Re: [openpgp] Questions around AEAD packets

Werner Koch <wk@gnupg.org> Tue, 14 February 2017 20:17 UTC

Return-Path: <wk@gnupg.org>
X-Original-To: openpgp@ietfa.amsl.com
Delivered-To: openpgp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id EF33E1297F3 for <openpgp@ietfa.amsl.com>; Tue, 14 Feb 2017 12:17:32 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.9
X-Spam-Level:
X-Spam-Status: No, score=-6.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_HI=-5] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 69_8VZ4VVvJs for <openpgp@ietfa.amsl.com>; Tue, 14 Feb 2017 12:17:30 -0800 (PST)
Received: from kerckhoffs.g10code.com (kerckhoffs.g10code.com [IPv6:2001:aa8:fff1:100::22]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id BE58D1297F0 for <openpgp@ietf.org>; Tue, 14 Feb 2017 12:17:30 -0800 (PST)
Received: from uucp by kerckhoffs.g10code.com with local-rmail (Exim 4.84_2 #1 (Debian)) id 1cdjXU-0001C1-Lk for <openpgp@ietf.org>; Tue, 14 Feb 2017 21:17:28 +0100
Received: from wk by wheatstone.g10code.de with local (Exim 4.84 #3 (Debian)) id 1cdjUl-0004ji-2W for <openpgp@ietf.org>; Tue, 14 Feb 2017 21:14:39 +0100
From: Werner Koch <wk@gnupg.org>
To: IETF OpenPGP <openpgp@ietf.org>
References: <CE43260E-D723-4B00-9E81-B5F81142121F@icloud.com> <87shnhxhah.fsf_-_@wheatstone.g10code.de> <CA+cU71koLVX=1pp-_vbSQM40tA4=qitT9EpHhQ0RjmpKtsbHrA@mail.gmail.com>
Organisation: The GnuPG Project
X-message-flag: Mails containing HTML will not be read! Please send only plain text.
OpenPGP: url=https://k.gnupg.net/80615870F5BAD690333686D0F2AD85AC1E42B367
Mail-Followup-To: IETF OpenPGP <openpgp@ietf.org>
Date: Tue, 14 Feb 2017 21:14:33 +0100
In-Reply-To: <CA+cU71koLVX=1pp-_vbSQM40tA4=qitT9EpHhQ0RjmpKtsbHrA@mail.gmail.com> (Tom Ritter's message of "Tue, 14 Feb 2017 10:41:13 -0600")
Message-ID: <87lgt8wmvq.fsf@wheatstone.g10code.de>
User-Agent: Gnus/5.13 (Gnus v5.13)
MIME-Version: 1.0
Content-Type: multipart/signed; boundary="=Khaddafi_insurgency_Bin_Laden_Ermes_Freeh_Gazprom_AIMSX_AFSPC_kilo=c"; micalg="pgp-sha256"; protocol="application/pgp-signature"
Archived-At: <https://mailarchive.ietf.org/arch/msg/openpgp/RsEOm8xdFmHrBxMqEr8rG-8uLUU>
Subject: Re: [openpgp] Questions around AEAD packets
X-BeenThere: openpgp@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: "Ongoing discussion of OpenPGP issues." <openpgp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/openpgp>, <mailto:openpgp-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/openpgp/>
List-Post: <mailto:openpgp@ietf.org>
List-Help: <mailto:openpgp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/openpgp>, <mailto:openpgp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 14 Feb 2017 20:17:33 -0000

> chunked-streaming mode.  I mentioned this a couple years ago but
> didn't get much discussion:
> https://www.ietf.org/mail-archive/web/openpgp/current/msg07546.html

for easier reference, here is Tom's mail:

    Date: Tue, 24 Mar 2015 07:25:31 -0500

  Adam's post on streaming API's has been posted before:
  <https://www.imperialviolet.org/2014/06/27/streamingencryption.html>
  
  The same problem is the root cause of the Java GCM CipherInputStream
  issue: <http://blog.philippheckel.com/2014/03/01/cipherinputstream-for-aead-modes-is-broken-in-jdk7-gcm/>
  
  But I haven't seen any discussion of Adam's point that one _can_
  construct a format for chunking and authenticating the chunks (and
  ordering thereof) to provide authenticated streaming. And that someone
  has already done so:
  <https://github.com/kaepora/miniLock#4-file-encryption>
  
  I think support for a mode like this would be good to consider, and I
  think if IPR allows it, a fully-specified design for it is a good
  place to start.
  
  -tom


-- 
Die Gedanken sind frei.  Ausnahmen regelt ein Bundesgesetz.