IETF Logo Mail Archive

Re: [kitten] WGLC on draft-ietf-kitten-aes-cts-hmac-sha2-08

Benjamin Kaduk <kaduk@MIT.EDU> Sat, 16 January 2016 03:56 UTC

Return-Path: <kaduk@mit.edu>
X-Original-To: kitten@ietfa.amsl.com
Delivered-To: kitten@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 923B01A889C for <kitten@ietfa.amsl.com>; Fri, 15 Jan 2016 19:56:13 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.202
X-Spam-Level:
X-Spam-Status: No, score=-4.202 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3, RP_MATCHES_RCVD=-0.001, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id z95RQ_EL3Q-C for <kitten@ietfa.amsl.com>; Fri, 15 Jan 2016 19:56:11 -0800 (PST)
Received: from dmz-mailsec-scanner-3.mit.edu (dmz-mailsec-scanner-3.mit.edu [18.9.25.14]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 5525D1B36E5 for <kitten@ietf.org>; Fri, 15 Jan 2016 19:56:09 -0800 (PST)
X-AuditID: 1209190e-f79046d0000036c0-02-5699bf57da5c
Received: from mailhub-auth-1.mit.edu ( [18.9.21.35]) (using TLS with cipher DHE-RSA-AES256-SHA (256/256 bits)) (Client did not present a certificate) by dmz-mailsec-scanner-3.mit.edu (Symantec Messaging Gateway) with SMTP id 5D.DE.14016.75FB9965; Fri, 15 Jan 2016 22:56:07 -0500 (EST)
Received: from outgoing.mit.edu (outgoing-auth-1.mit.edu [18.9.28.11]) by mailhub-auth-1.mit.edu (8.13.8/8.9.2) with ESMTP id u0G3u6om026262; Fri, 15 Jan 2016 22:56:07 -0500
Received: from multics.mit.edu (system-low-sipb.mit.edu [18.187.2.37]) (authenticated bits=56) (User authenticated as kaduk@ATHENA.MIT.EDU) by outgoing.mit.edu (8.13.8/8.12.4) with ESMTP id u0G3u3Ta022774 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NOT); Fri, 15 Jan 2016 22:56:06 -0500
Received: (from kaduk@localhost) by multics.mit.edu (8.12.9.20060308) id u0G3u3v0010108; Fri, 15 Jan 2016 22:56:03 -0500 (EST)
Date: Fri, 15 Jan 2016 22:56:03 -0500
From: Benjamin Kaduk <kaduk@MIT.EDU>
To: Greg Hudson <ghudson@MIT.EDU>
In-Reply-To: <56992BA6.7040309@mit.edu>
Message-ID: <alpine.GSO.1.10.1601152255150.26829@multics.mit.edu>
References: <alpine.GSO.1.10.1601060014510.26829@multics.mit.edu> <56992BA6.7040309@mit.edu>
User-Agent: Alpine 1.10 (GSO 962 2008-03-14)
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset="US-ASCII"
X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFnrCIsWRmVeSWpSXmKPExsUixCmqrBu+f2aYwaX1KhZHN69icWD0WLLk J1MAYxSXTUpqTmZZapG+XQJXxo7Ve9gK9vNW/N7/iqmB8TFXFyMnh4SAicSrp8+YIWwxiQv3 1rN1MXJxCAksZpLYdG01O4SzkVGif/MDFgjnEJPEn4vrmCCcBkaJnZMbGEH6WQS0JQ6uOQ9m swmoSMx8s5ENxBYRUJT4vfItWJxZQFhi/bkZYPuEBVwkPl79B1bDKaAusXFaIyuIzSvgKDH1 +xGwGiGBGIn/Sw6C2aICOhKr909hgagRlDg58wkLxEwtieXTt7FMYBSchSQ1C0lqASPTKkbZ lNwq3dzEzJzi1GTd4uTEvLzUIl1jvdzMEr3UlNJNjODAlOTbwfj1oNIhRgEORiUe3g2OM8OE WBPLiitzDzFKcjApifLu2gAU4kvKT6nMSCzOiC8qzUktPsQowcGsJMK7pwEox5uSWFmVWpQP k5LmYFES5/1WOSVMSCA9sSQ1OzW1ILUIJivDwaEkwWuxD6hRsCg1PbUiLTOnBCHNxMEJMpwH aLgdSA1vcUFibnFmOkT+FKOilDhvLEhCACSRUZoH1wtOHLuZVF8xigO9IswbAFLFA0w6cN2v gAYzAQ3mDZgOMrgkESEl1cDYefhU5KLN65v/tm48ll5maHC97Nz7u7yuZvO0O5dvT63c+4pT d9Jrvk0ZYj/Uk948ePxYYf+qrRVKOyM6jP7q5KhYPfaMyec+aO50/M6ZY5+mnD3KPO9YihyX tK500I5jrZsMti4v+MT2PjWBSUvBKeLm/VerPx6/Gu6opvx5DoPLz5YHj4pylViKMxINtZiL ihMBMfUbs/cCAAA=
Archived-At: <http://mailarchive.ietf.org/arch/msg/kitten/y_l2Zw_xqE31oQpesKmhvvl3BrM>
Cc: kitten@ietf.org
Subject: Re: [kitten] WGLC on draft-ietf-kitten-aes-cts-hmac-sha2-08
X-BeenThere: kitten@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Common Authentication Technologies - Next Generation <kitten.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/kitten>, <mailto:kitten-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/kitten/>
List-Post: <mailto:kitten@ietf.org>
List-Help: <mailto:kitten-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/kitten>, <mailto:kitten-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 16 Jan 2016 03:56:13 -0000

Thanks for the review, Greg.

On Fri, 15 Jan 2016, Greg Hudson wrote:

> I did another read-through of the draft.  I found some minor issues,
> which I hope can be resolved without requiring another WGLC.

Assuming that the intent is to be consistent with RFC 3962 for the
string-to-key parameter, I expect that these notes can be resolved without
the need for an additional WGLC.

-Ben

> * There is no specification of how to read the string-to-key parameter.
>  RFC 3962 says, "The parameter string is four octets indicating an
> unsigned number in big-endian order," but this draft does not reference
> the RFC 3962 string-to-key and just says "iter_count = string-to-key
> parameter (default is decimal 32768 if not specified)".  I assume the
> intent is to be consistent with RFC 3962.
>
> * Section 5 says "specific key structure: three protocol-format keys: {
> Kc, Ke, Ki }".  Kc, Ke, and Ki are not protocol-format keys; Kc and Ki
> don't even have the same length for aes256.  I suggest "three derived keys."
>
> * Section 8 says, "The salt and iteration count resist brute force and
> dictionary attacks, however, it is still important to choose or generate
> strong passphrases."  This is a run-on sentence; the comma preceding
> "however" should be a semicolon.
>
> * Section 8.1 says, "The string-to-key function as defined in [RFC3961]
> requires the salt to be valid UTF-8 strings."  This sentence should end
> with "a valid UTF-8 string."
>
> * Section 8.1 says, "ktutil's add_entry command assumes the default
> salt."  That might be too specific; I suggest "Some key table
> manipulation programs assume the default salt when adding entries based
> on passwords."
>
>

v2.23.0 | Report a Bug | By Email