Re: draft-harris-ssh-arcfour-fixes-02: informational or proposed?
"william(at)elan.net" <william@elan.net> Wed, 01 June 2005 22:49 UTC
Received: from localhost.localdomain ([127.0.0.1] helo=megatron.ietf.org) by megatron.ietf.org with esmtp (Exim 4.32) id 1Ddc1W-0003l2-EG; Wed, 01 Jun 2005 18:49:18 -0400
Received: from odin.ietf.org ([132.151.1.176] helo=ietf.org) by megatron.ietf.org with esmtp (Exim 4.32) id 1Ddc1U-0003kx-7H for ietf@megatron.ietf.org; Wed, 01 Jun 2005 18:49:16 -0400
Received: from ietf-mx.ietf.org (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id SAA17382 for <ietf@ietf.org>; Wed, 1 Jun 2005 18:49:13 -0400 (EDT)
Received: from sokol.elan.net ([216.151.192.200]) by ietf-mx.ietf.org with esmtp (Exim 4.33) id 1DdcLN-0003Rr-KC for ietf@ietf.org; Wed, 01 Jun 2005 19:09:51 -0400
Received: from sokol.elan.net (sokol [127.0.0.1]) by sokol.elan.net (8.13.1/8.13.1) with ESMTP id j51Mmjfp023493; Wed, 1 Jun 2005 15:48:46 -0700
Received: from localhost (william@localhost) by sokol.elan.net (8.13.1/8.13.1/Submit) with ESMTP id j51MmimY023490; Wed, 1 Jun 2005 15:48:45 -0700
X-Authentication-Warning: sokol.elan.net: william owned process doing -bs
Date: Wed, 01 Jun 2005 15:48:44 -0700
From: "william(at)elan.net" <william@elan.net>
To: "Steven M. Bellovin" <smb@cs.columbia.edu>
In-Reply-To: <20050601192238.B4BD53BFFFA@berkshire.machshav.com>
Message-ID: <Pine.LNX.4.62.0506011539190.21814@sokol.elan.net>
References: <20050601192238.B4BD53BFFFA@berkshire.machshav.com>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset="US-ASCII"; format="flowed"
X-Spam-Score: 0.0 (/)
X-Scan-Signature: a7d6aff76b15f3f56fcb94490e1052e4
Cc: Sam Hartman <hartmans-ietf@mmit.edu.cnri.reston.va.us>, ietf@ietf.org
Subject: Re: draft-harris-ssh-arcfour-fixes-02: informational or proposed?
X-BeenThere: ietf@ietf.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: IETF-Discussion <ietf.ietf.org>
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
List-Post: <mailto:ietf@ietf.org>
List-Help: <mailto:ietf-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
Sender: ietf-bounces@ietf.org
Errors-To: ietf-bounces@ietf.org
On Wed, 1 Jun 2005, Steven M. Bellovin wrote: > In message <tsloeaqgc2s.fsf@cz.mit.edu>, Sam Hartman writes: >> >> >> Hi, folks. The IESG has received a last call comment recommending >> that the new rc4 cipher for ssh be published as informational rather >> than as a proposed standard because of weaknesses in rc4. It would be >> inappropriate to make a decision based on one comment so I am >> soliciting comments on this point. >> >> The argument in favor of publishing this document at proposed is that >> the existing arcfour cipher is part of a standard and that many other >> IETF protocols use rc4 in standards track documents. SSH needs stronger stream cipher, but all implementations use RC4 and quick way out is to increase key size (to 128 or 256 bit as in the draft), I think its better then no increase in ssh security at all, so I don't see why you want to continue to have less secure protocol solution as proposed standard and block its update to something better. For the long term, IESG really needs to make it clear to SSH that they MUST develop/introduce completely different stream cipher, perhaps SEAL, maybe something else. It might even be good to mention in current draft that this is considered a temporary solution and that SSH will be moving to different cipher in the future to replace RC4. > Correct me if I'm wrong, but the serious problems with RC4 that I know > of are related-key attacks. Those don't occur in, say, secsh or TLS. > This draft improves the situation somewhat, and is thus good. Yes, but large stream of RC4 data makes statistical attack possible. And there are people who use SSH for more then just telnet session, biggest of SSH use by amount of data is probably X11 forwarding and tunnels and that is where RC4 is a weak link. At least the draft mentions it which is good! -- William Leibzon Elan Networks william@elan.net _______________________________________________ Ietf mailing list Ietf@ietf.org https://www1.ietf.org/mailman/listinfo/ietf
- draft-harris-ssh-arcfour-fixes-02: informational … Sam Hartman
- Re: draft-harris-ssh-arcfour-fixes-02: informatio… Keith Moore
- Re: draft-harris-ssh-arcfour-fixes-02: informatio… Simon Josefsson
- Re: draft-harris-ssh-arcfour-fixes-02: informatio… Sam Hartman
- Re: draft-harris-ssh-arcfour-fixes-02: informatio… Steven M. Bellovin
- Re: draft-harris-ssh-arcfour-fixes-02: informatio… Keith Moore
- Re: [saag] [Sam Hartman] draft-harris-ssh-arcfour… Jeffrey Altman
- Re: draft-harris-ssh-arcfour-fixes-02: informatio… Sam Hartman
- Re: draft-harris-ssh-arcfour-fixes-02: informatio… william(at)elan.net
- Re: draft-harris-ssh-arcfour-fixes-02: informatio… william(at)elan.net
- Re: [saag] [Sam Hartman] draft-harris-ssh-arcfour… Brian E Carpenter
- Re: draft-harris-ssh-arcfour-fixes-02: informatio… Bill Sommerfeld
- Re: draft-harris-ssh-arcfour-fixes-02: informatio… Ben Harris
- Re: draft-harris-ssh-arcfour-fixes-02: informatio… Ben Harris
- Re: draft-harris-ssh-arcfour-fixes-02: informatio… Ben Harris