Re: [IPsec] ChaCha20 & Poly1305, AEAD and other modes
Paul Wouters <paul@cypherpunks.ca> Mon, 10 March 2014 14:33 UTC
Return-Path: <paul@cypherpunks.ca>
X-Original-To: ipsec@ietfa.amsl.com
Delivered-To: ipsec@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 217281A048F for <ipsec@ietfa.amsl.com>; Mon, 10 Mar 2014 07:33:13 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.3
X-Spam-Level:
X-Spam-Status: No, score=-1.3 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, J_CHICKENPOX_45=0.6] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id WZatJqSmbFhX for <ipsec@ietfa.amsl.com>; Mon, 10 Mar 2014 07:33:12 -0700 (PDT)
Received: from bofh.nohats.ca (bofh.nohats.ca [76.10.157.69]) by ietfa.amsl.com (Postfix) with ESMTP id 014901A048C for <ipsec@ietf.org>; Mon, 10 Mar 2014 07:33:11 -0700 (PDT)
Received: from bofh.nohats.ca (bofh.nohats.ca [127.0.0.1]) by bofh.nohats.ca (Postfix) with ESMTP id 6BD79800AF; Mon, 10 Mar 2014 10:33:05 -0400 (EDT)
Received: from localhost (paul@localhost) by bofh.nohats.ca (8.14.7/8.14.7/Submit) with ESMTP id s2AEX4uI027271; Mon, 10 Mar 2014 10:33:04 -0400
X-Authentication-Warning: bofh.nohats.ca: paul owned process doing -bs
Date: Mon, 10 Mar 2014 10:33:04 -0400
From: Paul Wouters <paul@cypherpunks.ca>
X-X-Sender: paul@bofh.nohats.ca
To: Yoav Nir <ynir.ietf@gmail.com>
In-Reply-To: <CAGvU-a619O9AGJcwod3uYXKNnBRhcWdZdBnoqnmuDECPHnX-6A@mail.gmail.com>
Message-ID: <alpine.LFD.2.10.1403101030520.26293@bofh.nohats.ca>
References: <CAGvU-a619O9AGJcwod3uYXKNnBRhcWdZdBnoqnmuDECPHnX-6A@mail.gmail.com>
User-Agent: Alpine 2.10 (LFD 1266 2009-07-14)
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset="US-ASCII"; format="flowed"
Archived-At: http://mailarchive.ietf.org/arch/msg/ipsec/FO9x6jgQ2t5JaxRrUpzfePb55KM
Cc: ipsec <ipsec@ietf.org>
Subject: Re: [IPsec] ChaCha20 & Poly1305, AEAD and other modes
X-BeenThere: ipsec@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Discussion of IPsec protocols <ipsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipsec>, <mailto:ipsec-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ipsec/>
List-Post: <mailto:ipsec@ietf.org>
List-Help: <mailto:ipsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipsec>, <mailto:ipsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 10 Mar 2014 14:33:13 -0000
On Sun, 9 Mar 2014, Yoav Nir wrote: > Some people in the room said that we should only do the AEAD and skip the stand-alone algorithms. This would prevent SAs with combinations such > as ChaCha20 + HMAC-SHA1 or AES-128-CBC + Poly1305. > > I'm not saying whether we need or don't need these combinations. I don't see much use for them personally. My question to the list now is > whether everyone agrees that it's fine to drop them and leave only the combined mode algorithm in the draft. Yes. We have too many algorithms in IKE already. If we believe that combined mode algorithms are better than classic ENCR+INTEG algorithms, and I think we do, than we should not be adding more old style ENCR+INTEG algorithms. Paul
- [IPsec] ChaCha20 & Poly1305, AEAD and other modes Yoav Nir
- Re: [IPsec] ChaCha20 & Poly1305, AEAD and other m… Yaron Sheffer
- Re: [IPsec] ChaCha20 & Poly1305, AEAD and other m… Yoav Nir
- Re: [IPsec] ChaCha20 & Poly1305, AEAD and other m… Daniel Migault
- Re: [IPsec] ChaCha20 & Poly1305, AEAD and other m… Yoav Nir
- Re: [IPsec] ChaCha20 & Poly1305, AEAD and other m… Paul Wouters
- [IPsec] ChaCha20 & Poly1305, AEAD and other modes Tero Kivinen