Re: [Ietf-krb-wg] AD review of draft-ietf-krb-wg-camellia-cts
Greg Hudson <ghudson@MIT.EDU> Mon, 10 September 2012 16:26 UTC
Return-Path: <ietf-krb-wg-bounces@lists.anl.gov>
X-Original-To: ietfarch-krb-wg-archive@ietfa.amsl.com
Delivered-To: ietfarch-krb-wg-archive@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2DBAE21E804A for <ietfarch-krb-wg-archive@ietfa.amsl.com>; Mon, 10 Sep 2012 09:26:08 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.449
X-Spam-Level:
X-Spam-Status: No, score=-6.449 tagged_above=-999 required=5 tests=[AWL=0.150, BAYES_00=-2.599, RCVD_IN_DNSWL_MED=-4]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Na9WmEe4P9I1 for <ietfarch-krb-wg-archive@ietfa.amsl.com>; Mon, 10 Sep 2012 09:26:07 -0700 (PDT)
Received: from mailhost.anl.gov (mailhost.anl.gov [130.202.113.50]) by ietfa.amsl.com (Postfix) with ESMTP id 6CD2821E8045 for <krb-wg-archive@lists.ietf.org>; Mon, 10 Sep 2012 09:26:06 -0700 (PDT)
Received: from mailhost.anl.gov (mailhost.anl.gov [130.202.113.50]) by localhost.anl.gov (Postfix) with ESMTP id 7A85CF97; Mon, 10 Sep 2012 11:25:54 -0500 (CDT)
Received: from lists.anl.gov (katydid.it.anl.gov [146.137.96.32]) by mailhost.anl.gov (Postfix) with ESMTP id 644C7F87; Mon, 10 Sep 2012 11:25:22 -0500 (CDT)
Received: from katydid.it.anl.gov (localhost [127.0.0.1]) by lists.anl.gov (Postfix) with ESMTP id F15B254C003; Mon, 10 Sep 2012 11:25:21 -0500 (CDT)
X-Original-To: ietf-krb-wg@lists.anl.gov
Delivered-To: ietf-krb-wg@lists.anl.gov
Received: from mailrelay.anl.gov (mailrelay.anl.gov [130.202.101.22]) by lists.anl.gov (Postfix) with ESMTP id E383054C002 for <ietf-krb-wg@lists.anl.gov>; Mon, 10 Sep 2012 11:25:19 -0500 (CDT)
Received: from localhost (localhost [127.0.0.1]) by localhost.it.anl.gov (Postfix) with ESMTP id C48B57CC0FC; Mon, 10 Sep 2012 11:25:19 -0500 (CDT)
Received: from mailrelay.anl.gov ([127.0.0.1]) by localhost (mailrelay.anl.gov [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 14849-08; Mon, 10 Sep 2012 11:25:19 -0500 (CDT)
Received: from mailgateway.anl.gov (mailgateway.anl.gov [130.202.101.28]) by mailrelay.anl.gov (Postfix) with ESMTP id 7AACE7CC0FA for <ietf-krb-wg@lists.anl.gov>; Mon, 10 Sep 2012 11:25:19 -0500 (CDT)
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: At0CANcPTlASCRkMm2dsb2JhbABFujEEBIEKIgEBAQEBCAkLCRQngiABAQIDcgYBEAsYCRYPCQMCAQIBRQYNAQcBAYgMAwiyFokHixMVhiEDkXSEfYRLjUCBPw
X-IronPort-AV: E=Sophos;i="4.80,398,1344229200"; d="scan'208";a="1448206"
Received: from dmz-mailsec-scanner-1.mit.edu ([18.9.25.12]) by mailgateway.anl.gov with ESMTP; 10 Sep 2012 11:25:04 -0500
X-AuditID: 1209190c-b7fd26d0000008d9-2d-504e14330675
Received: from mailhub-auth-3.mit.edu ( [18.9.21.43]) by dmz-mailsec-scanner-1.mit.edu (Symantec Messaging Gateway) with SMTP id 11.CD.02265.3341E405; Mon, 10 Sep 2012 12:24:19 -0400 (EDT)
Received: from outgoing.mit.edu (OUTGOING-AUTH.MIT.EDU [18.7.22.103]) by mailhub-auth-3.mit.edu (8.13.8/8.9.2) with ESMTP id q8AGOHQv032226; Mon, 10 Sep 2012 12:24:18 -0400
Received: from [192.168.1.6] (pool-96-233-106-123.bstnma.fios.verizon.net [96.233.106.123]) (authenticated bits=0) (User authenticated as ghudson@ATHENA.MIT.EDU) by outgoing.mit.edu (8.13.6/8.12.4) with ESMTP id q8AGOEh9018192 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NOT); Mon, 10 Sep 2012 12:24:16 -0400 (EDT)
Message-ID: <504E142E.1000303@mit.edu>
Date: Mon, 10 Sep 2012 12:24:14 -0400
From: Greg Hudson <ghudson@MIT.EDU>
User-Agent: Mozilla/5.0 (X11; Linux i686; rv:15.0) Gecko/20120827 Thunderbird/15.0
MIME-Version: 1.0
To: Stephen Farrell <stephen.farrell@cs.tcd.ie>
References: <5049EFFC.5090005@cs.tcd.ie>
In-Reply-To: <5049EFFC.5090005@cs.tcd.ie>
X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFmplleLIzCtJLcpLzFFi42IR4hTV1jUW8Qsw+HiC0+L91GlMFtP3XmN3 YPJY232VzWPuhCmMAUxRXDYpqTmZZalF+nYJXBkLn/ayFTxTrrixehprA+NOmS5GTg4JAROJ Xyc+sEPYYhIX7q1n62Lk4hAS2McosXxnI5SzgVFi48tvTBDOPSaJjUs6WUBaeAXUJK5vvMwG YrMIqEp07P3ECGKzCShLHDz7DaxGVCBIYtnG70wQ9YISJ2c+AYuLCOhL7N18Dmw1s0CgxPoL q8DiwgJuEu0z/4DVCwloSHz5sAdsPqeApsSfG6uYIep1JN71PYCy5SW2v53DPIFRcBaSFbOQ lM1CUraAkXkVo2xKbpVubmJmTnFqsm5xcmJeXmqRrqFebmaJXmpK6SZGcAhL8uxgfHNQ6RCj AAejEg+vBo9fgBBrYllxZe4hRkkOJiVRXk5hoBBfUn5KZUZicUZ8UWlOavEhRgkOZiUR3j97 fQOEeFMSK6tSi/JhUtIcLErivJdTbvoLCaQnlqRmp6YWpBbBZDU4OATWrFt9gVGKJS8/L1VJ gpcLZIFgUWp6akVaZk4JQikTByfIIh6gRaIgNbzFBYm5xZnpEPlTjIpS4rz7BYESAiCJjNI8 uF5Y6nnFKA70ljDvHyGgKh5g2oLrfgU0mAlosK+HD8jgkkSElFQDo09/yDxHkyfKHy9sEGEu ZNo2uXJzwb7DM7786W1L36O5/puDKsvvkxHJYscbP/B7WrDJRL1anvHVLPUhx0z3yC3Pkm30 ntopaDiF/E5J1bzhaHnw0Bwue82LnbHlEi1+Jjmty2LOKZS57mY3XPyw3bLvfPiauBwOA+vi 441bhH8VdPAd0o5XYinOSDTUYi4qTgQAO1PtHBgDAAA=
X-Virus-Scanned: Debian amavisd-new at frigga.it.anl.gov
Cc: "krb-wg mailing list (ietf-krb-wg@lists.anl.gov)" <ietf-krb-wg@lists.anl.gov>
Subject: Re: [Ietf-krb-wg] AD review of draft-ietf-krb-wg-camellia-cts
X-BeenThere: ietf-krb-wg@lists.anl.gov
X-Mailman-Version: 2.1.14
Precedence: list
List-Id: "This is a list for the IETF Kerberos Working Group. {WORLDPUB, EXTERNAL}" <ietf-krb-wg.lists.anl.gov>
List-Unsubscribe: <https://lists.anl.gov/mailman/options/ietf-krb-wg>, <mailto:ietf-krb-wg-request@lists.anl.gov?subject=unsubscribe>
List-Archive: <https://lists.anl.gov/pipermail/ietf-krb-wg>
List-Post: <mailto:ietf-krb-wg@lists.anl.gov>
List-Help: <mailto:ietf-krb-wg-request@lists.anl.gov?subject=help>
List-Subscribe: <https://lists.anl.gov/mailman/listinfo/ietf-krb-wg>, <mailto:ietf-krb-wg-request@lists.anl.gov?subject=subscribe>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: ietf-krb-wg-bounces@lists.anl.gov
Sender: ietf-krb-wg-bounces@lists.anl.gov
Thanks for the comments, Stephen. On 09/07/2012 09:00 AM, Stephen Farrell wrote: > - The IPR declaration (#1304) is noted in the write-up > but not specifically associated with this draft, so > it wouldn't show up so easily for reviewers but I can > call that out specifically in the IETF LC message, but > there is another issue: that declaration refers for > example to things that are required for compliance > with a standard. However, the wg are proposing this > as informational, so it may be less clear to IETF > LC reviewers if the terms in the declaration apply > or not. Did the WG consider that difference when > deciding to go for informational? I don't believe we specifically considered this issue, no. In theory, the same ambiguity could apply to a "proposed standard" or "draft standard," perhaps with lower probability. Is there anything you'd like us to do about this before last call beside answer the specific question? > - I think section 5 needs to say that the output of > CMAC is 128 bits regardless of key size. Agreed--though I'm not sure how the key size enters into the picture. The output length of CMAC is bounded by the cipher block size, and has no relation to the key length. I suggest adding "The output length (Tlen) is 128 bits for both key sizes." > - section 6 could do with a reference to the section of > whatever RFC says these are the parameters you need. I guess > that's [1], if so, the ordering is a little different here - > keeping the same order would have helped me a little to check > that nothing's missing. > > [1] http://tools.ietf.org/html/rfc3961#section-3 That's the correct reference. I'd suggest changing the introductory paragraph to begin with "The following parameters, required by RFC 3961 section 3, apply to...". Similarly for section 7: "The following parameters, required by RFC 3961 section 4, apply to...". As for the order, this can be corrected by moving "Default string-to-key parameters" after "Key-derivation function". > - section 6: 3961 says some things take UTF-8 as input > but you never mentioned UTF-8 here at all, do you need > to? I don't think so. Neither RFC 3962 nor the RFC 3961 simplified profile mention UTF-8. > - section 2: "The Camellia key space is dense" that's either > a non-trivial statement (in which case a reference would be > good) or else is trivial, in which case maybe just get rid of > it as it might confuse. (Even nittier nit: s/random octet > string/octet strings/) I'm echoing a statement from RFC 3962 section 3. This statement means that all bit values in the 128-bit key space are valid keys. This is true of all modern block ciphers, but is not true of DES or triple-DES (which have historically been used by Kerberos). > - section 3 has an implicit pointer to section 4, where > KDF-FEEDBACK-CMAC is defined. Maybe add a pointer or swap the > order of sections 3 & 4. Swapping the order of sections 3 and 4 makes sense to me. > - please say somewhere that "|" means catenation. (Personally > I prefer "||" but whatever.) I have no personal preference for | versus ||, but I think it's important to remain consistent with RFC 3961. I suggest adding, to the end of the first paragraph of section 3 (just before the equations): In the following summary, | indicates concatenation. > - section 6: are the en/de-cryption functions sufficiently > well specified that a coder can work from just this? I'm > guessing they are ok, but be nice to know if that's > happened. These are specified in the same level of detail as the specifications in RFC 3961 section 5.3, which have proved to be sufficiently well-specified for interoperability. > - In cross-checking section 6 with 3961 section 3 I > wasn't sure that the "string-to-key parameter format" > that needs to be specified is clearly specified. > (Note: I just did a mechanical check that the > things called for by 3961 are present, I didn't > really dive into it fully.) I think it makes sense to add, just after "Key-derivation functions" and before "Default string-to-key parameters": String-to-key parameter format: four octets indicating a 32-bit iteration count in big-endian order. Implementations may limit the count as specified in RFC 3962 section 4. I have prepared a revision of the draft with all of the edits I mentioned, but will not submit it at this time, since we've passed WGLC and I'm not certain of the editing restrictions at this point. _______________________________________________ ietf-krb-wg mailing list ietf-krb-wg@lists.anl.gov https://lists.anl.gov/mailman/listinfo/ietf-krb-wg
- [Ietf-krb-wg] AD review of draft-ietf-krb-wg-came… Stephen Farrell
- Re: [Ietf-krb-wg] AD review of draft-ietf-krb-wg-… Greg Hudson
- Re: [Ietf-krb-wg] AD review of draft-ietf-krb-wg-… Stephen Farrell
- Re: [Ietf-krb-wg] AD review of draft-ietf-krb-wg-… Jeffrey Hutzelman
- Re: [Ietf-krb-wg] ipr in draft-ietf-krb-wg-camell… Sam Hartman