959HE1PR0701MB3050_"
MIME-Version: 1.0
X-OriginatorOrg: ericsson.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: HE1PR0701MB3050.eurprd07.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: de851afd-51ea-41b2-551f-08d9a5c59fd1
X-MS-Exchange-CrossTenant-originalarrivaltime: 12 Nov 2021 10:17:25.5953 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 92e84ceb-fbfd-47ab-be52-080c6b87953f
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: 2cHoWGVAXLC/un4rjPorIALB5/o/KUgIk+jVF/NpgBp0sO04mcT76NRTzkj+U+VwFD382n3MJwaBbckENJRGssf0V65B7tU2RjQ0vF6+0ro=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: HE1PR0701MB2203
Archived-At: <https://mailarchive.ietf.org/arch/msg/emu/JIJizJcIOGwPHaiqgo2WohXFlkY>
Subject: Re: [Emu] I-D Action: draft-ietf-emu-aka-pfs-05.txt
X-BeenThere: emu@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "EAP Methods Update \(EMU\)" <emu.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/emu>, <mailto:emu-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/emu/>
List-Post: <mailto:emu@ietf.org>
List-Help: <mailto:emu-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/emu>, <mailto:emu-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 12 Nov 2021 10:17:35 -0000

Hi,

Seems to be consensus in the security area to recommend not using the term Perfect Forward Secrecy (PFS).

https://mailarchive.ietf.org/arch/msg/saag/6ImeENhteXGdLsnaJHRoN6LW1zk/

Following this the draft should be updated to talk about "forward secrecy" and maybe have considerations regarding key exfitration.
Cheers,
John

v2.8.7 | Report a Bug | By Email