Re: [openpgp] Proposal to include AEAD OCB mode to 4880bis

Ronald Tse <tse@ribose.com> Fri, 27 October 2017 11:17 UTC

Return-Path: <tse@ribose.com>
X-Original-To: openpgp@ietfa.amsl.com
Delivered-To: openpgp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8227413F4D3 for <openpgp@ietfa.amsl.com>; Fri, 27 Oct 2017 04:17:40 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ribose.onmicrosoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id cK3hfz0rCFZS for <openpgp@ietfa.amsl.com>; Fri, 27 Oct 2017 04:17:37 -0700 (PDT)
Received: from APC01-HK2-obe.outbound.protection.outlook.com (mail-eopbgr1280054.outbound.protection.outlook.com [40.107.128.54]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id AAC4D13B109 for <openpgp@ietf.org>; Fri, 27 Oct 2017 04:17:36 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ribose.onmicrosoft.com; s=selector1-ribose-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version; bh=Tk4gdAVzUe41PXHsbpr7kbSrdn7T/xc0Jx9rjlx8qek=; b=YHM11ORsXr5a9e3ZWfM1cIFntShH0iE/w937r5xEtU6tTbyR22/ZVUqBUsVhNMMvEwGmDZkT0HPFqmYMViC7PKHJfo8Iz7lCjtRhDKCeQlKkUd+9XTJq8kfyDoHsfHe4pjU6MQoEJpN2j2Xrkzh/OBNQxVZJ6xaENvk5T25QVCg=
Received: from KL1PR01MB1047.apcprd01.prod.exchangelabs.com (10.169.108.13) by KL1PR01MB1048.apcprd01.prod.exchangelabs.com (10.169.108.14) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384_P256) id 15.20.156.4; Fri, 27 Oct 2017 11:17:31 +0000
Received: from KL1PR01MB1047.apcprd01.prod.exchangelabs.com ([fe80::8063:56cb:84b9:41c5]) by KL1PR01MB1047.apcprd01.prod.exchangelabs.com ([fe80::8063:56cb:84b9:41c5%14]) with mapi id 15.20.0156.007; Fri, 27 Oct 2017 11:17:31 +0000
From: Ronald Tse <tse@ribose.com>
To: "openpgp@ietf.org" <openpgp@ietf.org>
Thread-Topic: [openpgp] Proposal to include AEAD OCB mode to 4880bis
Thread-Index: AQHTTXH5xYQNIsRUz0C1s+LLoU2hJaL1WjoAgAAH/ICAAXdQgIAAibPGgAAB+YCAABgzAIAABycAgAAKAQCAAADogA==
Date: Fri, 27 Oct 2017 11:17:31 +0000
Message-ID: <0E4099C2-B727-41E9-8F25-BDBD07C2FA75@ribose.com>
References: <D0505748-E376-4CF9-8906-9AD77838FB23@ribose.com> <1508981649515.71466@cs.auckland.ac.nz> <07C9EFDF-C8C2-4433-A9F9-DC3D7AFD5499@ribose.com> <6AC83857-62D9-45DF-9DAE-928CF0E45A96@nohats.ca> <87she556tv.fsf@wheatstone.g10code.de> <1509093954061.51049@cs.auckland.ac.nz> <36023233-856C-4A6D-BAF9-28037B4DA0F7@ribose.com> <20171027123826.693047e6@pc1> <87she44znf.fsf@wheatstone.g10code.de>
In-Reply-To: <87she44znf.fsf@wheatstone.g10code.de>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach: yes
X-MS-TNEF-Correlator:
authentication-results: spf=none (sender IP is ) smtp.mailfrom=tse@ribose.com;
x-originating-ip: [203.145.95.11]
x-ms-publictraffictype: Email
x-microsoft-exchange-diagnostics: 1; KL1PR01MB1048; 6:1tILyk0p1V19rKLd7wEsjfsNQ50b+8aYUNQf+a6ylksRlFHpLG6MCKsDaj912RYcbO/mvOnFX+1DWIZ18JjLtMbaIGMdu3LFDmR/YV1CEMnjvRgJwWKMTfx6svRp/B0wFnobZeKglzhJz1oJ0aeH3vtcEBfjrjwJ/fqWOS9W87bvM3NZSTQI9ffq1z5sYHQteqCycSaGbwg/WBTrVCUMBNkINuliT5vrMp23d4iIxxJ6fWCkIGbAUK5bmsFszHEkr3rsqWa3VKwhsM29f3CURvsbuhFdnaipvnI9MKdIhBYULzEGWKeFNAXUPd0uN8A+00smRy2ZRedXLN4e+RCoIg==; 5:DlYCXV/WMfw+sFmcl/VnL/coRFygb+BzGJ+WVaXb4XZw5WHBTXixTmozGZOj+gyRpHACKV+tIsUBsegDjdcmd1KOScSWKNCjS2/atw+oONQ1y1rhwEbaDzvC5S2Di2knmVIsZWFzYXtZMr91AEwixQ==; 24:5Zdxr6dz9VJB+I4qTgzcstIegOIf4cpyIXgMGyIKMc6gKgB4vtwgyNEN4qhqjYvOTMxa/CoOiCziBLPUhCE6p6L3IMj3S7w+5kevc2tmavQ=; 7:SjrasFSKqacJwGygaX+E9pCfIuESLZbMHUOQXxC3StpcONDUucnxnNVNdEfA1V30nhsgGF1vJfrsW9rtzbLrb7upkav8MGvatVBGtWzOA1xDIM2R8lpCxXKXSnwPHIAsGRw/UUOqErW3jJMGsK6/oz2up9SOEnU3D3Bty213tGlTGq9HCejHzL7gZ4DkHLZeeYMVww/sSLlEcfDnPlm/5GtPT6h5T/zSrShIiV/V1BQ=
x-ms-exchange-antispam-srfa-diagnostics: SSOS;
x-ms-office365-filtering-correlation-id: bab59852-7585-4707-d5d7-08d51d2c50dc
x-microsoft-antispam: UriScan:; BCL:0; PCL:0; RULEID:(22001)(4534020)(4602075)(4603075)(2017052603238)(49563074); SRVR:KL1PR01MB1048;
x-ms-traffictypediagnostic: KL1PR01MB1048:
x-exchange-antispam-report-test: UriScan:;
x-microsoft-antispam-prvs: <KL1PR01MB1048C46207F31D0E1478EF17D75A0@KL1PR01MB1048.apcprd01.prod.exchangelabs.com>
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(100000700101)(100105000095)(100000701101)(100105300095)(100000702101)(100105100095)(102415395)(6040450)(2401047)(5005006)(8121501046)(10201501046)(93006095)(93001095)(3002001)(3231020)(100000703101)(100105400095)(6041248)(20161123555025)(20161123564025)(20161123560025)(201703131423075)(201702281528075)(201703061421075)(201703061406153)(2016111802025)(20161123558100)(20161123562025)(6072148)(6043046)(201708071742011)(100000704101)(100105200095)(100000705101)(100105500095); SRVR:KL1PR01MB1048; BCL:0; PCL:0; RULEID:(100000800101)(100110000095)(100000801101)(100110300095)(100000802101)(100110100095)(100000803101)(100110400095)(100000804101)(100110200095)(100000805101)(100110500095); SRVR:KL1PR01MB1048;
x-forefront-prvs: 0473A03F3F
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(979002)(39830400002)(376002)(346002)(199003)(189002)(24454002)(8936002)(3280700002)(8676002)(6246003)(33656002)(229853002)(82746002)(54356999)(101416001)(76176999)(105586002)(189998001)(7736002)(6436002)(97736004)(36756003)(81166006)(83716003)(81156014)(102836003)(6506006)(3846002)(50986999)(3660700001)(106356001)(99936001)(1730700003)(68736007)(6486002)(5640700003)(6116002)(25786009)(5660300001)(966005)(316002)(5250100002)(66066001)(6306002)(478600001)(53546010)(53936002)(2900100001)(236005)(2501003)(14454004)(2906002)(6916009)(54896002)(93886005)(2950100002)(2351001)(86362001)(99286003)(6512007)(217873001)(969003)(989001)(999001)(1009001)(1019001); DIR:OUT; SFP:1101; SCL:1; SRVR:KL1PR01MB1048; H:KL1PR01MB1047.apcprd01.prod.exchangelabs.com; FPR:; SPF:None; PTR:InfoNoRecords; A:1; MX:3; LANG:en;
received-spf: None (protection.outlook.com: ribose.com does not designate permitted sender hosts)
spamdiagnosticoutput: 1:99
spamdiagnosticmetadata: NSPM
Content-Type: multipart/signed; boundary="Apple-Mail=_DF4D40AE-B596-4CA5-8E93-5B61BED7C633"; protocol="application/pgp-signature"; micalg=pgp-sha256
MIME-Version: 1.0
X-OriginatorOrg: ribose.com
X-MS-Exchange-CrossTenant-Network-Message-Id: bab59852-7585-4707-d5d7-08d51d2c50dc
X-MS-Exchange-CrossTenant-originalarrivaltime: 27 Oct 2017 11:17:31.3803 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: d98a04ff-ef98-489b-b33c-13c23a2e091a
X-MS-Exchange-Transport-CrossTenantHeadersStamped: KL1PR01MB1048
Archived-At: <https://mailarchive.ietf.org/arch/msg/openpgp/I4Bg1d_-UDLaigol3DLZitCj7R4>
Subject: Re: [openpgp] Proposal to include AEAD OCB mode to 4880bis
X-BeenThere: openpgp@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "Ongoing discussion of OpenPGP issues." <openpgp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/openpgp>, <mailto:openpgp-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/openpgp/>
List-Post: <mailto:openpgp@ietf.org>
List-Help: <mailto:openpgp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/openpgp>, <mailto:openpgp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 27 Oct 2017 11:17:40 -0000

Thank you Werner, I share the same opinion.

One-size-fits-all is often a misnomer. I believe having an option is usually better than not having one.

_____________________________________

Ronald Tse
Ribose Inc.

> On Oct 27, 2017, at 7:07 PM, Werner Koch <wk@gnupg.org> wrote:
> 
> On Fri, 27 Oct 2017 12:38, hanno@hboeck.de said:
> 
>> Don't add multiple algorithms unless there isn't a very good reason for
>> it. Add one that is good for everything. Having a "may" algorithm only
> 
> There is a good reason for adding a MAY mode:
> 
> - We want an AEAD mode.
> - The WG seems not to like OCB for political (patent) reasons.
> - Thus the proposed solution is to require EAX but prepare for other
>  modes.
> - OCB has been suggested as such another mode.
> - We can add it to rfc4880bis as MAY mode to give a specification in
>  case someone will implement it anyway.
> 
> Consider what will happen if we don't do this: OCB may be implemented
> anyway but at best an I-D extending RFC4880bis is used as specification.
> Or worse, there is no spec at all and everyone implements it in slightly
> different ways.
> 
> Also: The first revisions of I-Ds for RFC6637 (ECC for OpenPGP)
> specified _only_ NIST curves and didn't allowed for any other curves.
> This has been challenged and fortunately RFC6637 allows for arbitrary
> curves, albeit less well specified.  Without that semi-MAY we would not
> have been able to deploy software using modern curves.  Patents on ECC
> are still a minefield but nevertheless everyone is moving towards ECC.
> 
>> The GPG protocol is far more complex than it has to be.
> 
> You mean OpenPGP.
> 
> 
> Shalom-Salam,
> 
>   Werner
> 
> --
> Die Gedanken sind frei.  Ausnahmen regelt ein Bundesgesetz.
> _______________________________________________
> openpgp mailing list
> openpgp@ietf.org
> https://www.ietf.org/mailman/listinfo/openpgp