Re: [openpgp] I-D Action: draft-ietf-openpgp-crypto-refresh-02.txt (fwd)

Paul Wouters <paul@nohats.ca> Tue, 23 February 2021 02:19 UTC

Return-Path: <paul@nohats.ca>
X-Original-To: openpgp@ietfa.amsl.com
Delivered-To: openpgp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B13B53A2424 for <openpgp@ietfa.amsl.com>; Mon, 22 Feb 2021 18:19:10 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.096
X-Spam-Level:
X-Spam-Status: No, score=-2.096 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_BLOCKED=0.001, SPF_HELO_NONE=0.001, SPF_NONE=0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=nohats.ca
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 9y5bjW7ylf56 for <openpgp@ietfa.amsl.com>; Mon, 22 Feb 2021 18:19:08 -0800 (PST)
Received: from mx.nohats.ca (mx.nohats.ca [IPv6:2a03:6000:1004:1::68]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 2D82E3A2426 for <openpgp@ietf.org>; Mon, 22 Feb 2021 18:19:07 -0800 (PST)
Received: from localhost (localhost [IPv6:::1]) by mx.nohats.ca (Postfix) with ESMTP id 4Dl2mV1pkFz319 for <openpgp@ietf.org>; Tue, 23 Feb 2021 03:19:06 +0100 (CET)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=nohats.ca; s=default; t=1614046746; bh=pFZVsqy4YFR20j0iJGIegrrp7OfYI+us8zWaZci/yNs=; h=Date:From:To:Subject; b=b5bWHy7kMekxAraMIx/z99w9N0pB2uLC4m3r4esnkWUUW2od/29dk/I0wmlwliALC jgIgVhFrSaPirnmhgV4E9q6ULAFd1k2qoa2BicyOeaYnxOhdD0hacFx03YfLkgT4zm Y9gEaivdwO/4mH/h5tMEHYV5DkyVjtuUMnkwz5tw=
X-Virus-Scanned: amavisd-new at mx.nohats.ca
Received: from mx.nohats.ca ([IPv6:::1]) by localhost (mx.nohats.ca [IPv6:::1]) (amavisd-new, port 10024) with ESMTP id L-BPWKzjlAnx for <openpgp@ietf.org>; Tue, 23 Feb 2021 03:19:04 +0100 (CET)
Received: from bofh.nohats.ca (bofh.nohats.ca [193.110.157.194]) (using TLSv1.2 with cipher ADH-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by mx.nohats.ca (Postfix) with ESMTPS for <openpgp@ietf.org>; Tue, 23 Feb 2021 03:19:04 +0100 (CET)
Received: by bofh.nohats.ca (Postfix, from userid 1000) id 7580B6029BA0; Mon, 22 Feb 2021 21:19:03 -0500 (EST)
Received: from localhost (localhost [127.0.0.1]) by bofh.nohats.ca (Postfix) with ESMTP id 6CFDE66B1E for <openpgp@ietf.org>; Mon, 22 Feb 2021 21:19:03 -0500 (EST)
Date: Mon, 22 Feb 2021 21:19:03 -0500 (EST)
From: Paul Wouters <paul@nohats.ca>
To: openpgp@ietf.org
Message-ID: <7d8bdda1-4e5c-6c10-f3cd-1d191fad595c@nohats.ca>
MIME-Version: 1.0
Content-Type: text/plain; charset=US-ASCII; format=flowed
Archived-At: <https://mailarchive.ietf.org/arch/msg/openpgp/PGQzlXRx7neQAwOM79GUOGRJhDE>
Subject: Re: [openpgp] I-D Action: draft-ietf-openpgp-crypto-refresh-02.txt (fwd)
X-BeenThere: openpgp@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Ongoing discussion of OpenPGP issues." <openpgp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/openpgp>, <mailto:openpgp-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/openpgp/>
List-Post: <mailto:openpgp@ietf.org>
List-Help: <mailto:openpgp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/openpgp>, <mailto:openpgp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 23 Feb 2021 02:19:11 -0000

Hi,

I pushed an updated version of the crypto refresh document:

https://www.ietf.org/rfcdiff?url2=draft-ietf-openpgp-crypto-refresh-02

I've also pushed the git changes to https://gitlab.com/openpgp-wg/rfc4880bis


The commit on white space changes was reverted, as the WG will be
re-opening that discussion later once we have all the consensus
items from the previous 4880bis discussion re-published in this
document.

The following items were merged in:

- Produce 4-level-deep ToC
- Reserve codepoints in the registries
- reorganize signature and asymmetric key value fields
- Re-flow the v3 and v4 signature descriptions
- Incorporated RFC 6637 (ECDSA and ECDH, using NIST curves)
- textual cleanup (no substantive changes)
- Update most registries to be SPECIFICATION REQUIRED
- Deprecate v3 signatures
- Deprecate non-integrity-protected encryption
- Include SHA3
- Incorporate Curve25519 for ECDH
- Add ECC Point compression flag bytes appendix section
- update reference RFC2434 to RFC8126

Please review the changes and let the WG know of any issues you see.
This includes if you think something was merged that did not have WG
consensus.

Paul