Re: [openpgp] Default preferences for the future

"Mark D. Baushke" <mdb@juniper.net> Wed, 22 March 2017 15:08 UTC

Return-Path: <mdb@juniper.net>
X-Original-To: openpgp@ietfa.amsl.com
Delivered-To: openpgp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3F1A0129464 for <openpgp@ietfa.amsl.com>; Wed, 22 Mar 2017 08:08:50 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.922
X-Spam-Level:
X-Spam-Status: No, score=-1.922 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=junipernetworks.onmicrosoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id R3xW0orNsKeX for <openpgp@ietfa.amsl.com>; Wed, 22 Mar 2017 08:08:49 -0700 (PDT)
Received: from NAM01-BN3-obe.outbound.protection.outlook.com (mail-bn3nam01on0091.outbound.protection.outlook.com [104.47.33.91]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 6ECFA129975 for <openpgp@ietf.org>; Wed, 22 Mar 2017 08:00:50 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=junipernetworks.onmicrosoft.com; s=selector1-juniper-net; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version; bh=0bEP10jJCTA+cbSMqMOkB0raobo3aExeEwRLyFrsUeA=; b=RPZrrbaA+alnSzOJQSrOmhIUNk18yQCLoqvH9avmHd4p15b7R+EpvGnN5PI5b2OxQuIxrmdYBMNAQCiObCKYeX8iquu6Ln0ctNska4QRZT2iQdAIugBeDvHbylrnZ28SsP1PD9oWfuOLim6BY/Bowt7ys/VusB1jkATRSPZZTnc=
Received: from MWHPR05CA0013.namprd05.prod.outlook.com (10.168.242.151) by CY1PR0501MB1755.namprd05.prod.outlook.com (10.163.140.25) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256_P256) id 15.1.991.4; Wed, 22 Mar 2017 15:00:47 +0000
Received: from BL2FFO11FD035.protection.gbl (2a01:111:f400:7c09::137) by MWHPR05CA0013.outlook.office365.com (2603:10b6:300:59::23) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256_P256) id 15.1.991.4 via Frontend Transport; Wed, 22 Mar 2017 15:00:47 +0000
Authentication-Results: spf=softfail (sender IP is 66.129.239.18) smtp.mailfrom=juniper.net; att.com; dkim=none (message not signed) header.d=none;att.com; dmarc=fail action=none header.from=juniper.net;
Received-SPF: SoftFail (protection.outlook.com: domain of transitioning juniper.net discourages use of 66.129.239.18 as permitted sender)
Received: from p-emfe01a-sac.jnpr.net (66.129.239.18) by BL2FFO11FD035.mail.protection.outlook.com (10.173.161.131) with Microsoft SMTP Server (version=TLS1_0, cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA_P384) id 15.1.977.7 via Frontend Transport; Wed, 22 Mar 2017 15:00:46 +0000
Received: from p-mailhub01.juniper.net (10.160.2.17) by p-emfe01a-sac.jnpr.net (172.24.192.21) with Microsoft SMTP Server (TLS) id 14.3.123.3; Wed, 22 Mar 2017 08:00:20 -0700
Received: from eng-mail01.juniper.net (eng-mail01.juniper.net [172.17.28.114]) by p-mailhub01.juniper.net (8.14.4/8.11.3) with ESMTP id v2MF0J8I009733; Wed, 22 Mar 2017 08:00:19 -0700 (envelope-from mdb@juniper.net)
Received: from eng-mail01.juniper.net (localhost [127.0.0.1]) by eng-mail01.juniper.net (Postfix) with ESMTP id 9692311454; Wed, 22 Mar 2017 08:00:02 -0700 (PDT)
To: "HANSEN, TONY L" <tony@att.com>, "openpgp@ietf.org" <openpgp@ietf.org>
In-Reply-To: <87h92litv6.fsf@wheatstone.g10code.de>
References: <3b89c96a-0bb6-cd09-cbf7-1f9e26f04bd6@addere.ch> <52027.1490051694@eng-mail01.juniper.net> <56ED3B74-0BA4-4DC2-943E-B1CCD1F32AE2@att.com> <11858.1490111702@eng-mail01.juniper.net> <87h92litv6.fsf@wheatstone.g10code.de>
Comments: In-reply-to: Werner Koch <wk@gnupg.org> message dated "Wed, 22 Mar 2017 09:43:57 +0100."
From: "Mark D. Baushke" <mdb@juniper.net>
Date: Wed, 22 Mar 2017 08:00:02 -0700
Message-ID: <60459.1490194802@eng-mail01.juniper.net>
Sender: mdb@juniper.net
MIME-Version: 1.0
Content-Type: text/plain
X-EOPAttributedMessage: 0
X-MS-Office365-Filtering-HT: Tenant
X-Forefront-Antispam-Report: CIP:66.129.239.18; IPV:NLI; CTRY:US; EFV:NLI; SFV:NSPM; SFS:(10019020)(6009001)(39840400002)(39450400003)(39860400002)(39850400002)(39410400002)(2980300002)(199003)(189002)(9170700003)(76506005)(189998001)(53416004)(6392003)(5003940100001)(53936002)(93886004)(7846003)(55016002)(305945005)(7126002)(6266002)(356003)(106466001)(6246003)(47776003)(105596002)(2501003)(117636001)(76176999)(2950100002)(81166006)(2906002)(54356999)(38730400002)(229853002)(77096006)(2810700001)(48376002)(7696004)(86362001)(8676002)(50466002)(8936002)(50986999)(5660300001)(42262002); DIR:OUT; SFP:1102; SCL:1; SRVR:CY1PR0501MB1755; H:p-emfe01a-sac.jnpr.net; FPR:; SPF:SoftFail; MLV:sfv; A:1; MX:1; LANG:en;
X-Microsoft-Exchange-Diagnostics: 1; BL2FFO11FD035; 1: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
X-MS-Office365-Filtering-Correlation-Id: 41994fa5-ec5b-4164-292d-08d4713438bb
X-Microsoft-Antispam: UriScan:; BCL:0; PCL:0; RULEID:(22001)(2017030254075); SRVR:CY1PR0501MB1755;
X-Microsoft-Exchange-Diagnostics: 1; CY1PR0501MB1755; 3:4mvgBZEcTfVRbAuc2XTDGIfIRRPX2ZjRVz/JHKj7MeVlg97mj9eINQg2FxMTBRdqH/6X9diVU6aTpY7bHx4s1g9DRGNKg8/413ow2FIZIDf2CD0BimJNZD0vVhxpLsP8JX+JEFfzzpbF8/km1/eG5sfh97Ow0upiT3Odw79Om4ePWcwiRfMUefpouXVnn8vkYGeBqqoWFx6efthgquaXEnKWhXYMa6d4oZ04MH14RhHJSzDWFeqr77D/feNtkXOrvzHYPJZLsZt+8AZsHbUpICFFfFEQE4OBviUxTYXLPdinawuo9H13zV9Lyf8SXByjMEWS5v1FFTnjU6HehNjxOsr46SDQfwhZWa/l6UyyCjXhdfrBGS8UGtISkUgsUMPlXDbrKAo0AueHYtPENuej0w==; 25:155BYXhmp70U6SIBEc2bvUiMSS9Dbg7u31N+BVikSjs5W8cWGsBCc9Md4atrFWKoZaeM93vJOK6bJOLHGCLmJA5cssGSJTp6nTE/aE7z7iQO3hUfA3SZppjay1AoQAZi7Y/1LM0VO5wkGVbozuTLOkPmZZTO/YTWsh433Oie3FEp3cOQjHIsyChch8tNHv5W2g0xPrFdoi0cSJyqeosrI03zWL6GKPTO1OYP+gBeqvZ1qdd83vOqzuUpFfTX8owKFatbeRwD3aAz67ldt6YNKXUJP6qoGk8hpVRVWU4RPrtLIyCN3JSAY6N8Vaa3/BaryaQTD4rCIIhD1o8Po4VeOaMBnH4tvoqDUjI0d5pPSlzC/ky6VwPAwnzaCDO09EI4faNEGNExY9Hn4c8I2tQ9U296WYUQ5+mfDAeeYMpynvGSkA2jDU0ilz3B/izzxWE4gBjtJSCt3ccOqkAlAvJdbQ==
X-Microsoft-Exchange-Diagnostics: 1; CY1PR0501MB1755; 31:JfjzaF4bfMFkjuPKzjw3gGj1rfmLY6G0b95MuGaeGqHtyZQF6S4/WanwVhMmnLEE9Hm4vvfrd3zaJLuX9APz+gtsLnmyuMrCHwgLolGBJcEXUqMOyvwbCcSRaYS+3TbNLNLoho0B0ShgwcW+QuET9N5FCQLY5AUe3cOUsAkMXAji8gYbbzJp2gj07X5ixW6h4ee727EbTjda3BzpiHff04eHJ9bdZnbQafM+hbtT8ZEGuqkOaZ9DAzHVoQ/7vYhBpNVtpew4+mlgi6nzEx8vkgkDW/suOJd8gS1A/zOcdTA=; 20:Za2CfYPrOQvGT+tCwxmkK1MlUpQyvoP9rbsdeG3Ps3dFiUr60F+i589dJHTTEOjR6LvCtyk9iNbx6Qku7f/MSdbILUS5uDQQY4u14hhhoA4w6HGL+Znd5PhbHifSRa6CzRaEmjjkgEOPbi08uufDDQLvJdQpH/9amjEy5VclFhtBkqUJbYLXhDnYnbHyLGUmioyIyzENlAC548C9M501oN/UZjKbTbp8eqyYxhVDSObPo6Vv9ZKhLFyvu+lwuWJOTr3hVWcvGAF9OdRo349gN82arKXU32F5YUm+Vf1oBkjULjeuCSB3XohaJFAUknUIFpm39H22Yhz0VLWnslQVGkuHLyr6Y3T2ONJC5QxH5XYryKhOglLW2wlnpblAau2Qt5h7vLKahNA5xEjbMfNSFPGIVeMMausgim++NH4kNuiVwdZZc3GBUYRUuYmJoSlLj887T+7ExqPeQQ2oox0vgEKHaYvGsfOx7wphgeGlDiKD5EoG06naidGUsTee5c9s
X-Microsoft-Antispam-PRVS: <CY1PR0501MB17559A8E8FEE6EE7A3059A71BF3C0@CY1PR0501MB1755.namprd05.prod.outlook.com>
X-Exchange-Antispam-Report-Test: UriScan:(138986009662008);
X-Exchange-Antispam-Report-CFA-Test: BCL:0; PCL:0; RULEID:(6040375)(601004)(2401047)(5005006)(13015025)(8121501046)(13017025)(13024025)(13018025)(13023025)(3002001)(10201501046)(6055026)(6041248)(20161123562025)(20161123564025)(20161123555025)(20161123560025)(20161123558025)(6072148); SRVR:CY1PR0501MB1755; BCL:0; PCL:0; RULEID:; SRVR:CY1PR0501MB1755;
X-Microsoft-Exchange-Diagnostics: 1; CY1PR0501MB1755; 4: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
X-Forefront-PRVS: 02543CD7CD
X-Microsoft-Exchange-Diagnostics: 1; CY1PR0501MB1755; 23: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
X-Microsoft-Exchange-Diagnostics: 1; CY1PR0501MB1755; 6:jiWxtL5NZrLNQslxD5j0lQEG/lBuZUqhjumVqPwvAc+Rve1yHvQsI+VGpTAihS5T9pTx3kjU2XwXK3sDHchxCfMgAVfd6pwjuOf/B4xPApuTJaQm3oFMaMDVOl4WCnF3hOWfuIBCBfa6dP8CKfkEGG3nJNIl1394P82EvEdayzJwGhXRmdnMJsMw9qkaw0mq7dhFdLlkSpaxpMg0IVJmYfekGtMN8aERfSDBWxoV+qL5pwftAzhYHVhZBdnzAxAB1rnvfPnaBEXHDfgnbs3NJtbwcWvrx9Sa66vcmjJTcYAj0HKVPlEW8nsjK8z62CGG6572fZj09eMM0M8iJ7IEt78wmX0+LIL7BQ68ZurXKBSIOROM11PBzeBdsijMM1Y2BVrn437mrwPVG7fnC6/dL9BnS5G+UrAJivYzVKy0z5o=; 5:XUonHYi8SqfP00uR/lmw8ebhZFXJg4/4zEQsC/8mvTuo33lLaWzyNKSx6Tqn7IXsVg+y9C7YAJusWkIME6aIX02HMjN3bUFqd2q7HmYNZINDXMHV4wp1TfCjWSNudTf2Z6UjhrMTCYwH1vvS0Gpsag==; 24:8978j83Zi+LCay+N1p3cTjZgdj6CalaNesl+68myjuXFYNWzBD4wRERoZIXVqFV611kny83fTB/0LSsTocMFvfBaT2agC1/7XFY2CWWDUkQ=
SpamDiagnosticOutput: 1:99
SpamDiagnosticMetadata: NSPM
X-Microsoft-Exchange-Diagnostics: 1; CY1PR0501MB1755; 7:iVSV1MN1Q1z9iI2EUUpM5a2RMck54NJUQqAFvTLysYCbR3m36vbi4+aQoKGwY+USSTDN07Gzi11ufNyZoCJKicJKyRR9rhyKK4O6QH3mX1XFTiPk2pNE2YA17aspcBhfmG6chj1NNT41CyhgsQkGE0txLQWAm7FhVqvacr9DWXyiryv+ZcIi0dicQuJ7E3LW9D5veMXl28PozIVtHmwCZ/JaTHUCsp8OGjHVZQQ+jLztXM7+ydIdP9PbQ6FbIV4ehCND8cQUoIr4jymcXII5rdUunXsZkFE9Up393qv49R5MsHlWpKRoT6kOVPqTy4KF/piV1V8LwViDw/YTebyeLQ==
X-OriginatorOrg: juniper.net
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 22 Mar 2017 15:00:46.7926 (UTC)
X-MS-Exchange-CrossTenant-Id: bea78b3c-4cdb-4130-854a-1d193232e5f4
X-MS-Exchange-CrossTenant-OriginalAttributedTenantConnectingIp: TenantId=bea78b3c-4cdb-4130-854a-1d193232e5f4; Ip=[66.129.239.18]; Helo=[p-emfe01a-sac.jnpr.net]
X-MS-Exchange-CrossTenant-FromEntityHeader: HybridOnPrem
X-MS-Exchange-Transport-CrossTenantHeadersStamped: CY1PR0501MB1755
Archived-At: <https://mailarchive.ietf.org/arch/msg/openpgp/H0RojCB3fFqX0wuMjG36Sm4Mhns>
Subject: Re: [openpgp] Default preferences for the future
X-BeenThere: openpgp@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "Ongoing discussion of OpenPGP issues." <openpgp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/openpgp>, <mailto:openpgp-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/openpgp/>
List-Post: <mailto:openpgp@ietf.org>
List-Help: <mailto:openpgp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/openpgp>, <mailto:openpgp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 22 Mar 2017 15:08:50 -0000

Werner Koch <wk@gnupg.org> writes:

> On Tue, 21 Mar 2017 16:55, mdb@juniper.net said:
> 
> > and we do not yet really need SHA-3. That said, if you want to add
> > agility to OpenPGP, you could define SHA3-256 and SHA3-512 code points.
> > I see little point in any of the other alternatives.
> 
> I added these codepoints to the list of hash algorithms.
> 
>       |        12 | SHA3-256 [FIPS202]              | "SHA3-256"   |
>       |        13 | Reserved                        |              |
>       |        14 | SHA3-512 [FIPS202]              | "SHA3-512"   |
> 
> Okay?

Yeah, this seems reasonable to me. 

I do worry a little bit that we are adding more flexibility than we need
today which could make it more painful for all implementations to
properly interoperate.

> I also updated the reference to FIPS documents to the latest versions.

Okay.

	-- Mark