Re: [IPsec] Ben Campbell's Yes on draft-ietf-ipsecme-rfc7321bis-05: (with COMMENT)
"Frankel, Sheila E. (Fed)" <sheila.frankel@nist.gov> Thu, 16 March 2017 20:13 UTC
Return-Path: <sheila.frankel@nist.gov>
X-Original-To: ipsec@ietfa.amsl.com
Delivered-To: ipsec@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2A0BA129A44 for <ipsec@ietfa.amsl.com>; Thu, 16 Mar 2017 13:13:51 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.901
X-Spam-Level:
X-Spam-Status: No, score=-1.901 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=nistgov.onmicrosoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id dyZWsRE-aJkZ for <ipsec@ietfa.amsl.com>; Thu, 16 Mar 2017 13:13:48 -0700 (PDT)
Received: from gcc01-dm2-obe.outbound.protection.outlook.com (mail-dm2gcc01on0138.outbound.protection.outlook.com [23.103.201.138]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 36907120025 for <ipsec@ietf.org>; Thu, 16 Mar 2017 13:13:48 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=nistgov.onmicrosoft.com; s=selector1-nist-gov; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version; bh=Hie4iulLK12QxIGSMXEN0NiSnB4tZU33ph8ycA13nmg=; b=onpH3DJCFP7mIOHFJy6yYRxTUCPecjCiCtsX/IhBoRK7vjh5L8Qsde6d5C3DhiRjKNB350OALUvKMo53pS9AX7CZEran9+qzhuHb+FLUALo8Bp/HzxTExu/Ik4HVfHQWOOB3Lh7bBSytjWRLZMohW+L311/8HPTeyb2grfydoGw=
Received: from DM5PR09MB1339.namprd09.prod.outlook.com (10.172.37.139) by DM5PR09MB1434.namprd09.prod.outlook.com (10.173.171.12) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384_P384) id 15.1.961.17; Thu, 16 Mar 2017 20:13:47 +0000
Received: from DM5PR09MB1339.namprd09.prod.outlook.com ([10.172.37.139]) by DM5PR09MB1339.namprd09.prod.outlook.com ([10.172.37.139]) with mapi id 15.01.0977.010; Thu, 16 Mar 2017 20:13:46 +0000
From: "Frankel, Sheila E. (Fed)" <sheila.frankel@nist.gov>
To: "Waltermire, David A. (Fed)" <david.waltermire@nist.gov>, "ipsec@ietf.org" <ipsec@ietf.org>
Thread-Topic: [IPsec] Ben Campbell's Yes on draft-ietf-ipsecme-rfc7321bis-05: (with COMMENT)
Thread-Index: AQHSnfdtwGnzaqhrYUa0/UAwrK5Vm6GXs6oAgAAB9oCAADF1Eg==
Date: Thu, 16 Mar 2017 20:13:46 +0000
Message-ID: <DM5PR09MB1339A9DFAE3E6E09150BF627E7260@DM5PR09MB1339.namprd09.prod.outlook.com>
References: <148962889979.14189.965850110922865986.idtracker@ietfa.amsl.com> <alpine.LRH.2.20.999.1703161300150.32675@bofh.nohats.ca>, <MWHPR09MB144055428C1A1D147484C0BAF0260@MWHPR09MB1440.namprd09.prod.outlook.com>
In-Reply-To: <MWHPR09MB144055428C1A1D147484C0BAF0260@MWHPR09MB1440.namprd09.prod.outlook.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: nist.gov; dkim=none (message not signed) header.d=none;nist.gov; dmarc=none action=none header.from=nist.gov;
x-ms-exchange-messagesentrepresentingtype: 1
x-originating-ip: [132.163.219.22]
x-microsoft-exchange-diagnostics: 1; DM5PR09MB1434; 7:voqRm2xdVuJNmF1uVdrC2orxoy06IZr5DfRI0DXguZMwY5fsfViNYbaATz7aaH44kZK4QKu414j9ojwsmM0kP0R8ncrKUJYkEbX8B9KNiPWpzqd1wQIUp2fo+bw9xcRa3GE6extUQtht/4ZWgGaAWPYTIJ9P0c3ly7mEdJdZdvoAGRphtjqkdT/42v+jecx7CG9V4KR7bgUaMAKICPnnW5j4yNr+QzFAKi6Cldt6NEI16lU2K8Wo2VSZYRFP3xsoJwnn8E/+qLWcGUt1VVzaiBZqc/Vpayx/5E66PSGRnzaKyZr6oJ4OaX0AU6ZGfYWBsk3XRhI3ajFq5lgxLeMJDw==
x-forefront-antispam-report: SFV:SKI; SCL:-1SFV:NSPM; SFS:(10019020)(39450400003)(39860400002)(39840400002)(13464003)(54094003)(377454003)(24454002)(6246003)(230783001)(7736002)(86362001)(74316002)(122556002)(33656002)(76176999)(189998001)(7906003)(54356999)(50986999)(6436002)(606005)(6506006)(25786008)(102836003)(66066001)(6116002)(236005)(5660300001)(53936002)(7696004)(53546007)(6306002)(54896002)(9686003)(2501003)(3280700002)(99286003)(55016002)(2950100002)(229853002)(2906002)(8936002)(8676002)(77096006)(38730400002)(81166006)(3660700001)(2900100001); DIR:OUT; SFP:1102; SCL:1; SRVR:DM5PR09MB1434; H:DM5PR09MB1339.namprd09.prod.outlook.com; FPR:; SPF:None; MLV:sfv; LANG:en;
x-ms-office365-filtering-correlation-id: 55201a07-9c59-4950-ead4-08d46ca8f3a5
x-ms-office365-filtering-ht: Tenant
x-microsoft-antispam: UriScan:; BCL:0; PCL:0; RULEID:(22001)(2017030254037)(48565401081); SRVR:DM5PR09MB1434;
x-microsoft-antispam-prvs: <DM5PR09MB14348FBD50856610D8733A3DE7260@DM5PR09MB1434.namprd09.prod.outlook.com>
x-exchange-antispam-report-test: UriScan:(158342451672863)(65766998875637)(192374486261705);
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(6040375)(601004)(2401047)(5005006)(8121501046)(3002001)(10201501046)(6055026)(6041248)(20161123555025)(20161123562025)(20161123564025)(20161123560025)(20161123558025)(6072148); SRVR:DM5PR09MB1434; BCL:0; PCL:0; RULEID:; SRVR:DM5PR09MB1434;
x-forefront-prvs: 024847EE92
spamdiagnosticoutput: 1:99
spamdiagnosticmetadata: NSPM
Content-Type: multipart/alternative; boundary="_000_DM5PR09MB1339A9DFAE3E6E09150BF627E7260DM5PR09MB1339namp_"
MIME-Version: 1.0
X-OriginatorOrg: nist.gov
X-MS-Exchange-CrossTenant-originalarrivaltime: 16 Mar 2017 20:13:46.2393 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 2ab5d82f-d8fa-4797-a93e-054655c61dec
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DM5PR09MB1434
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipsec/pcgd-3ITWEtHvzvgSAhqV_pwcEo>
Subject: Re: [IPsec] Ben Campbell's Yes on draft-ietf-ipsecme-rfc7321bis-05: (with COMMENT)
X-BeenThere: ipsec@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: Discussion of IPsec protocols <ipsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipsec>, <mailto:ipsec-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipsec/>
List-Post: <mailto:ipsec@ietf.org>
List-Help: <mailto:ipsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipsec>, <mailto:ipsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 16 Mar 2017 20:13:51 -0000
Hi Dave, I don't have any strong feelings about MUST NOT vs. SHOULD NOT, but I wonder if it would help to clarify the reasoning behind it. For these algorithms, RFC6071 (IPsec/IKE Roadmap) says: - Reuse of the IV with the same key compromises the data's security; thus, AES-GCM should not be used with manual keying. - Reuse of the IV with the same key and nonce compromises the data's security; thus, AES-CTR should not be used with manual keying. - Reuse of the IV with the same key compromises the data's security; thus, AES-CCM should not be used with manual keying. - Reuse of the salt value with the same key compromises the data's security; thus, AES-GMAC should not be used with manual keying. Instead of just saying "these algorithms require IKE", could we give a slightly more detailed explanation? something like: "These algorithms require the use of an automated key negotiation protocol (e.g. IKE) to avoid reuse of important parameters, whose reuse compromises the algorithm's security." (Not the best wording, but you get the idea!) But if you don't add this, I wouldn't object to publication of the RFC. Sheila Frankel ________________________________ From: IPsec <ipsec-bounces@ietf.org> on behalf of Waltermire, David A. (Fed) <david.waltermire@nist.gov> Sent: Thursday, March 16, 2017 1:14:33 PM To: ipsec@ietf.org Cc: draft-ietf-ipsecme-rfc7321bis@ietf.org; Ben Campbell; ipsecme-chairs@ietf.org; paul@nohats.ca; The IESG Subject: Re: [IPsec] Ben Campbell's Yes on draft-ietf-ipsecme-rfc7321bis-05: (with COMMENT) Comments below. > -----Original Message----- > From: Paul Wouters [mailto:paul@nohats.ca] > Sent: Thursday, March 16, 2017 1:08 PM > To: Ben Campbell <ben@nostrum.com> > Cc: The IESG <iesg@ietf.org>; draft-ietf-ipsecme-rfc7321bis@ietf.org; > ipsec@ietf.org; ipsecme-chairs@ietf.org; Waltermire, David A. (Fed) > <david.waltermire@nist.gov> > Subject: Re: [IPsec] Ben Campbell's Yes on draft-ietf-ipsecme-rfc7321bis-05: > (with COMMENT) > > On Wed, 15 Mar 2017, Ben Campbell wrote: > > > -3: I wonder why "... is not to be used..." is not "... MUST NOT be > > used...". But the section goes on to say if you do it anyway, you MUST > > NOT use certain cryptosuites. So, does "... is not to be used..." mean > > "SHOULD NOT"? Or is this one of those "MUST NOT BUT WE KNOW YOU > WILL" > > sort of requirements? > > It is indeed. I think a SHOULD NOT would actually be appropriate ? Anyone in the WG have an opinion about making this change to SHOULD NOT? Please comment soon if you do. Thanks, Dave _______________________________________________ IPsec mailing list IPsec@ietf.org https://www.ietf.org/mailman/listinfo/ipsec
- [IPsec] Ben Campbell's Yes on draft-ietf-ipsecme-… Ben Campbell
- Re: [IPsec] Ben Campbell's Yes on draft-ietf-ipse… Paul Wouters
- Re: [IPsec] Ben Campbell's Yes on draft-ietf-ipse… Waltermire, David A. (Fed)
- Re: [IPsec] Ben Campbell's Yes on draft-ietf-ipse… Ben Campbell
- Re: [IPsec] Ben Campbell's Yes on draft-ietf-ipse… Frankel, Sheila E. (Fed)
- Re: [IPsec] Ben Campbell's Yes on draft-ietf-ipse… Paul.Koning
- Re: [IPsec] Ben Campbell's Yes on draft-ietf-ipse… Tero Kivinen
- Re: [IPsec] Ben Campbell's Yes on draft-ietf-ipse… Paul.Koning
- Re: [IPsec] Ben Campbell's Yes on draft-ietf-ipse… Hu, Jun (Nokia - US/Mountain View)
- Re: [IPsec] Ben Campbell's Yes on draft-ietf-ipse… Paul Wouters
- Re: [IPsec] Ben Campbell's Yes on draft-ietf-ipse… Eric Rescorla
- Re: [IPsec] Ben Campbell's Yes on draft-ietf-ipse… Paul Wouters
- Re: [IPsec] Ben Campbell's Yes on draft-ietf-ipse… Paul.Koning
- Re: [IPsec] Ben Campbell's Yes on draft-ietf-ipse… Russ Housley
- Re: [IPsec] Ben Campbell's Yes on draft-ietf-ipse… Eric Rescorla