Re: [keyassure] Opening issue #21: "Need to specify which crypto

Martin Rex <mrex@sap.com> Mon, 07 March 2011 14:24 UTC

From: Martin Rex <mrex@sap.com>
Message-Id: <201103071425.p27EPvrB000688@fs4113.wdf.sap.corp>
To: hallam@gmail.com
Date: Mon, 07 Mar 2011 15:25:57 +0100
In-Reply-To: <AANLkTimd0hwypnvB0AQgS-3JwSe6BHOP-kOPhPmNjEq7@mail.gmail.com> from "Phillip Hallam-Baker" at Mar 5, 11 11:33:01 am
MIME-Version: 1.0
Content-Type: text/plain; charset="ISO-8859-1"
Content-Transfer-Encoding: 8bit
Cc: keyassure@ietf.org, paul.hoffman@vpnc.org
Subject: Re: [keyassure] Opening issue #21: "Need to specify which crypto
Precedence: list
Reply-To: mrex@sap.com

Phillip Hallam-Baker wrote:
> 
> We do require TLS however.
> 
> VeriSign and Comodo have created roots with SHA2-256 and SHA2-384, the
> choice is thus not 'oddball'.

I assume you rather mean the signature algorithms
sha256WithRsaEncryption OID { 1, 2, 840, 113549, 1, 1, 11 }
sha384WithRsaEncryption OID { 1, 2, 840, 113549, 1, 1, 12 }

rather than the hash algorithms.

> 
> The criteria for abandoning an existing digest is not when the work factor
> below a certain threshold, it is when the work factor falls significantly
> below that advertised.

Nope, I doesn't have anything to do with advertisements.
The problem is when _assumptions_ about an algorithms strength are
shown to not hold, independent of how "strong" that algorithm is
advertised.

This is why we do worry about md5 when used for digital signatures,
and worry much less when md5 is used as HMAC-MD5 for integrity protection
of online communication protocols.

> 
> So SHA2-384 is to be preferred over SHA2-512 because even though it is
> easier to break, it has a much higher safety factor.
> 
> If someone comes up with an attack against SHA2-512 with O(2^480/2)
> complexity it would reduce the cost of attacking SHA2-512 but not the cost
> of attacking SHA2-384. So the 512 bit version would be 'compromised' but the
> 384 version would not.

That is marketing nonsense.

With that reasoning, we should use SHA-512/256 rather than SHA-256

  http://www.schneier.com/blog/archives/2011/02/nist_defines_ne.html
  http://csrc.nist.gov/publications/PubsDrafts.html#fips-180-4

I don't see any value in mandating any algorithm beyond SHA-256
at this point -- anticipating that there is going to be SHA-3
in the not so far future and a desire to support SHA-3 in DANE.

-Martin

[keyassure] Opening issue #21: "Need to specify w… Warren Kumari
Re: [keyassure] Opening issue #21: "Need to speci… Phillip Hallam-Baker
Re: [keyassure] Opening issue #21: "Need to speci… Paul Hoffman
Re: [keyassure] Opening issue #21: "Need to speci… Jakob Schlyter
Re: [keyassure] Opening issue #21: "Need to speci… Paul Hoffman
Re: [keyassure] Opening issue #21: "Need to speci… Martin Rex
Re: [keyassure] Opening issue #21: "Need to speci… Phillip Hallam-Baker
Re: [keyassure] Opening issue #21: "Need to speci… Martin Rex
Re: [keyassure] Opening issue #21: "Need to speci… Martin Rex
Re: [keyassure] Opening issue #21: "Need to speci… Phillip Hallam-Baker
Re: [keyassure] Opening issue #21: "Need to speci… Martin Rex
Re: [keyassure] Opening issue #21: "Need to speci… Phillip Hallam-Baker
Re: [keyassure] Opening issue #21: "Need to speci… Stephen Farrell
Re: [keyassure] Opening issue #21: "Need to speci… Nicholas Weaver
Re: [keyassure] Opening issue #21: "Need to speci… Chris Palmer
Re: [keyassure] Opening issue #21: "Need to speci… Stephen Farrell
Re: [keyassure] Opening issue #21: "Need to speci… Paul Hoffman
Re: [keyassure] Opening issue #21: "Need to speci… Nicholas Weaver
Re: [keyassure] Opening issue #21: "Need to speci… Paul Hoffman
Re: [keyassure] Opening issue #21: "Need to speci… Stephen Farrell
Re: [keyassure] Opening issue #21: "Need to speci… Phillip Hallam-Baker
Re: [keyassure] Opening issue #21: "Need to speci… Scott Schmit
Re: [keyassure] Opening issue #21: "Need to speci… Stephen Farrell
Re: [keyassure] Opening issue #21: "Need to speci… Phillip Hallam-Baker
Re: [keyassure] Opening issue #21: "Need to speci… Warren Kumari
Re: [keyassure] Opening issue #21: "Need to speci… Sean Turner
Re: [keyassure] Opening issue #21: "Need to speci… Paul Hoffman
Re: [keyassure] Opening issue #21: "Need to speci… Phillip Hallam-Baker
Re: [keyassure] Opening issue #21: "Need to speci… Martin Rex
[keyassure] crypto hash alg deprecation is a myth Martin Rex
Re: [keyassure] crypto hash alg deprecation is a … Rob Stradling
Re: [keyassure] crypto hash alg deprecation is a … Phillip Hallam-Baker
Re: [keyassure] crypto hash alg deprecation is a … Andrew Sullivan
Re: [keyassure] Opening issue #21: "Need to speci… Warren Kumari
Re: [keyassure] Opening issue #21: "Need to speci… Phillip Hallam-Baker
Re: [keyassure] crypto hash alg deprecation is a … Peter Gutmann
Re: [keyassure] Opening issue #21: "Need to speci… Peter Gutmann
Re: [keyassure] Opening issue #21: "Need to speci… Phillip Hallam-Baker
Re: [keyassure] Opening issue #21: "Need to speci… Paul Hoffman
Re: [keyassure] Opening issue #21: "Need to speci… Nicholas Weaver
Re: [keyassure] Opening issue #21: "Need to speci… Yoav Nir
Re: [keyassure] Opening issue #21: "Need to speci… Peter Gutmann
Re: [keyassure] Opening issue #21: "Need to speci… Andrew Sullivan
Re: [keyassure] Opening issue #21: "Need to speci… Martin Rex
Re: [keyassure] Opening issue #21: "Need to speci… Phillip Hallam-Baker
Re: [keyassure] Opening issue #21: "Need to speci… Peter Gutmann
Re: [keyassure] Opening issue #21: "Need to speci… Paul Hoffman
Re: [keyassure] Opening issue #21: "Need to speci… Paul Hoffman
Re: [keyassure] Opening issue #21: "Need to speci… Andrew Sullivan
Re: [keyassure] Opening issue #21: "Need to speci… Paul Hoffman
Re: [keyassure] Opening issue #21: "Need to speci… bmanning
Re: [keyassure] Opening issue #21: "Need to speci… Phillip Hallam-Baker
Re: [keyassure] Opening issue #21: "Need to speci… Murray S. Kucherawy
Re: [keyassure] Opening issue #21: "Need to speci… Murray S. Kucherawy
Re: [keyassure] Opening issue #21: "Need to speci… Ben Laurie
Re: [keyassure] Opening issue #21: "Need to speci… Jakob Schlyter
Re: [keyassure] Opening issue #21: "Need to speci… Paul Hoffman
Re: [keyassure] Opening issue #21: "Need to speci… George Barwood
Re: [keyassure] Opening issue #21: "Need to speci… Phillip Hallam-Baker
Re: [keyassure] Opening issue #21: "Need to speci… Paul Hoffman
Re: [keyassure] Opening issue #21: "Need to speci… Phillip Hallam-Baker
Re: [keyassure] Opening issue #21: "Need to speci… Jakob Schlyter
Re: [keyassure] Opening issue #21: "Need to speci… Martin Rex
Re: [keyassure] Opening issue #21: "Need to speci… Yoav Nir
Re: [keyassure] Opening issue #21: "Need to speci… Chris Palmer
Re: [keyassure] Opening issue #21: "Need to speci… Paul Hoffman
Re: [keyassure] Opening issue #21: "Need to speci… Warren Kumari
Re: [keyassure] Opening issue #21: "Need to speci… Chris Palmer
Re: [keyassure] Opening issue #21: "Need to speci… Paul Hoffman
Re: [keyassure] Opening issue #21: "Need to speci… Chris Palmer
Re: [keyassure] Opening issue #21: "Need to speci… Peter Gutmann
Re: [keyassure] Opening issue #21: "Need to speci… bmanning
Re: [keyassure] Opening issue #21: "Need to speci… Brian Smith
Re: [keyassure] Opening issue #21: "Need to speci… Jakob Schlyter
Re: [keyassure] Opening issue #21: "Need to speci… Ben Laurie
Re: [keyassure] Opening issue #21: "Need to speci… Rob Stradling
Re: [keyassure] Opening issue #21: "Need to speci… George Barwood
Re: [keyassure] Opening issue #21: "Need to speci… Sean Turner
Re: [keyassure] Opening issue #21: "Need to speci… Nicholas Weaver
Re: [keyassure] Opening issue #21: "Need to speci… Paul Hoffman
Re: [keyassure] Opening issue #21: "Need to speci… Martin Rex
Re: [keyassure] Opening issue #21: "Need to speci… bmanning
Re: [keyassure] Opening issue #21: "Need to speci… bmanning
Re: [keyassure] Opening issue #21: "Need to speci… Yoav Nir
Re: [keyassure] Opening issue #21: "Need to speci… Phillip Hallam-Baker
Re: [keyassure] Opening issue #21: "Need to speci… Chris Palmer
Re: [keyassure] Opening issue #21: "Need to speci… Peter Gutmann
Re: [keyassure] Opening issue #21: "Need to speci… Peter Gutmann
Re: [keyassure] Opening issue #21: "Need to speci… Peter Gutmann
Re: [keyassure] Opening issue #21: "Need to speci… Paul Hoffman
Re: [keyassure] Opening issue #21: "Need to speci… Warren Kumari
Re: [keyassure] Opening issue #21: "Need to speci… Paul Hoffman
Re: [keyassure] Opening issue #21: "Need to speci… Warren Kumari
Re: [keyassure] Opening issue #21: "Need to speci… Tony Hansen