Re: [kitten] draft-hansen-scram-sha256 and the hash iteration count
Dave Cridland <dave@cridland.net> Tue, 24 February 2015 16:55 UTC
Return-Path: <dave@cridland.net>
X-Original-To: kitten@ietfa.amsl.com
Delivered-To: kitten@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 97DCE1A1B71 for <kitten@ietfa.amsl.com>; Tue, 24 Feb 2015 08:55:56 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.378
X-Spam-Level:
X-Spam-Status: No, score=-1.378 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FM_FORGED_GMAIL=0.622, HTML_MESSAGE=0.001, SPF_PASS=-0.001] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 40iHGb9U4APt for <kitten@ietfa.amsl.com>; Tue, 24 Feb 2015 08:55:55 -0800 (PST)
Received: from mail-ob0-x22a.google.com (mail-ob0-x22a.google.com [IPv6:2607:f8b0:4003:c01::22a]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 4B48A1A0393 for <kitten@ietf.org>; Tue, 24 Feb 2015 08:55:55 -0800 (PST)
Received: by mail-ob0-f170.google.com with SMTP id va2so44630778obc.1 for <kitten@ietf.org>; Tue, 24 Feb 2015 08:55:54 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cridland.net; s=google; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; bh=/0MZ1I1buZfnYJq1on9Z3ke4Avp1HdR4GU9URZMF6rg=; b=c/RMDjMPnD7HVcuPiy6nDisH+2AYjcqO8/CkKrPKvnczpnVATXDT1EgktZ6SqEHn3s +nHhivq/I6ChVAnJhywdVjo/znf2MeNQXPvHU6Mmub6yEeEMyobs4fk3dT7vy+9HQKk2 VaJa18nkNq80XPUwTkM8TJ37a9fg7uzZXP8UM=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:in-reply-to:references:date :message-id:subject:from:to:cc:content-type; bh=/0MZ1I1buZfnYJq1on9Z3ke4Avp1HdR4GU9URZMF6rg=; b=e4bMftJ5OoDQs0BYTJS72u2DB8eGL5YOQGrUNG1XgNg4BkHNFq90FWyWU3M1+MuTGD kFLtNql/AGAhi99re7iQq9DBFHOrkoL64fHYjGYZS/WWAXBC2OCFvRZCJ/Vc9PSFtrWA du9MoqCaYraiDVk/K0mF3HD0LaYLLWveNKvX2MViWXO2VqReczEWCOBaMTcZrNlNLQmK npY4tNYHxhqBtOsFr4l20mTQkdCjIEtIQiw/Uda8CpYEfIpyPpfMvP3qL1/Z7vcoXyBj 4mXpm/vEihLTIjgRh72KyyeUxeyLo2bv7y4DuFfVS31FAbrpFDTvHjpYTZVmWcAxBQKd XinA==
X-Gm-Message-State: ALoCoQkaTZei95M0kH+e0rZD9YhXSjSJrbvcd130OMXmp3cygIck+f9EGx0IPDxr0QKh8Gm7gdNw
MIME-Version: 1.0
X-Received: by 10.182.209.72 with SMTP id mk8mr11521034obc.54.1424796954592; Tue, 24 Feb 2015 08:55:54 -0800 (PST)
Received: by 10.60.62.172 with HTTP; Tue, 24 Feb 2015 08:55:54 -0800 (PST)
In-Reply-To: <54ECA7DA.40203@att.com>
References: <54DC00D0.2050900@cs.tcd.ie> <54EC66FF.50603@cs.tcd.ie> <54ECA7DA.40203@att.com>
Date: Tue, 24 Feb 2015 16:55:54 +0000
Message-ID: <CAKHUCzymihrk6QTFHWKG45kLiZkvkk3kasZPWtzTeDcwHn7y-A@mail.gmail.com>
From: Dave Cridland <dave@cridland.net>
To: Tony Hansen <tony@att.com>
Content-Type: multipart/alternative; boundary="e89a8ff252565b1dee050fd86481"
Archived-At: <http://mailarchive.ietf.org/arch/msg/kitten/V1aX57F9-7T7cXKuhifRYqi6Diw>
Cc: "kitten@ietf.org" <kitten@ietf.org>
Subject: Re: [kitten] draft-hansen-scram-sha256 and the hash iteration count
X-BeenThere: kitten@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Common Authentication Technologies - Next Generation <kitten.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/kitten>, <mailto:kitten-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/kitten/>
List-Post: <mailto:kitten@ietf.org>
List-Help: <mailto:kitten-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/kitten>, <mailto:kitten-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 24 Feb 2015 16:55:56 -0000
On 24 February 2015 at 16:33, Tony Hansen <tony@att.com> wrote many things... As a thought, is it not worthwhile to distill all this into a paragraph or two within the Security Considerations, such as: The strength of this mechanism is dependent in part on the iteration count, as denoted by "i" in [RFC 5802]. As a rule of thumb, the iteration count should be such that a modern machine will take 0.1 seconds to perform the complete algorithm; however this is unlikely to be practical on mobile devices and other relatively low-performance systems. At the time this was written, the rule of thumb gives around 15,000 iterations required; however an iteration count of 4096 takes around 0.5 seconds on current mobile handsets. This computational cost can be avoided by caching the ClientKey (assuming the Salt and iteration count is stable). Therefore the recommendation of this specification is that the iteration count SHOULD be at least 4096, but careful consideration ought to be given to using a significantly higher value, particularly where mobile use is less important.
- [kitten] AD sponsoring draft-hansen-scram-sha256 Stephen Farrell
- Re: [kitten] AD sponsoring draft-hansen-scram-sha… Peter Saint-Andre - &yet
- Re: [kitten] AD sponsoring draft-hansen-scram-sha… Tony Hansen
- Re: [kitten] AD sponsoring draft-hansen-scram-sha… Peter Saint-Andre - &yet
- Re: [kitten] AD sponsoring draft-hansen-scram-sha… Simon Josefsson
- Re: [kitten] [saag] AD sponsoring draft-hansen-sc… Simon Josefsson
- Re: [kitten] [saag] AD sponsoring draft-hansen-sc… Alexey Melnikov
- Re: [kitten] [saag] AD sponsoring draft-hansen-sc… Dave Cridland
- Re: [kitten] AD sponsoring draft-hansen-scram-sha… Simon Josefsson
- Re: [kitten] [saag] AD sponsoring draft-hansen-sc… Martin Thomson
- Re: [kitten] [saag] AD sponsoring draft-hansen-sc… Sam Whited
- Re: [kitten] [saag] AD sponsoring draft-hansen-sc… Stephen Farrell
- Re: [kitten] [saag] AD sponsoring draft-hansen-sc… Tony Hansen
- Re: [kitten] [saag] AD sponsoring draft-hansen-sc… Tony Hansen
- [kitten] draft-hansen-scram-sha256 and the hash i… Tony Hansen
- [kitten] draft-hansen-scram-sha256 and incorporat… Tony Hansen
- Re: [kitten] draft-hansen-scram-sha256 and the ha… Dave Cridland
- Re: [kitten] draft-hansen-scram-sha256 and the ha… Alexey Melnikov
- Re: [kitten] draft-hansen-scram-sha256 and the ha… Tony Hansen
- Re: [kitten] draft-hansen-scram-sha256 and the ha… Simon Josefsson
- Re: [kitten] draft-hansen-scram-sha256 and incorp… Simon Josefsson
- Re: [kitten] draft-hansen-scram-sha256 and incorp… Alexey Melnikov
- Re: [kitten] draft-hansen-scram-sha256 and incorp… Simon Josefsson
- Re: [kitten] draft-hansen-scram-sha256 and incorp… Alexey Melnikov
- Re: [kitten] draft-hansen-scram-sha256 and incorp… Tony Hansen
- Re: [kitten] [saag] AD sponsoring draft-hansen-sc… Karthikeyan Bhargavan
- Re: [kitten] draft-hansen-scram-sha256 and incorp… Simon Josefsson
- Re: [kitten] [saag] AD sponsoring draft-hansen-sc… Simon Josefsson
- Re: [kitten] draft-hansen-scram-sha256 and incorp… Nico Williams
- Re: [kitten] draft-hansen-scram-sha256 and incorp… Nico Williams
- Re: [kitten] draft-hansen-scram-sha256 and incorp… Simon Josefsson
- Re: [kitten] draft-hansen-scram-sha256 and incorp… Simon Josefsson
- Re: [kitten] draft-hansen-scram-sha256 and incorp… Stephen Farrell
- Re: [kitten] draft-hansen-scram-sha256 and incorp… Nico Williams
- Re: [kitten] draft-hansen-scram-sha256 and incorp… Tony Hansen
- Re: [kitten] draft-hansen-scram-sha256 and incorp… Nico Williams
- Re: [kitten] draft-hansen-scram-sha256 and incorp… Simon Josefsson
- Re: [kitten] draft-hansen-scram-sha256 and incorp… Tony Hansen
- Re: [kitten] draft-hansen-scram-sha256 and incorp… Nico Williams
- Re: [kitten] draft-hansen-scram-sha256 and incorp… Simon Josefsson
- Re: [kitten] draft-hansen-scram-sha256 and incorp… Simon Josefsson
- Re: [kitten] draft-hansen-scram-sha256 and incorp… Nico Williams
- Re: [kitten] draft-hansen-scram-sha256 and incorp… Tony Hansen