IETF Logo Mail Archive

Re: [kitten] Comments on draft-ietf-kitten-password-storage-02

steve@tobtu.com Tue, 08 December 2020 22:25 UTC

Return-Path: <steve@tobtu.com>
X-Original-To: kitten@ietfa.amsl.com
Delivered-To: kitten@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8D1253A1274 for <kitten@ietfa.amsl.com>; Tue, 8 Dec 2020 14:25:05 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.918
X-Spam-Level:
X-Spam-Status: No, score=-1.918 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_NONE=0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 2QvY7BeVUTNU for <kitten@ietfa.amsl.com>; Tue, 8 Dec 2020 14:25:03 -0800 (PST)
Received: from mout.perfora.net (mout.perfora.net [74.208.4.194]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 8B17C3A1275 for <kitten@ietf.org>; Tue, 8 Dec 2020 14:25:03 -0800 (PST)
Received: from oxuslxaltgw15.schlund.de ([10.72.76.71]) by mrelay.perfora.net (mreueus002 [74.208.5.2]) with ESMTPSA (Nemesis) id 0Lj04u-1k9ZJI16Z4-00dEUq for <kitten@ietf.org>; Tue, 08 Dec 2020 23:25:02 +0100
Date: Tue, 08 Dec 2020 16:25:01 -0600
From: steve@tobtu.com
To: "kitten@ietf.org" <kitten@ietf.org>
Message-ID: <2005185486.89135.1607466301960@email.ionos.com>
In-Reply-To: <f9f03e35-b644-4631-ac53-30d52f3666a4@www.fastmail.com>
References: <383104680.145048.1606106813679@email.ionos.com> <ef54dd11-37e8-4e2a-95fc-d70a83d7ec82@www.fastmail.com> <853962335.300533.1606173765880@email.ionos.com> <f9f03e35-b644-4631-ac53-30d52f3666a4@www.fastmail.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: 7bit
X-Priority: 3
Importance: Normal
X-Mailer: Open-Xchange Mailer v7.10.3-Rev28
X-Originating-Client: open-xchange-appsuite
X-Provags-ID: V03:K1:3uxJhWveGWBxD9/TJZOBUddAMPILv+QgQgrnfZersivMmJWN3QH bwQA87Drzkgius5daeQllJlXoa6venFGZNdh5Mr5UsFSB2d9RfOjE1wahD29PARnz1eHQZ6 x/JBX9nTN3Ie3ks8YxCO3Utq8D0UVx45XwPDjg6Qh54sPUNJgSwVnesPDYC16DgvCwnhep8 wmH8/10+8+lwHYi7RpofQ==
X-UI-Out-Filterresults: notjunk:1;V03:K0:Z6qtN2XIJ4s=:L0y2TUdr/pHYCrVxyIjmbL Fx4up1KTLOKCQExHpn8pEiVgh7M/sXYjY2st8J3n3W3BykDEAjIFoJcOr86+SX5+rfKPzknsU dJyC9xCX5thATQO2+QXLJOC8bugOfGaKxUCarjm6XxuTez8z9RlB6zyBKODxefQWFj9Vz09hh f70Cnd/UGYcomQld/YczPhdqFJCDNSWHg7dYwyy4ZZ+p9R8GeXOdNxa5STUxGjvPbDSyBYhu6 YwpUjhMUr+RyS8/lQfIkMhfQ/NfBlNT6mlDCI9c5ygEVL8vxp0hASRA0Du9SA7iI0i3mS3l5j m+SNwTq1Xfsto4yPmPzRuh5/mUtVAAxDkS4nI2379DbkCgDkcM6KtxcceT8+pYdgPBGD1UHzM V4Ki+Z+JnhpgpvdmToGbrY+JiokApl2527pQZc8qgJybDVVgWsqQTteLyUf+6wM/3XLNZbWB0 KRdUuEizQkd7r+Tj2w4I6xCHIf4pHJYMKQdtuBPu5XSbZJ/ooMCt
Archived-At: <https://mailarchive.ietf.org/arch/msg/kitten/Kj6iGF7k_9l-H0-b4q59cVV836I>
Subject: Re: [kitten] Comments on draft-ietf-kitten-password-storage-02
X-BeenThere: kitten@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Common Authentication Technologies - Next Generation <kitten.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/kitten>, <mailto:kitten-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/kitten/>
List-Post: <mailto:kitten@ietf.org>
List-Help: <mailto:kitten-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/kitten>, <mailto:kitten-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 08 Dec 2020 22:25:06 -0000

> On 12/08/2020 8:33 AM Sam Whited <sam@samwhited.com> wrote:
> 
>  
> I was just re-reading parts of the argon2 I-D and its variable length
> hash function uses the first 32bytes of the inner hash function, so
> minimum 32 seems like a reasonable number. Just throwing that out in
> case anyone wants to disagree or explain to me why I'm misreading the
> argon2 I-D (which is quite likely).
> 

I do not agree with "minimum 32 bytes", but if you state "default or 32 bytes" that's fine.

v2.23.0 | Report a Bug | By Email