IETF Logo Mail Archive

Re: [dnsext] Adopting draft: draft-hoffman-dnssec-ecdsa-04.txt

Phillip Hallam-Baker <hallam@gmail.com> Fri, 07 January 2011 15:25 UTC

Return-Path: <dnsext-bounces@ietf.org>
X-Original-To: namedroppers-archive-gleetwall6@lists.ietf.org
Delivered-To: ietfarch-namedroppers-archive-gleetwall6@core3.amsl.com
Received: from [127.0.0.1] (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id BEFD13A690C; Fri, 7 Jan 2011 07:25:56 -0800 (PST)
X-Original-To: dnsext@core3.amsl.com
Delivered-To: dnsext@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 78A863A690B for <dnsext@core3.amsl.com>; Fri, 7 Jan 2011 07:25:54 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.664
X-Spam-Level:
X-Spam-Status: No, score=-3.664 tagged_above=-999 required=5 tests=[AWL=-0.065, BAYES_00=-2.599, RCVD_IN_DNSWL_LOW=-1]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ld4XJyifeqgP for <dnsext@core3.amsl.com>; Fri, 7 Jan 2011 07:25:53 -0800 (PST)
Received: from mail-gw0-f44.google.com (mail-gw0-f44.google.com [74.125.83.44]) by core3.amsl.com (Postfix) with ESMTP id 309C23A6907 for <dnsext@ietf.org>; Fri, 7 Jan 2011 07:25:53 -0800 (PST)
Received: by gwj17 with SMTP id 17so9362761gwj.31 for <dnsext@ietf.org>; Fri, 07 Jan 2011 07:27:59 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:received:in-reply-to :references:date:message-id:subject:from:to:cc:content-type :content-transfer-encoding; bh=sQOwCiEtgI6o71IDAvWiveJIXi7om2L7QyjYCbsQetg=; b=m+M6FmjyCMRDjKWJCZk1fFSWgNkxoSpdYbJPQXqtkr+Sy0ojFeiDN4lt8qZxWIlJPC SHZnpOP7Do/VdoaBoqq9y1hICDB6enqGD1ckQLVZcu656cjMFDCgfigQhzakGFbA01Eo 3CWyznqgzCJ7B1x0B9GjLS+i349Z/UWTrQWYA=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type:content-transfer-encoding; b=YAVb1VlIxGGS18NfXDX1oKYFguZtQPfgvmMustIY61yqRcIdDUwHNSc6OBN0ky9M1y 6iDFrMG9CzaOGHPDfHE84AGEqPgoI89KKcu6/mWtg+RZwoN0fkEM2W+eW1vf1jmiNmNb YBFjgcptV6q+eSmQ4rdZSI+YpOCYMDBkDXUrw=
MIME-Version: 1.0
Received: by 10.100.228.14 with SMTP id a14mr13670346anh.239.1294414079448; Fri, 07 Jan 2011 07:27:59 -0800 (PST)
Received: by 10.100.31.8 with HTTP; Fri, 7 Jan 2011 07:27:59 -0800 (PST)
In-Reply-To: <821v4oeoeq.fsf@mid.bfk.de>
References: <4D014A84.5070204@ogud.com> <4D2390DE.8050409@ogud.com> <4D23A061.3060501@vpnc.org> <4D248950.3040208@ogud.com> <4D248A72.5010404@vpnc.org> <a06240801c94a3ed54f9e@10.31.200.116> <Prayer.1.3.3.1101051839410.18449@hermes-2.csi.cam.ac.uk> <AANLkTimnz9CBDbjXc0V2=zdM6PZnSs4_+ZaEL8CCVbXk@mail.gmail.com> <821v4oeoeq.fsf@mid.bfk.de>
Date: Fri, 07 Jan 2011 10:27:59 -0500
Message-ID: <AANLkTinVk2M2P8M4ehYord-+fC1zvGzu=wbijrZy_m95@mail.gmail.com>
From: Phillip Hallam-Baker <hallam@gmail.com>
To: Florian Weimer <fweimer@bfk.de>
Cc: Edward Lewis <Ed.Lewis@neustar.biz>, Paul Hoffman <paul.hoffman@vpnc.org>, dnsext@ietf.org
Subject: Re: [dnsext] Adopting draft: draft-hoffman-dnssec-ecdsa-04.txt
X-BeenThere: dnsext@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: DNS Extensions working group discussion list <dnsext.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/dnsext>, <mailto:dnsext-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/dnsext>
List-Post: <mailto:dnsext@ietf.org>
List-Help: <mailto:dnsext-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsext>, <mailto:dnsext-request@ietf.org?subject=subscribe>
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
Sender: dnsext-bounces@ietf.org
Errors-To: dnsext-bounces@ietf.org

Well if the attacks are not theoretical we should not be considering
them at all.


I would ignore communication for calculation of work factor.

Shamir's TWIRL device shows one way of avoiding the communication issue.

We are talking about worst case here and we are always going to have a
significant degree of ambiguity. But even if you assume infinite
memory and infinite communication bandwidth, you can arrive at a lower
bound for the work factor.

We can also impose reasonable memory constraints like limiting the
number of storage locations to the number of atoms in the earth's
crust or whatever.


But the main point is that while everyone in the IETF is welcome to
participate in such a discussion we should be having exactly one
discussion, not one per WG. And we certainly should not be having
different discussions leading to different conclusions.


On Fri, Jan 7, 2011 at 10:14 AM, Florian Weimer <fweimer@bfk.de> wrote:
> * Phillip Hallam-Baker:
>
>> Work factor using known best attack is much better defined.
>
> Nope, because attacks tend to be theoretical, and it is hard to tell
> if the attacks could actually implemented as described in the
> technical reports, given sufficient resources.  Things like
> communication overhead in a parallel implementation are difficult to
> estimate and often not taken into account.  Even if this is resolved
> in some way (but it won't ever happen, I'm pretty sure), you have to
> deal with the question of trade-offs: how do you fold sizes and
> bandwidths of several types of storage, processing speeds and
> communication costs into a single number?
>
> If there are working attacks which you can run on real hardware, it
> makes sense to speak of work factors.  But then, you don't want to use
> the algorithms anymore, so this isn't an interesting case, either.
>
>> But all this is really outside the parameters of what DNSEXT should
>> have to concern itself with.
>
> I agree.  If there's a solution for this issue (due to very
> significant advances in cryptography, which are rather unlikely, given
> past performance), then the DNSSEC standards can use that knowledge.
> Right now, there is no such thing, at least in the public literature.
>
> --
> Florian Weimer                <fweimer@bfk.de>
> BFK edv-consulting GmbH       http://www.bfk.de/
> Kriegsstraße 100              tel: +49-721-96201-1
> D-76133 Karlsruhe             fax: +49-721-96201-99
>



-- 
Website: http://hallambaker.com/
_______________________________________________
dnsext mailing list
dnsext@ietf.org
https://www.ietf.org/mailman/listinfo/dnsext

v2.23.0 | Report a Bug | By Email