IETF Logo Mail Archive

Re: [openpgp] rfc4880bis and draft-openpgp-iana-registry-updates-01

Ronald Tse <tse@ribose.com> Tue, 27 November 2018 17:39 UTC

Return-Path: <tse@ribose.com>
X-Original-To: openpgp@ietfa.amsl.com
Delivered-To: openpgp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D8F06128766 for <openpgp@ietfa.amsl.com>; Tue, 27 Nov 2018 09:39:47 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.001
X-Spam-Level:
X-Spam-Status: No, score=-2.001 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ribose.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id JV4QDCoTbJrO for <openpgp@ietfa.amsl.com>; Tue, 27 Nov 2018 09:39:45 -0800 (PST)
Received: from KOR01-SL2-obe.outbound.protection.outlook.com (mail-eopbgr1290082.outbound.protection.outlook.com [40.107.129.82]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A15D8128A6E for <openpgp@ietf.org>; Tue, 27 Nov 2018 09:39:44 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ribose.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=8ovzvdYHLydl/WAaTYkviSsjm/5vGahN5oiFD1H7x1k=; b=OeIf/5Snx43TTljiNn0+lYx/D1wzaRJxtswFAofekun+Hssu8Ps1vcy3l2ScmHCybPAqjIqHW7J+1GVon3RmbSduTwmVvfrAeWN2CIRbqeliZrJVGcGWuG+VOC0Vyrtob8I9MWUZg5cj2GylrQUAZYaLQn44BUJINhl7Ua3n4RY=
Received: from SL2PR01MB2955.apcprd01.prod.exchangelabs.com (10.174.127.83) by SL2PR01MB2746.apcprd01.prod.exchangelabs.com (20.177.180.85) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.1361.16; Tue, 27 Nov 2018 17:39:39 +0000
Received: from SL2PR01MB2955.apcprd01.prod.exchangelabs.com ([fe80::7025:e964:e4c:f73]) by SL2PR01MB2955.apcprd01.prod.exchangelabs.com ([fe80::7025:e964:e4c:f73%2]) with mapi id 15.20.1361.019; Tue, 27 Nov 2018 17:39:39 +0000
From: Ronald Tse <tse@ribose.com>
To: "openpgp@ietf.org" <openpgp@ietf.org>, Werner Koch <wk@gnupg.org>
Thread-Topic: rfc4880bis and draft-openpgp-iana-registry-updates-01
Thread-Index: AQHUau5gREidRDRyVkybXZt3x9+Nn6VkGnkA
Date: Tue, 27 Nov 2018 17:39:38 +0000
Message-ID: <B64F4A5B-1894-4B01-9DAE-3C7A19C772BF@ribose.com>
References: <87y3aosju2.fsf@wheatstone.g10code.de>
In-Reply-To: <87y3aosju2.fsf@wheatstone.g10code.de>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: spf=none (sender IP is ) smtp.mailfrom=tse@ribose.com;
x-originating-ip: [112.120.148.19]
x-ms-publictraffictype: Email
x-microsoft-exchange-diagnostics: 1; SL2PR01MB2746; 6:YQNt8o46s/YNJAHK6/Rlxr5FcmKda9SymwkOja1Ew4Jo8IkSBseo6l7LOOPMZ1DEfGXMkqFUBkLUB7nzH3a0pQuHRG1m9t50rnVtuWBR3w45Sth4rN9MUJf8IWsz1HBcqek0KQ2kLR9iiZ/6w4zhuePwaCYp9I61a8ELtAZavCp3OWs4PeF+r0LNZJfdRw3jaWG8KMBEpVh1EptjLzNeScnJjKExynNW13L0zzgYKbSpSHu5OnA/jCwtjTGszgO/1jenybDb2Ajx2yJ964e8K6KcmZeE38zGo8dzbM6TYW0zxVvBlqkhLj+TnF4pwjMBAFmz2129Fz/iSRp2QEED4bVhctmZCY6DNRCsKU9RDZGU4z7Y1JYxvLxKOW0oNq1lr0RRMaXjVvBjxDmvFze9LqpmSJ3cPVBP0kSNE8CwWWmY056meozVRHYR7A3NGFySj9TIVmH4B8ai+BpKSkebfg==; 5:Lfic7c5fuqt2pPpUQlvBZbq9jzTkFPTjm9E3mf6PvAWeDqp/x+0L4O6k2K3r8ovJde3k2KNLB64bofIs221rRZpbFAKPsXd98FP02Yxb8lXNdmObverjp5F/oTlurmsqQ1PrDXhk9gzVjdWN5AgwwDNUxDELJ3WksUIUOxgD9JM=; 7:7tWCzet3nGBVney6mY+x2Z4cHAECyTlg5e5u1typ3xCmXcLxhJMXrfGn65X6T38ahdGFkIxrJnFjMEdsNL/h4gIYvR7Gd/vKvCIb8yXp5oHVyshyyLefa6ymWYzN22ZHwulJaTLN5+vIl88MAwKsaA==
x-ms-exchange-antispam-srfa-diagnostics: SOS;
x-ms-office365-filtering-correlation-id: 8580381d-9be9-4fc5-55df-08d6548f4e5a
x-microsoft-antispam: BCL:0; PCL:0; RULEID:(2390098)(7020095)(4652040)(7021145)(8989299)(4534185)(7022145)(4603075)(4627221)(201702281549075)(8990200)(7048125)(7024125)(7027125)(7023125)(5600074)(711020)(2017052603328)(7153060)(7193020); SRVR:SL2PR01MB2746;
x-ms-traffictypediagnostic: SL2PR01MB2746:
x-microsoft-antispam-prvs: <SL2PR01MB27468B29EAE9F06FE92409C1D7D00@SL2PR01MB2746.apcprd01.prod.exchangelabs.com>
x-ms-exchange-senderadcheck: 1
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(6040522)(2401047)(8121501046)(5005006)(3231443)(944501410)(52105112)(10201501046)(93006095)(93001095)(3002001)(148016)(149066)(150057)(6041310)(20161123564045)(2016111802025)(20161123562045)(20161123558120)(20161123560045)(6043046)(201708071742011)(7699051)(76991095); SRVR:SL2PR01MB2746; BCL:0; PCL:0; RULEID:; SRVR:SL2PR01MB2746;
x-forefront-prvs: 086943A159
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(366004)(136003)(376002)(39830400003)(346002)(396003)(199004)(189003)(53936002)(102836004)(2906002)(81166006)(81156014)(99286004)(6246003)(8676002)(3846002)(6116002)(25786009)(186003)(6506007)(86362001)(8936002)(26005)(316002)(2501003)(76176011)(6512007)(53546011)(15650500001)(68736007)(82746002)(508600001)(14444005)(256004)(105586002)(71190400001)(97736004)(71200400001)(83716004)(66066001)(36756003)(5660300001)(33656002)(106356001)(486006)(6486002)(2616005)(6436002)(14454004)(11346002)(446003)(229853002)(7736002)(305945005)(476003)(110136005); DIR:OUT; SFP:1101; SCL:1; SRVR:SL2PR01MB2746; H:SL2PR01MB2955.apcprd01.prod.exchangelabs.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; A:1; MX:1;
received-spf: None (protection.outlook.com: ribose.com does not designate permitted sender hosts)
x-microsoft-antispam-message-info: Rhz7cGzsk3MwAB/Fmsay30jnba6buEs2uz4RykxcjYiX0quj/NYZwvd36/GYu8jMtysp+cZhelPmCKXaTT78uj8MIsuz5BVNtjj4Jkh/M/RdYiPfD7k1N++izrqg60X3+c57IGkMh/WMWH/fzeHMj8lSMUHJ5gB4IIhuDrSF/xNk2l96HEC1HAI2dm2GCzK3fnXome+gHAPoNbc7RUq4BdPfK99Eg3FrHl10Dt6cIL9hTW4z2LKQSzYIYUJzJSdYaQYrgtp7P8xvqRqZz9J8Z6BOp7LmG9XfmDdSl6QngCjITrDCEnkfQqh7sy/8/6Ksz0bskMg2WRtPT2+2i1bTaW+oadyVSQPPvgfTcKicFog=
spamdiagnosticoutput: 1:99
spamdiagnosticmetadata: NSPM
Content-Type: text/plain; charset="utf-8"
Content-ID: <5B8711FF32E390459F53008EE30E1B9E@apcprd01.prod.exchangelabs.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: ribose.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 8580381d-9be9-4fc5-55df-08d6548f4e5a
X-MS-Exchange-CrossTenant-originalarrivaltime: 27 Nov 2018 17:39:38.9072 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: d98a04ff-ef98-489b-b33c-13c23a2e091a
X-MS-Exchange-Transport-CrossTenantHeadersStamped: SL2PR01MB2746
Archived-At: <https://mailarchive.ietf.org/arch/msg/openpgp/Wi3oAiJTTegpbGXpGPq_HJzDpo8>
Subject: Re: [openpgp] rfc4880bis and draft-openpgp-iana-registry-updates-01
X-BeenThere: openpgp@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Ongoing discussion of OpenPGP issues." <openpgp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/openpgp>, <mailto:openpgp-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/openpgp/>
List-Post: <mailto:openpgp@ietf.org>
List-Help: <mailto:openpgp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/openpgp>, <mailto:openpgp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 27 Nov 2018 17:39:48 -0000

Hi Werner,

Apologies for the late response to this. I fully agree with your concluding statements:

> I doubt that it is advisable to merge this into RFC-4880bis because this
> is a request for one time action of the IANA.  

The IANA registries only require a one-time change, and perhaps one-time changes are best not mixed with 4880bis because 4880bis should (probably) be a long living document that helps people implement OpenPGP. Most of them should not be concerned with registry policy changes.

> However a request to
> change from IETF REVIEW to SPECIFICATION REQUIRED is an actual action we
> like to see and that should go into a new RFCs.

The point is that there needs to be a place to:

1. Detail the registry policies and procedures for OpenPGP. These were previously in RFC 4880 (and currently in 4880bis).
2. Detail the changes to the OpenPGP IANA registries requested by 4880bis (such as the addition of the AEAD algorithm registry)
3. Detail the one-time changes to OpenPGP IANA registry (as given in draft-openpgp-iana-registry-updates-01)

I’d like to propose that we keep 4880bis straightforward to read for people who implement OpenPGP, rather than burdening them with IANA registration procedures and one-time changes to the registries.

Specifically,

a) A new document shall detail out all policies and procedures for the OpenPGP registries at IANA. This is easily done by extracting content of #1 and #2 to this new document, while keeping 4880bis about the protocol itself. This document will form a pair with 4880bis moving forward.
b) draft-openpgp-iana-registry-updates will handle the one-time changes (#3)

Thoughts?

Kind regards,
Ron

_____________________________________

Ronald Tse
Ribose Inc.


> On Oct 24, 2018, at 12:34 AM, Werner Koch <wk@gnupg.org> wrote:
> 
> Hi!
> 
> The recently expired draft-openpgp-iana-registry-updates-01 specifies
> one of the goals of the WG to make the assignment of new identifier etc
> easier.  I am not sure whether this drafts can be integrated into
> RFC-4880bis but the IANA Considerations section in RFC-4880bis needs
> anyway a rework because the demanded registries are existent and only
> need to list new items. 
> 
> I am not sure how to do this.  For example RFC-4880 reads
> 
> --8<---------------cut here---------------start------------->8---
>  10.1.  New String-to-Key Specifier Types
> 
>   OpenPGP S2K specifiers contain a mechanism for new algorithms to turn
>   a string into a key.  This specification creates a registry of S2K
>   specifier types.  The registry includes the S2K type, the name of the
>   S2K, and a reference to the defining specification.  The initial
>   values for this registry can be found in Section 3.7.1.  Adding a new
>   S2K specifier MUST be done through the IETF CONSENSUS method, as
>   described in [RFC2434].
> --8<---------------cut here---------------end--------------->8---
> 
> What I did until now was to replace RFC REVIEW (aka IETF CONSENSUS) by
> SPECIFICATION REQUIRED and to reference RFC-8126.  See the gitlab
> repo. The draft-openpgp-iana-registry-updates-01 has this text
> 
> --8<---------------cut here---------------start------------->8---
>  5.1.  PGP String-to-Key (S2K) Registry
> 
>   Proposed changes to the registry:
> 
>   o  Rename the registry to "OpenPGP String-to-Key (S2K) Algorithms"
> 
>   o  Change registry policy to *Specification Required*.
> 
>   o  Update its "Reference" to also refer to this document.
> 
>   o  A Standards Track document is required to register an S2K
>      algorithm with the value "Yes" in any recommendation.
> 
>   Add the following note:
> 
>   Note: Experts are to verify that the proposed registration
>   provides a publicly-available standard that can be implemented
>   in an interoperable way, with notable benefits for the wider
>   OpenPGP community.
> 
>   Update the following registrations:
> 
>   +---------+--------------------+-------+-------+--------------------+
>   | ID      | S2K Type           | REC-S | REC-I | Reference          |
>   +---------+--------------------+-------+-------+--------------------+
>   | 0       | Simple S2K         | No    | Yes   | Section 3.7.1.1 of |
>   |         |                    |       |       | [RFC4880]          |
>   | 1       | Salted S2K         | No    | Yes   | Section 3.7.1.2 of |
>   |         |                    |       |       | [RFC4880]          |
>   | 2       | Reserved           |       |       | Section 3.7.1 of   |
>   |         |                    |       |       | [RFC4880]          |
>   | 3       | Iterated and       | Yes   | Yes   | Section 3.7.1.3 of |
>   |         | Salted S2K         |       |       | [RFC4880]          |
>   | 4-99    | Unassigned         |       |       |                    |
>   | 100-110 | Private or         |       |       | Section 3.7.1 of   |
>   |         | Experimental Use   |       |       | [RFC4880]          |
>   | 111-255 | Unassigned         |       |       |                    |
>   +---------+--------------------+-------+-------+----------------
> --8<---------------cut here---------------end--------------->8---
> 
> I doubt that it is advisable to merge this into RFC-4880bis because this
> is a request for one time action of the IANA.  However a request to
> change from IETF REVIEW to SPECIFICATION REQUIRED is an actual action we
> like to see and that should go into a new RFCs.
> 
> Any hints on how to proceed?
> 
> 
> Shalom-Salam,
> 
>   Werner
> 
> 
> -- 
> Die Gedanken sind frei.  Ausnahmen regelt ein Bundesgesetz.

v2.23.0 | Report a Bug | By Email