Re: [kitten] WGLC on draft-ietf-kitten-aes-cts-hmac-sha2-02
Benjamin Kaduk <kaduk@MIT.EDU> Fri, 23 May 2014 15:08 UTC
Return-Path: <kaduk@mit.edu>
X-Original-To: kitten@ietfa.amsl.com
Delivered-To: kitten@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B543C1A0019 for <kitten@ietfa.amsl.com>; Fri, 23 May 2014 08:08:09 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.252
X-Spam-Level:
X-Spam-Status: No, score=-3.252 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_LOW=-0.7, RP_MATCHES_RCVD=-0.651, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ZSN5RGvrrGNm for <kitten@ietfa.amsl.com>; Fri, 23 May 2014 08:08:07 -0700 (PDT)
Received: from dmz-mailsec-scanner-7.mit.edu (dmz-mailsec-scanner-7.mit.edu [18.7.68.36]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A24E51A01A7 for <kitten@ietf.org>; Fri, 23 May 2014 08:08:07 -0700 (PDT)
X-AuditID: 12074424-f79546d000000c5e-96-537f645471a3
Received: from mailhub-auth-2.mit.edu ( [18.7.62.36]) (using TLS with cipher AES256-SHA (256/256 bits)) (Client did not present a certificate) by dmz-mailsec-scanner-7.mit.edu (Symantec Messaging Gateway) with SMTP id 40.4F.03166.4546F735; Fri, 23 May 2014 11:08:04 -0400 (EDT)
Received: from outgoing.mit.edu (outgoing-auth-1.mit.edu [18.9.28.11]) by mailhub-auth-2.mit.edu (8.13.8/8.9.2) with ESMTP id s4NF83Ni017421; Fri, 23 May 2014 11:08:03 -0400
Received: from multics.mit.edu (system-low-sipb.mit.edu [18.187.2.37]) (authenticated bits=56) (User authenticated as kaduk@ATHENA.MIT.EDU) by outgoing.mit.edu (8.13.8/8.12.4) with ESMTP id s4NF81ve022479 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NOT); Fri, 23 May 2014 11:08:02 -0400
Received: (from kaduk@localhost) by multics.mit.edu (8.12.9.20060308) id s4NF80IQ010504; Fri, 23 May 2014 11:08:00 -0400 (EDT)
Date: Fri, 23 May 2014 11:08:00 -0400
From: Benjamin Kaduk <kaduk@MIT.EDU>
To: Simon Josefsson <simon@josefsson.org>
In-Reply-To: <20140523104217.05791078@latte.josefsson.org>
Message-ID: <alpine.GSO.1.10.1405231104340.25244@multics.mit.edu>
References: <52AE9A65.1010700@oracle.com> <53799133.70201@oracle.com> <20140523104217.05791078@latte.josefsson.org>
User-Agent: Alpine 1.10 (GSO 962 2008-03-14)
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset="US-ASCII"; format="flowed"
X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFnrDIsWRmVeSWpSXmKPExsUixG6nohuSUh9s8GWensXRzatYLO5tucTu wOSxZMlPJo+ZZy6yBzBFcdmkpOZklqUW6dslcGV0z5jCUvCcs+LRtk+sDYzf2bsYOTkkBEwk nm+BscUkLtxbz9bFyMUhJDCbSeLwk61MIAkhgY2MEn9P2EEkDjFJ3G6ZyQ7hNDBKbHn1ihmk ikVAW+Lrxx6wDjYBFYmZbzYCjeLgEBHQlJjbngESZhZQl/h25g0jiC0s4CLxYPdGMJtTwEqi Y/53FhCbV8BRYsrmqywQi4slTi1rBrtOVEBHYvX+KVA1ghInZz5hgZhpKXHuz3W2CYyCs5Ck ZiFJLWBkWsUom5JbpZubmJlTnJqsW5ycmJeXWqRrrpebWaKXmlK6iREcqC4qOxibDykdYhTg YFTi4X3AVBcsxJpYVlyZe4hRkoNJSZQ30bY+WIgvKT+lMiOxOCO+qDQntfgQowQHs5IIb7Ef UI43JbGyKrUoHyYlzcGiJM771toqWEggPbEkNTs1tSC1CCYrw8GhJMErnwzUKFiUmp5akZaZ U4KQZuLgBBnOAzQ8AqSGt7ggMbc4Mx0if4pRUUqcVxAkIQCSyCjNg+uFJZJXjOJArwhDtPMA kxBc9yugwUxAg18srAUZXJKIkJJqYKyYeTr/3Z4S5o2CU5dM6f4hYW0vYrxaPvvUtTCfI6wW Lo1PE2NqZl+9lSt10H7dTauPJvc2ZnmKcDH5Xk9jzVP6dqO9KXlyReqh+ZNumXBpVex6l9sp vuP7Nx/n0NgdbPrH9XOXpJ/asnPDzY25k+5HMHoZV70Qu6Oj0C1sHO3Mu9hsh/ZNbyWW4oxE Qy3mouJEAOWm36//AgAA
Archived-At: http://mailarchive.ietf.org/arch/msg/kitten/gJ7djnshzvH2LbHK2wt3w-9T6Uc
Cc: "kitten@ietf.org" <kitten@ietf.org>
Subject: Re: [kitten] WGLC on draft-ietf-kitten-aes-cts-hmac-sha2-02
X-BeenThere: kitten@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Common Authentication Technologies - Next Generation <kitten.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/kitten>, <mailto:kitten-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/kitten/>
List-Post: <mailto:kitten@ietf.org>
List-Help: <mailto:kitten-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/kitten>, <mailto:kitten-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 23 May 2014 15:08:09 -0000
On Fri, 23 May 2014, Simon Josefsson wrote: > You wrote: > >> AES Encryption with HMAC-SHA2 for Kerberos 5 >> http://tools.ietf.org/html/draft-ietf-kitten-aes-cts-hmac-sha2-02 > > I know this is a late generic comment, and I have vague memories that > this was already discussed. But why are we standardizing separate > encrypt and MAC when everyone else is moving towards AEAD-based modes? > I don't see any discussion of this in the draft. There are AEAD modes > with nicer properties wrt IV reuse, like SIV. It seems unforunate that > Kerberos lingers behind when several other protocols have already > specified AEAD modes. AEAD had been mentioned in previous discussions, in particular in the guise of GCM. GCM is not appropriate for an RFC 3961 enctype because of the disasterous consequences of counter rollover: RFC 3961 keys are potentially used for a very long time, and there did not seem to be a reasonable way to prevent rollover or signal errors in that case. See, e.g., http://www.ietf.org/mail-archive/web/kitten/current/msg04277.html and surroundings. I don't know that non-GCM AEAD solutions had been explicitly considered for use with kerberos; I think we would be happy if you did so. -Ben
- [kitten] WGLC on draft-ietf-kitten-sasl-oauth-12 Shawn M Emery
- Re: [kitten] WGLC on draft-ietf-kitten-sasl-oauth… Matt Miller (mamille2)
- Re: [kitten] WGLC on draft-ietf-kitten-sasl-oauth… Bill Mills
- Re: [kitten] WGLC on draft-ietf-kitten-sasl-oauth… Bill Mills
- Re: [kitten] WGLC on draft-ietf-kitten-sasl-oauth… Matt Miller (mamille2)
- Re: [kitten] WGLC on draft-ietf-kitten-sasl-oauth… Bill Mills
- Re: [kitten] WGLC on draft-ietf-kitten-sasl-oauth… Matt Miller (mamille2)
- Re: [kitten] WGLC on draft-ietf-kitten-sasl-oauth… Bill Mills
- Re: [kitten] WGLC on draft-ietf-kitten-sasl-oauth… Ryan Troll
- Re: [kitten] WGLC on draft-ietf-kitten-sasl-oauth… Bill Mills
- Re: [kitten] WGLC on draft-ietf-kitten-sasl-oauth… Bill Mills
- Re: [kitten] WGLC on draft-ietf-kitten-sasl-oauth… Ryan Troll
- Re: [kitten] WGLC on draft-ietf-kitten-sasl-oauth… Bill Mills
- [kitten] WGLC on draft-ietf-kitten-aes-cts-hmac-s… Shawn M Emery
- Re: [kitten] WGLC on draft-ietf-kitten-aes-cts-hm… Benjamin Kaduk
- Re: [kitten] WGLC on draft-ietf-kitten-aes-cts-hm… Peck, Michael A
- Re: [kitten] WGLC on draft-ietf-kitten-aes-cts-hm… Benjamin Kaduk
- Re: [kitten] WGLC on draft-ietf-kitten-aes-cts-hm… Simon Josefsson
- Re: [kitten] WGLC on draft-ietf-kitten-aes-cts-hm… Benjamin Kaduk
- Re: [kitten] WGLC on draft-ietf-kitten-aes-cts-hm… Greg Hudson
- [kitten] WGLC on draft-ietf-krb-wg-cammac-08 Shawn M Emery
- Re: [kitten] WGLC on draft-ietf-krb-wg-cammac-08 Zheng, Kai
- Re: [kitten] WGLC on draft-ietf-krb-wg-cammac-08 Tom Yu
- Re: [kitten] WGLC on draft-ietf-krb-wg-cammac-08 Zheng, Kai
- [kitten] WGLC on draft-ietf-kitten-sasl-oauth-15 Shawn M Emery
- Re: [kitten] WGLC on draft-ietf-kitten-sasl-oauth… Benjamin Kaduk
- Re: [kitten] WGLC on draft-ietf-kitten-sasl-oauth… Bill Mills
- Re: [kitten] WGLC on draft-ietf-kitten-sasl-oauth… Benjamin Kaduk
- Re: [kitten] WGLC on draft-ietf-kitten-sasl-oauth… Bill Mills