IETF Logo Mail Archive

Re: [openpgp] The Argon2 proposal seems incomplete (Draft 6)

Daniel Huigens <d.huigens@protonmail.com> Thu, 04 August 2022 23:16 UTC

Return-Path: <d.huigens@protonmail.com>
X-Original-To: openpgp@ietfa.amsl.com
Delivered-To: openpgp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2AC2FC147930 for <openpgp@ietfa.amsl.com>; Thu, 4 Aug 2022 16:16:02 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.107
X-Spam-Level:
X-Spam-Status: No, score=-2.107 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=protonmail.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id HqrL5SWtrXra for <openpgp@ietfa.amsl.com>; Thu, 4 Aug 2022 16:15:57 -0700 (PDT)
Received: from mail-40133.protonmail.ch (mail-40133.protonmail.ch [185.70.40.133]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 47091C14F72D for <openpgp@ietf.org>; Thu, 4 Aug 2022 16:15:57 -0700 (PDT)
Date: Thu, 04 Aug 2022 23:15:50 +0000
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=protonmail.com; s=protonmail3; t=1659654954; x=1659914154; bh=5GPSL8FTbmHYfLL3jig1SeID0hjE8+7G2DOB10gtWNU=; h=Date:To:From:Cc:Reply-To:Subject:Message-ID:In-Reply-To: References:Feedback-ID:From:To:Cc:Date:Subject:Reply-To: Feedback-ID:Message-ID; b=GEnsYudVgj1redxXWm2BGddxpayWS0WovG1v1s/T9LqNSLZHzerTfLmtx0+mcXl/U YTLP0z9GV400Rd2gFSVexvUoD7M68AcXWuzcIGCu3UTadu7/PDe7aE9y8+wNDQ45A/ +Vw4EFGB/U1RKqQ39o9xM7U4y0qfXV/ZIE8+N/KxiwyblwAKISnGtOJGqx3tjnWoIO 1DaUWFGJgTS/O83blO2m6F5KBHTdtdj0mgsXcSplWEDUHH19L0YqKmjP10DdqN+epj Q4at0qv2Ox4Oipmk0A+roARFNA1eFy13sOsjuAGDmKFVJpAqkc3qH8ZZrnQOnvAFYa nU27zKtkOBzxg==
To: Bruce Walzer <bwalzer@59.ca>
From: Daniel Huigens <d.huigens@protonmail.com>
Cc: Stephen Farrell <stephen.farrell@cs.tcd.ie>, Justus Winter <justus@sequoia-pgp.org>, openpgp@ietf.org
Reply-To: Daniel Huigens <d.huigens@protonmail.com>
Message-ID: <4Cruh_hkkw0187qZ9pPYhYrzUZwusIGEeAgmFqc8fpAN-vIVpKM1S-hlfNl9Dei0xsu77QHOGNatGTIE761w9vp2rThI3CLpMjq-WO3b7ik=@protonmail.com>
In-Reply-To: <YuvpLbCjWZdJgwsg@ohm.59.ca>
References: <YuAErZRsF/KbOw1s@watt.59.ca> <875yjhjg2c.fsf@thinkbox> <YuP093G0UKhAJF4U@watt.59.ca> <152ab077-e4c9-7aed-8b44-4e999ed19e89@cs.tcd.ie> <YulNyD1gnC0U+1pN@ohm.59.ca> <Omn5mCBFz0ccFYcDgRjHCKseR_9ixmz1CTG55SDrNRysaY5Ni0i3I8ICzpPNOW0nWKcOnxIuWhUwIugXOdN-zcDil_ftWVALPXWPpSsjWnc=@protonmail.com> <YuqYWiPSitbCJtk4@ohm.59.ca> <cT0yMpjoOaqHutiTUb8wUExnaUoWyV9e4JrlCIkXqw8oTTUEcVebd-C8-gOcP8J72EddREQkybjoycI_0nuYkvz1VlkO5g81jxe3ADA2vfQ=@protonmail.com> <YuvpLbCjWZdJgwsg@ohm.59.ca>
Feedback-ID: 2934448:user:proton
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: quoted-printable
Archived-At: <https://mailarchive.ietf.org/arch/msg/openpgp/DSGmTkjM3q1hnl4BdK9yZxctzy0>
Subject: Re: [openpgp] The Argon2 proposal seems incomplete (Draft 6)
X-BeenThere: openpgp@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "Ongoing discussion of OpenPGP issues." <openpgp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/openpgp>, <mailto:openpgp-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/openpgp/>
List-Post: <mailto:openpgp@ietf.org>
List-Help: <mailto:openpgp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/openpgp>, <mailto:openpgp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 04 Aug 2022 23:16:02 -0000

On Thursday, August 4th, 2022 at 11:43, Bruce Walzer wrote:

> You could do this:
> 
> > The values of t, p and m, from section 4 of [RFC9106] are RECOMMENDED.

Yeah, that might be better. Do you happen to feel like making a MR?

> ... but section 4 makes several suggestions for those values so this
> wouldn't be an actual recommendation. It implies that it might be best
> to tune the parameters which would be obviously absurd for the OpenPGP
> case.

Why would it be obviously absurd? What if an application indeed has one
of the use cases laid out at the beginning of section 4, so that one of
those would be appropriate? Or, what if it has a use case for symmetric
encryption on a single device, and wants to select values for that
specific device, as laid out at the end of section 4?

The current vagueness in the text allows implementations some wiggle
room, and given that OpenPGP is meant to be a general specification,
that might be a good thing.

Best,
Daniel

v2.23.0 | Report a Bug | By Email