Re: [Openpgp-dt] first set of PRs created from step-by-step branch
Paul Wouters <paul@nohats.ca> Sat, 24 July 2021 12:41 UTC
Return-Path: <paul@nohats.ca>
X-Original-To: openpgp-dt@ietfa.amsl.com
Delivered-To: openpgp-dt@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 833B03A3997 for <openpgp-dt@ietfa.amsl.com>; Sat, 24 Jul 2021 05:41:21 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.096
X-Spam-Level:
X-Spam-Status: No, score=-2.096 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_BLOCKED=0.001, SPF_HELO_NONE=0.001, SPF_NONE=0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=nohats.ca
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id sKlIQl3OwGML for <openpgp-dt@ietfa.amsl.com>; Sat, 24 Jul 2021 05:41:16 -0700 (PDT)
Received: from mx.nohats.ca (mx.nohats.ca [IPv6:2a03:6000:1004:1::68]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 604743A3990 for <openpgp-dt@ietf.org>; Sat, 24 Jul 2021 05:41:16 -0700 (PDT)
Received: from localhost (localhost [IPv6:::1]) by mx.nohats.ca (Postfix) with ESMTP id 4GX5Qb5qBmz1qR; Sat, 24 Jul 2021 14:41:11 +0200 (CEST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=nohats.ca; s=default; t=1627130471; bh=/7Vk7RFJzKvxVWpCwEppdO+E3yHnUDqJWDSk5RthDwM=; h=From:Subject:Date:References:Cc:In-Reply-To:To; b=EgO9ZMsGuIQ/sd5B5hKpTPX0pCVpxS47ksDKANbO/nOZaM7urGnbRwU13jVNXI9/f VNKbrOZyAbEhG/L0F7SBaMrWElE/BFmSeIWloCWRaz5ongTTXw6/435/58kxCKQ1h5 KkjUDiI+IDwBnu9Y136uiKhly8XwGmPzDyQoCcwA=
X-Virus-Scanned: amavisd-new at mx.nohats.ca
Received: from mx.nohats.ca ([IPv6:::1]) by localhost (mx.nohats.ca [IPv6:::1]) (amavisd-new, port 10024) with ESMTP id KGnAepe_JNca; Sat, 24 Jul 2021 14:41:10 +0200 (CEST)
Received: from bofh.nohats.ca (bofh.nohats.ca [193.110.157.194]) (using TLSv1.2 with cipher ADH-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by mx.nohats.ca (Postfix) with ESMTPS; Sat, 24 Jul 2021 14:41:09 +0200 (CEST)
Received: from smtpclient.apple (23-233-74-210.cpe.pppoe.ca [23.233.74.210]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (No client certificate requested) by bofh.nohats.ca (Postfix) with ESMTPSA id 75429CF61A; Sat, 24 Jul 2021 08:41:08 -0400 (EDT)
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: quoted-printable
From: Paul Wouters <paul@nohats.ca>
Mime-Version: 1.0 (1.0)
Date: Sat, 24 Jul 2021 08:41:04 -0400
Message-Id: <6598AAF5-3EA7-4F13-8237-6CDA7C759144@nohats.ca>
References: <87eebolgk3.fsf@fifthhorseman.net>
Cc: openpgp-dt@ietf.org
In-Reply-To: <87eebolgk3.fsf@fifthhorseman.net>
To: Daniel Kahn Gillmor <dkg@fifthhorseman.net>
X-Mailer: iPhone Mail (18F72)
Archived-At: <https://mailarchive.ietf.org/arch/msg/openpgp-dt/0iBF2iNXUPXK2cLUiLgnj_AyzL4>
Subject: Re: [Openpgp-dt] first set of PRs created from step-by-step branch
X-BeenThere: openpgp-dt@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: OpenPGP working group design team <openpgp-dt.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/openpgp-dt>, <mailto:openpgp-dt-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/openpgp-dt/>
List-Post: <mailto:openpgp-dt@ietf.org>
List-Help: <mailto:openpgp-dt-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/openpgp-dt>, <mailto:openpgp-dt-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 24 Jul 2021 12:41:22 -0000
On Jul 23, 2021, at 23:11, Daniel Kahn Gillmor <dkg@fifthhorseman.net> wrote: > > > With no hats on, I reviewed these branches, and i've tried to mark > things as "approved" where they seem reasonable. > > I think we already have v5 keys in the draft, so i think what you are > calling "v5-keys" is actually "v5 SKESK". Yes, i did. > As i wrote over on > https://gitlab.com/openpgp-wg/rfc4880bis/-/merge_requests/54, i think > the v5 SKESK and "AEAD-style" S2K #253 really depend on our AEAD > definition, and i think it'll be easier for us to have the AEAD > conversation first. > > If you'd like, i can try to propose an alternate, short series that just > includes the current AEAD specification plus the AEAD-specific set of > test vectors. If we can get consensus on that, then moving through the > v5 SKESK and #253 S2K should be simpler, bite-size pieces by comparison. That would be good. > If it would be useful, i can also propose a variant of AEAD with many > fewer knobs as a comparison. Each knob can cause negotiation failures > and deprecation difficulties, and i'm worried that the current amount of > flexibility could saddle future implementations with a lot of technical > debt. How would that interfere with current deployment ? I would like this to be a separate issue on the tracker. > this makes sense, we can always review the outstanding changes in the > step-by-step branch to pull them in once we've tackled the harder stuff I’m still trying to get more text moved in, but yes we can always do that later. Paul
- [Openpgp-dt] first set of PRs created from step-b… Paul Wouters
- Re: [Openpgp-dt] first set of PRs created from st… Daniel Kahn Gillmor
- Re: [Openpgp-dt] first set of PRs created from st… Paul Wouters
- Re: [Openpgp-dt] first set of PRs created from st… Daniel Kahn Gillmor