Re: [Gen-art] [IPsec] Genart last call review of draft-ietf-ipsecme-qr-ikev2-09
Christer Holmberg <christer.holmberg@ericsson.com> Mon, 16 December 2019 12:59 UTC
Return-Path: <christer.holmberg@ericsson.com>
X-Original-To: gen-art@ietfa.amsl.com
Delivered-To: gen-art@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D9C4A120848; Mon, 16 Dec 2019 04:59:08 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.002
X-Spam-Level:
X-Spam-Status: No, score=-2.002 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ericsson.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 1cp3A4ymi63O; Mon, 16 Dec 2019 04:59:06 -0800 (PST)
Received: from EUR03-DB5-obe.outbound.protection.outlook.com (mail-eopbgr40055.outbound.protection.outlook.com [40.107.4.55]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 8A448120843; Mon, 16 Dec 2019 04:59:06 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=L2LVc1yhZ3Qd/6NHQN2diRyjDsea6pN/9nL+qzhIRBLMhEAnmjzPZ343hFZEC7f3BIGdDpT5iy+8xgbxzp/WNONhA8E3cY22gLWxOV4JJm0ZAYAtmRS2og3RYKQm8xBaUVA7hexZCZ7afIj5+/Nk/r5OBY+PLnBXvxnNSFIqG0d0ySgN9Ck73RNBqaXbdvgqEMiaEXPo80suS0KFfX7p0yUxXptd5YinJRhTx9V5fFQ79kZDSQbw7VrqXa0RjvlY1HMREYqExXuViOdH/cLUyBTi+R9V/7Cz9eS3vBMgspaNEMgkl3Lk1MphSkoobasjObt1JAnmzjDv/91EoiTakQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=F/9kpAkBU2g2PdvKaZ0LBxIiz5R0L9UyuRFBCEXfoNw=; b=FiAuDrRQoFW5kVxWtBXMtqr3a/uZi/KK9yVo8zqG+6K9+Nr8OUFzDaUzwz9PtEAbmD2lhsi3ISMKL2lSLlTXUow37OA/UtPY7bQ+6KVvtHn/qPlhZkqFx/CH+LzwXtkdTcnFd6DE0fl2ZvWwTiLiTrOo1Q5AqyhxlWyr/+OCBRX7TfXdeTR9V7h5vQSdYypS85zY2gwImhHSdIMuQ7S2AeSO+x7GUQ5T9IJuhvkFRiRJH2VslDo0LLrwRuNSW9WWEoy1PEQUzF6uFYgYxqBEicD8hCoU2SY6Mrogd1ccRQfUehe12VUNVqMQbD9IeyI2b0ayoLl3fEtRg4qPgEkaAw==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=ericsson.com; dmarc=pass action=none header.from=ericsson.com; dkim=pass header.d=ericsson.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ericsson.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=F/9kpAkBU2g2PdvKaZ0LBxIiz5R0L9UyuRFBCEXfoNw=; b=ptwQF5PrcHMT9vQlA7Xm00MgJ0dE4SaTi/4AM2ZEtAQrnZG30RArlbGnqGC2AL3pMvYpacHM+db0BFduLyJHHnIvbuW15wSqMD1LgcLnaJVq970WbSSjfzZK0eebIo09yHXpCJXgWz77UK+X8VIGXP6yarNpIwpdQKyuaERZLmU=
Received: from DB6PR0701MB2421.eurprd07.prod.outlook.com (10.168.73.16) by DB6PR0701MB2421.eurprd07.prod.outlook.com (10.168.73.16) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2559.10; Mon, 16 Dec 2019 12:59:04 +0000
Received: from DB6PR0701MB2421.eurprd07.prod.outlook.com ([fe80::39bd:a590:dcd9:201e]) by DB6PR0701MB2421.eurprd07.prod.outlook.com ([fe80::39bd:a590:dcd9:201e%10]) with mapi id 15.20.2559.012; Mon, 16 Dec 2019 12:59:04 +0000
From: Christer Holmberg <christer.holmberg@ericsson.com>
To: Valery Smyslov <smyslov.ietf@gmail.com>, "gen-art@ietf.org" <gen-art@ietf.org>
CC: "ipsec@ietf.org" <ipsec@ietf.org>, "last-call@ietf.org" <last-call@ietf.org>, "draft-ietf-ipsecme-qr-ikev2.all@ietf.org" <draft-ietf-ipsecme-qr-ikev2.all@ietf.org>
Thread-Topic: [IPsec] Genart last call review of draft-ietf-ipsecme-qr-ikev2-09
Thread-Index: AQHVtA2+lB/py2UdqE+D6BUDVm/mVae82pkA
Date: Mon, 16 Dec 2019 12:59:04 +0000
Message-ID: <982B1149-64ED-4BA6-B2AC-3D1860CA924C@ericsson.com>
References: <157626827886.12929.4367951047776204825@ietfa.amsl.com> <003701d5b40d$b9eeff00$2dccfd00$@gmail.com>
In-Reply-To: <003701d5b40d$b9eeff00$2dccfd00$@gmail.com>
Accept-Language: en-US
Content-Language: en-GB
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/10.1e.0.191013
authentication-results: spf=none (sender IP is ) smtp.mailfrom=christer.holmberg@ericsson.com;
x-originating-ip: [2001:14b8:1829:11:d94d:35dd:76:bc06]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 983343a3-40ca-4434-34a5-08d78227ba95
x-ms-traffictypediagnostic: DB6PR0701MB2421:
x-microsoft-antispam-prvs: <DB6PR0701MB24219BC25E537E340DCC4D3E93510@DB6PR0701MB2421.eurprd07.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:8882;
x-forefront-prvs: 02530BD3AA
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(4636009)(136003)(39860400002)(396003)(376002)(366004)(346002)(199004)(189003)(6506007)(66446008)(64756008)(66556008)(66476007)(66946007)(91956017)(76116006)(2616005)(44832011)(36756003)(8676002)(71200400001)(186003)(316002)(4326008)(6512007)(8936002)(2906002)(478600001)(81166006)(54906003)(86362001)(81156014)(33656002)(5660300002)(110136005)(6486002); DIR:OUT; SFP:1101; SCL:1; SRVR:DB6PR0701MB2421; H:DB6PR0701MB2421.eurprd07.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; A:1; MX:1;
received-spf: None (protection.outlook.com: ericsson.com does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: vLImapFTEJ8WMYmVVb6ObJuCBe067aTBccJPOXretGCm3Gr6L72n6szzNyG4PxVeZweO65y/5i6yjfh5YlRdzFMg3OkNSXEuDiDiB0ZVP27bQT7ciQW1dTzrybCQyFc7kyj+4vi1wL7eFHGDZF5AH7yrvxgPpJ8S/+Em7Kr8uwcLfFMbtA7V6pJr8vR/MyyA7m0aG8e1VPL34NbpLX+Eud5DwfahlEfmFdg3fQGA76grlGifIje7JQoaKT5qhsWcd8yt2yIhZy9tXMARqT7vTL9jXo4V95mTHunO4JSfnj8U2lF5sd/hw1Q9A+6ciG2tj62PI6wouVpAsF8rFiM+mdaOGYUV+3CALCM4cggVT7P0vF7XP4NEc4Jx/9j4lEPaqZcrnz8Sg6IEap4gtHjMfYhv6ySZI3LKNfET8T3vLc3Nq6d8ERPMyHfux2zh87j5
x-ms-exchange-transport-forked: True
Content-Type: text/plain; charset="utf-8"
Content-ID: <7724E4AC789D6847B7FF1C2B6AD84E75@eurprd07.prod.outlook.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: ericsson.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 983343a3-40ca-4434-34a5-08d78227ba95
X-MS-Exchange-CrossTenant-originalarrivaltime: 16 Dec 2019 12:59:04.1440 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 92e84ceb-fbfd-47ab-be52-080c6b87953f
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: ZoDvmfcIutp3WOMlJ3noBHU6AHVsNQ9dtC4FQXOkdyTYlnEbTxlPOkiT3wHy3n2Ci8NtoxfuOmqTJY89/y+h2bpCgOzFBckUE7BFN1LwtBU=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DB6PR0701MB2421
Archived-At: <https://mailarchive.ietf.org/arch/msg/gen-art/CPdSzmwPrVHqd8TOGXEkTEzfiM4>
Subject: Re: [Gen-art] [IPsec] Genart last call review of draft-ietf-ipsecme-qr-ikev2-09
X-BeenThere: gen-art@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "GEN-ART: General Area Review Team" <gen-art.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/gen-art>, <mailto:gen-art-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/gen-art/>
List-Post: <mailto:gen-art@ietf.org>
List-Help: <mailto:gen-art-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/gen-art>, <mailto:gen-art-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 16 Dec 2019 12:59:09 -0000
Hi Valery,
>> Q1:
>>
>> The Security Considerations lists IKEv2/IPSec algorithms that are not
>> considered quantum-resistant. However, that is not mentioned anywhere else. I
>> think it would be good to mention that in the Abstract and/or Introduction.
>
> Introduction already contains the following text:
>
> If the preshared key has
> sufficient entropy and the PRF, encryption and authentication
> transforms are quantum-secure, then the resulting system is believed
> to be quantum resistant, that is, invulnerable to an attacker with a
> quantum computer.
>
> We think that it is out of scope of this document to classify existing
> algorithms on the ground of whether they are quantum secure or not,
> the Security Considerations section lists only most obvious cases.
I was thinking of just adding (to the text you referenced above) something like:
"The Security Considerations gives some examples of algorithms that are not considered quantum-resistant."
But, if you don't think it is needed, I am fine with that. It was only a minor issue, so :)
Regards,
Christer
- [Gen-art] Genart last call review of draft-ietf-i… Christer Holmberg via Datatracker
- Re: [Gen-art] [IPsec] Genart last call review of … Valery Smyslov
- Re: [Gen-art] [IPsec] Genart last call review of … Christer Holmberg
- Re: [Gen-art] Genart last call review of draft-ie… Alissa Cooper