Re: [keyassure] Opening issue #21: "Need to specify which crypto

Yoav Nir <ynir@checkpoint.com> Mon, 07 March 2011 14:51 UTC

From: Yoav Nir <ynir@checkpoint.com>
To: "mrex@sap.com" <mrex@sap.com>
Date: Mon, 07 Mar 2011 16:52:54 +0200
Thread-Topic: [keyassure] Opening issue #21: "Need to specify which crypto
Thread-Index: Acvc11TVaECLx+c7RnSXV6DVHmORBw==
Message-ID: <208C68A5-568B-4447-854C-70A4A229B84C@checkpoint.com>
References: <201103071425.p27EPvrB000688@fs4113.wdf.sap.corp>
In-Reply-To: <201103071425.p27EPvrB000688@fs4113.wdf.sap.corp>
Accept-Language: en-US
Content-Language: en-US
acceptlanguage: en-US
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
Cc: "keyassure@ietf.org" <keyassure@ietf.org>, Phillip Hallam-Baker <hallam@gmail.com>, "paul.hoffman@vpnc.org" <paul.hoffman@vpnc.org>
Subject: Re: [keyassure] Opening issue #21: "Need to specify which crypto
Precedence: list

On Mar 7, 2011, at 4:25 PM, Martin Rex wrote:

>> So SHA2-384 is to be preferred over SHA2-512 because even though it is
>> easier to break, it has a much higher safety factor.
>> 
>> If someone comes up with an attack against SHA2-512 with O(2^480/2)
>> complexity it would reduce the cost of attacking SHA2-512 but not the cost
>> of attacking SHA2-384. So the 512 bit version would be 'compromised' but the
>> 384 version would not.
> 
> That is marketing nonsense.
> 
> With that reasoning, we should use SHA-512/256 rather than SHA-256
> 
>  http://www.schneier.com/blog/archives/2011/02/nist_defines_ne.html
>  http://csrc.nist.gov/publications/PubsDrafts.html#fips-180-4

The point of SHA-512/256 is not marketing or even security, but speed.
http://eprint.iacr.org/2010/548.pdf

> I don't see any value in mandating any algorithm beyond SHA-256
> at this point -- anticipating that there is going to be SHA-3
> in the not so far future and a desire to support SHA-3 in DANE.

I disagree. SHA-512 (and -384) are touted for longevity - we hope that they will be resistant to pre-image and collision attacks for longer than SHA-256. This is important for document signing and somewhat for certificates, but not so much for resource records. If it takes a year from "sha-256 broken" to "exploit in the wild", that's plenty of time to replace all resource records.

So it doesn't make sense to publish SHA-384 resource records now, but we need the consumers of such records to be ready for SHA-384 records. The reason that the transition from MD5 to SHA-1 certificates was so smooth is that all browsers at the time supported SHA-1. 

Yoav

[keyassure] Opening issue #21: "Need to specify w… Warren Kumari
Re: [keyassure] Opening issue #21: "Need to speci… Phillip Hallam-Baker
Re: [keyassure] Opening issue #21: "Need to speci… Paul Hoffman
Re: [keyassure] Opening issue #21: "Need to speci… Jakob Schlyter
Re: [keyassure] Opening issue #21: "Need to speci… Paul Hoffman
Re: [keyassure] Opening issue #21: "Need to speci… Martin Rex
Re: [keyassure] Opening issue #21: "Need to speci… Phillip Hallam-Baker
Re: [keyassure] Opening issue #21: "Need to speci… Martin Rex
Re: [keyassure] Opening issue #21: "Need to speci… Martin Rex
Re: [keyassure] Opening issue #21: "Need to speci… Phillip Hallam-Baker
Re: [keyassure] Opening issue #21: "Need to speci… Martin Rex
Re: [keyassure] Opening issue #21: "Need to speci… Phillip Hallam-Baker
Re: [keyassure] Opening issue #21: "Need to speci… Stephen Farrell
Re: [keyassure] Opening issue #21: "Need to speci… Nicholas Weaver
Re: [keyassure] Opening issue #21: "Need to speci… Chris Palmer
Re: [keyassure] Opening issue #21: "Need to speci… Stephen Farrell
Re: [keyassure] Opening issue #21: "Need to speci… Paul Hoffman
Re: [keyassure] Opening issue #21: "Need to speci… Nicholas Weaver
Re: [keyassure] Opening issue #21: "Need to speci… Paul Hoffman
Re: [keyassure] Opening issue #21: "Need to speci… Stephen Farrell
Re: [keyassure] Opening issue #21: "Need to speci… Phillip Hallam-Baker
Re: [keyassure] Opening issue #21: "Need to speci… Scott Schmit
Re: [keyassure] Opening issue #21: "Need to speci… Stephen Farrell
Re: [keyassure] Opening issue #21: "Need to speci… Phillip Hallam-Baker
Re: [keyassure] Opening issue #21: "Need to speci… Warren Kumari
Re: [keyassure] Opening issue #21: "Need to speci… Sean Turner
Re: [keyassure] Opening issue #21: "Need to speci… Paul Hoffman
Re: [keyassure] Opening issue #21: "Need to speci… Phillip Hallam-Baker
Re: [keyassure] Opening issue #21: "Need to speci… Martin Rex
[keyassure] crypto hash alg deprecation is a myth Martin Rex
Re: [keyassure] crypto hash alg deprecation is a … Rob Stradling
Re: [keyassure] crypto hash alg deprecation is a … Phillip Hallam-Baker
Re: [keyassure] crypto hash alg deprecation is a … Andrew Sullivan
Re: [keyassure] Opening issue #21: "Need to speci… Warren Kumari
Re: [keyassure] Opening issue #21: "Need to speci… Phillip Hallam-Baker
Re: [keyassure] crypto hash alg deprecation is a … Peter Gutmann
Re: [keyassure] Opening issue #21: "Need to speci… Peter Gutmann
Re: [keyassure] Opening issue #21: "Need to speci… Phillip Hallam-Baker
Re: [keyassure] Opening issue #21: "Need to speci… Paul Hoffman
Re: [keyassure] Opening issue #21: "Need to speci… Nicholas Weaver
Re: [keyassure] Opening issue #21: "Need to speci… Yoav Nir
Re: [keyassure] Opening issue #21: "Need to speci… Peter Gutmann
Re: [keyassure] Opening issue #21: "Need to speci… Andrew Sullivan
Re: [keyassure] Opening issue #21: "Need to speci… Martin Rex
Re: [keyassure] Opening issue #21: "Need to speci… Phillip Hallam-Baker
Re: [keyassure] Opening issue #21: "Need to speci… Peter Gutmann
Re: [keyassure] Opening issue #21: "Need to speci… Paul Hoffman
Re: [keyassure] Opening issue #21: "Need to speci… Paul Hoffman
Re: [keyassure] Opening issue #21: "Need to speci… Andrew Sullivan
Re: [keyassure] Opening issue #21: "Need to speci… Paul Hoffman
Re: [keyassure] Opening issue #21: "Need to speci… bmanning
Re: [keyassure] Opening issue #21: "Need to speci… Phillip Hallam-Baker
Re: [keyassure] Opening issue #21: "Need to speci… Murray S. Kucherawy
Re: [keyassure] Opening issue #21: "Need to speci… Murray S. Kucherawy
Re: [keyassure] Opening issue #21: "Need to speci… Ben Laurie
Re: [keyassure] Opening issue #21: "Need to speci… Jakob Schlyter
Re: [keyassure] Opening issue #21: "Need to speci… Paul Hoffman
Re: [keyassure] Opening issue #21: "Need to speci… George Barwood
Re: [keyassure] Opening issue #21: "Need to speci… Phillip Hallam-Baker
Re: [keyassure] Opening issue #21: "Need to speci… Paul Hoffman
Re: [keyassure] Opening issue #21: "Need to speci… Phillip Hallam-Baker
Re: [keyassure] Opening issue #21: "Need to speci… Jakob Schlyter
Re: [keyassure] Opening issue #21: "Need to speci… Martin Rex
Re: [keyassure] Opening issue #21: "Need to speci… Yoav Nir
Re: [keyassure] Opening issue #21: "Need to speci… Chris Palmer
Re: [keyassure] Opening issue #21: "Need to speci… Paul Hoffman
Re: [keyassure] Opening issue #21: "Need to speci… Warren Kumari
Re: [keyassure] Opening issue #21: "Need to speci… Chris Palmer
Re: [keyassure] Opening issue #21: "Need to speci… Paul Hoffman
Re: [keyassure] Opening issue #21: "Need to speci… Chris Palmer
Re: [keyassure] Opening issue #21: "Need to speci… Peter Gutmann
Re: [keyassure] Opening issue #21: "Need to speci… bmanning
Re: [keyassure] Opening issue #21: "Need to speci… Brian Smith
Re: [keyassure] Opening issue #21: "Need to speci… Jakob Schlyter
Re: [keyassure] Opening issue #21: "Need to speci… Ben Laurie
Re: [keyassure] Opening issue #21: "Need to speci… Rob Stradling
Re: [keyassure] Opening issue #21: "Need to speci… George Barwood
Re: [keyassure] Opening issue #21: "Need to speci… Sean Turner
Re: [keyassure] Opening issue #21: "Need to speci… Nicholas Weaver
Re: [keyassure] Opening issue #21: "Need to speci… Paul Hoffman
Re: [keyassure] Opening issue #21: "Need to speci… Martin Rex
Re: [keyassure] Opening issue #21: "Need to speci… bmanning
Re: [keyassure] Opening issue #21: "Need to speci… bmanning
Re: [keyassure] Opening issue #21: "Need to speci… Yoav Nir
Re: [keyassure] Opening issue #21: "Need to speci… Phillip Hallam-Baker
Re: [keyassure] Opening issue #21: "Need to speci… Chris Palmer
Re: [keyassure] Opening issue #21: "Need to speci… Peter Gutmann
Re: [keyassure] Opening issue #21: "Need to speci… Peter Gutmann
Re: [keyassure] Opening issue #21: "Need to speci… Peter Gutmann
Re: [keyassure] Opening issue #21: "Need to speci… Paul Hoffman
Re: [keyassure] Opening issue #21: "Need to speci… Warren Kumari
Re: [keyassure] Opening issue #21: "Need to speci… Paul Hoffman
Re: [keyassure] Opening issue #21: "Need to speci… Warren Kumari
Re: [keyassure] Opening issue #21: "Need to speci… Tony Hansen