Re: [kitten] [saag] AD sponsoring draft-hansen-scram-sha256

Tony Hansen <tony@att.com> Tue, 24 February 2015 13:56 UTC

Return-Path: <tony@att.com>
X-Original-To: kitten@ietfa.amsl.com
Delivered-To: kitten@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 741371A1A82; Tue, 24 Feb 2015 05:56:29 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.489
X-Spam-Level:
X-Spam-Status: No, score=-0.489 tagged_above=-999 required=5 tests=[BAYES_50=0.8, MISSING_HEADERS=1.021, RCVD_IN_DNSWL_MED=-2.3, T_RP_MATCHES_RCVD=-0.01] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id dVO8OZdGVRfH; Tue, 24 Feb 2015 05:56:23 -0800 (PST)
Received: from nbfkord-smmo06.seg.att.com (nbfkord-smmo06.seg.att.com [209.65.160.94]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 2C05D1A1AE6; Tue, 24 Feb 2015 05:56:23 -0800 (PST)
Received: from unknown [144.160.229.23] (EHLO alpi154.enaf.aldc.att.com) by nbfkord-smmo06.seg.att.com(mxl_mta-7.2.4-5) over TLS secured channel with ESMTP id 5038ce45.0.4798030.00-2331.13494641.nbfkord-smmo06.seg.att.com (envelope-from <tony@att.com>); Tue, 24 Feb 2015 13:56:23 +0000 (UTC)
X-MXL-Hash: 54ec830719bcac5e-253cd24390c5f32065b2bfebe308a4f61dbb9c7c
Received: from enaf.aldc.att.com (localhost [127.0.0.1]) by alpi154.enaf.aldc.att.com (8.14.5/8.14.5) with ESMTP id t1ODuKB3008578; Tue, 24 Feb 2015 08:56:20 -0500
Received: from alpi132.aldc.att.com (alpi132.aldc.att.com [130.8.217.2]) by alpi154.enaf.aldc.att.com (8.14.5/8.14.5) with ESMTP id t1ODuGF1008562 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-GCM-SHA384 bits=256 verify=NO); Tue, 24 Feb 2015 08:56:18 -0500
Received: from alpi153.aldc.att.com (alpi153.aldc.att.com [130.8.42.31]) by alpi132.aldc.att.com (RSA Interceptor); Tue, 24 Feb 2015 13:56:04 GMT
Received: from aldc.att.com (localhost [127.0.0.1]) by alpi153.aldc.att.com (8.14.5/8.14.5) with ESMTP id t1ODu3ZD005610; Tue, 24 Feb 2015 08:56:04 -0500
Received: from mailgw1.maillennium.att.com (maillennium.att.com [135.25.114.99]) by alpi153.aldc.att.com (8.14.5/8.14.5) with ESMTP id t1ODtuZ6005177; Tue, 24 Feb 2015 08:55:56 -0500
Received: from tonys-macbook-pro.local (unknown[135.110.241.46](untrusted sender)) by maillennium.att.com (mailgw1) with ESMTP id <20150224135555gw1000ceefe>; Tue, 24 Feb 2015 13:55:56 +0000
X-Originating-IP: [135.110.241.46]
Message-ID: <54EC82EB.3040705@att.com>
Date: Tue, 24 Feb 2015 08:55:55 -0500
From: Tony Hansen <tony@att.com>
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.10; rv:31.0) Gecko/20100101 Thunderbird/31.4.0
MIME-Version: 1.0
References: <54DC00D0.2050900@cs.tcd.ie> <87r3tqqj9y.fsf@latte.josefsson.org> <54E1D009.2050408@isode.com> <CAKHUCzyUwQgEzmoFJnq-jpZzKyapG+Q8S5=nkE_=fqY+RKNSTw@mail.gmail.com> <CAHbk4RJ=Hg_EscFeFWQko2WHSLreioz_sUj1E746EOtCDLDPTw@mail.gmail.com>
In-Reply-To: <CAHbk4RJ=Hg_EscFeFWQko2WHSLreioz_sUj1E746EOtCDLDPTw@mail.gmail.com>
Content-Type: text/plain; charset=utf-8; format=flowed
Content-Transfer-Encoding: 8bit
X-RSA-Inspected: yes
X-RSA-Classifications: public
X-AnalysisOut: [v=2.0 cv=V6DKJ5bi c=1 sm=1 a=VXHOiMMwGAwA+y4G3/O+aw==:17 a]
X-AnalysisOut: [=9cW_t1CCXrUA:10 a=mJp9S24oyUUA:10 a=6ASjcdcU7ckA:10 a=BLc]
X-AnalysisOut: [eEmwcHowA:10 a=IkcTkHD0fZMA:10 a=zQP7CpKOAAAA:8 a=0HtSIViG]
X-AnalysisOut: [9nkA:10 a=KWikpAkKAAAA:8 a=aQeYOMMR6rlqqqAHQZoA:9 a=QEXdDO]
X-AnalysisOut: [2ut3YA:10 a=zdbJd93gu_dgrkFV:21 a=MGKYglSutNO77KFl:21]
X-Spam: [F=0.2000000000; CM=0.500; S=0.200(2014051901)]
X-MAIL-FROM: <tony@att.com>
X-SOURCE-IP: [144.160.229.23]
Archived-At: <http://mailarchive.ietf.org/arch/msg/kitten/2vSb66h6zCMypwToYJ9pCwCtKZ0>
Cc: kitten@ietf.org, "http-auth@ietf.org" <http-auth@ietf.org>, "saag@ietf.org" <saag@ietf.org>
Subject: Re: [kitten] [saag] AD sponsoring draft-hansen-scram-sha256
X-BeenThere: kitten@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Common Authentication Technologies - Next Generation <kitten.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/kitten>, <mailto:kitten-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/kitten/>
List-Post: <mailto:kitten@ietf.org>
List-Help: <mailto:kitten-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/kitten>, <mailto:kitten-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 24 Feb 2015 13:56:29 -0000

On 2/18/15 7:57 AM, Sam Whited wrote:
> On Mon, Feb 16, 2015 at 6:21 AM, Dave Cridland <dave@cridland.net> wrote:
>> Worth asking in the XSF, there's likely to be implementation experience from
>> the Android client devs there.
> I wrote the SCRAM-SHA-1 implementation in Conversations. While I don't
> remember actual numbers off the top of my head, I can definitely tell
> you that there is a noticable delay with a 4096 iteration count
> (probably a little over half a second) on my HTC m7 (which is fairly
> beefy as far as phones go). HOWEVER—
>
>> However, clients need only do the iterations once, if the salt is stable, at
>> least in principle.
> —since we then store the session information in an LRU Cache in
> memory, it's only slow when you first login. I've thought about moving
> the session info to the database as well to make it even more
> persistant, but decided it wasn't enough of a problem to bother
> polluting the database.

We have implementations of both SCRAM-SHA-1 and SCRAM-SHA-256 on 
multiple phone platforms, both Android and iOS. Yes, it can be rather 
slow. But, as Sam says above, caching does mitigate the issue for 
subsequent uses.

This is why I pushed back when it was suggested before in KITTEN to 
raise the number higher than 4096.

     Tony Hansen