Re: [openpgp] Stop dragging around old material, please!
Daniel Huigens <d.huigens@protonmail.com> Mon, 14 November 2022 12:51 UTC
Return-Path: <d.huigens@protonmail.com>
X-Original-To: openpgp@ietfa.amsl.com
Delivered-To: openpgp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 85017C152572 for <openpgp@ietfa.amsl.com>; Mon, 14 Nov 2022 04:51:57 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.096
X-Spam-Level:
X-Spam-Status: No, score=-7.096 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=protonmail.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 9XGnLFi-8WXT for <openpgp@ietfa.amsl.com>; Mon, 14 Nov 2022 04:51:53 -0800 (PST)
Received: from mail-40134.protonmail.ch (mail-40134.protonmail.ch [185.70.40.134]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id F13E3C15256F for <openpgp@ietf.org>; Mon, 14 Nov 2022 04:51:52 -0800 (PST)
Date: Mon, 14 Nov 2022 12:51:37 +0000
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=protonmail.com; s=protonmail3; t=1668430309; x=1668689509; bh=152CYziX5wYbBwsuixD73zb7C/9fWASvnDVIfwUcjJQ=; h=Date:To:From:Cc:Subject:Message-ID:In-Reply-To:References: Feedback-ID:From:To:Cc:Date:Subject:Reply-To:Feedback-ID: Message-ID:BIMI-Selector; b=SjDSfiCgtAEyAwryjY7u8XbzqQoBvNpc/yslbyoaqySGXXwjk1r72nlNKSlywifEo 3KMaGvHF53c4Neqb4KiWt0ZQvf4Hs9uIk4WWB7tJ6Qrjg56ATKLfHVcTTnHn9jCq6T e8BrBJ2v95inawq3ReURZVFVaSOKyNwv6lOhUvuPQsV4oOWElWBbUTk9x2NyTWHF3S eZzOIy9r2bNrhxYc5L8DTRfcqcU8Cl7f2JLNXSQNkRpfge/Cti3C+CrXVC8XP7Z+4w uV88rd5r1tLaaCOapQ8YbbMtc6EboyLnDY62Nda6jtQ2TvsM2u3/5FpW2932IYlUkt /BWTXb3PhNxIA==
To: Aron Wussler <aron@wussler.it>
From: Daniel Huigens <d.huigens@protonmail.com>
Cc: Rick van Rein <rick@openfortress.nl>, openpgp@ietf.org
Message-ID: <-UrVKG-yXwxL9OXELbi6rHPHpZcYy7cj0MgpmI8kmLzIHTIsXRrWjYSRKjLRNNV77DTYief7ETN7frOJDj5acS_d2eAN-glrPP3jWqWccaQ=@protonmail.com>
In-Reply-To: <wWMnF3c6WOMjMUUUZucrAgfLyI_UyKedm_IN0UTWIfwCHbbMEbfMxojua406OjBQVJYuD9WL01RwnQbqbavko615ogOy_JfgAmeZpbZAtIQ=@wussler.it>
References: <20221114114225.GA1789@openfortress.nl> <wWMnF3c6WOMjMUUUZucrAgfLyI_UyKedm_IN0UTWIfwCHbbMEbfMxojua406OjBQVJYuD9WL01RwnQbqbavko615ogOy_JfgAmeZpbZAtIQ=@wussler.it>
Feedback-ID: 2934448:user:proton
MIME-Version: 1.0
Content-Type: multipart/signed; protocol="application/pgp-signature"; micalg="pgp-sha512"; boundary="------deb8c5e0118206cc693386498f52a6f92b6d4a7029236539d037f96964d4f09a"; charset="utf-8"
Archived-At: <https://mailarchive.ietf.org/arch/msg/openpgp/jz4mHHrXanAn0Rj8rbm8vnRQBZA>
Subject: Re: [openpgp] Stop dragging around old material, please!
X-BeenThere: openpgp@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "Ongoing discussion of OpenPGP issues." <openpgp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/openpgp>, <mailto:openpgp-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/openpgp/>
List-Post: <mailto:openpgp@ietf.org>
List-Help: <mailto:openpgp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/openpgp>, <mailto:openpgp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 14 Nov 2022 12:51:57 -0000
Aron: I think Rick is talking about the packet headers [1], not packet versions. Rick: GnuPG still generates legacy packet headers for packet types < 16, AFAIU, so there are quite a lot of artefacts out there in that format. Some of the changes in the crypto refresh were aimed at discouraging that. But unfortunately I think we can't get rid of it yet, either. Best, Daniel https://datatracker.ietf.org/doc/html/draft-ietf-openpgp-crypto-refresh#section-4.2 ------- Original Message ------- On Monday, November 14th, 2022 at 13:02, Aron Wussler <aron@wussler.it> wrote: > Hi Rick, > > Unfortunately I think that we'll have to support v4 packets for a long while, and having a single reference RFC is a good way forward. > Creating a compliant implementation will be much harder having 2 specs to follow, with one partly overriding the previous. I personally support this RFC to fully obsolete RFC4880 and RFC6637, and at the same time properly define Curve25519. > > > Is there any use of old packet formats that uses crypto that we would still consider healthy today? > > Probably we'll have to accept v4 packets (PKESK, keys, sigs, ...) for years, not mentioning them is like hiding the complexity under the rug. Also re-specifying v4 gives the chance to change some inner mechanisms (e.g. "An implementation MUST NOT sign or verify using DSA keys" or similarly SHA-1 signatures). > V3 packets were dropped, because it was an option. V4, not so much. > > > Cheers, > Aron > > -- > Aron Wussler > Sent with ProtonMail, OpenPGP key 0x7E6761563EFE3930 > > > > ------- Original Message ------- > On Monday, November 14th, 2022 at 12:42, Rick van Rein rick@openfortress.nl wrote: > > > > > Hello, > > > At IETF 115 I offered to proof-read the draft for this WG. > > Back then, I thought the old formats were finally being > > ditched, something I already fought for during RFC 4880. > > > Now I find that it's being renamed to Legacy. I think this > > is a mistake, but I understand the scare of making choices. > > > Question: > > Is there any use of old packet formats that uses crypto > > that we would still consider healthy today? None of the > > signatures would now be reliable, but the encryption may > > have protected us during transit back then, but not when > > our email boxes get broken. > > > Suggestion: > > There is an option to simply STOP MENTIONING old formats, > > and relying on registries that continue to allocate their > > tags. The old format was specified in older RFCs and can > > still be added to software that wants to be compliant with > > old forms, even when they are deprecated or obsoleted. > > > Thanks, > > -Rick > > > _______________________________________________ > > openpgp mailing list > > openpgp@ietf.org > > https://www.ietf.org/mailman/listinfo/openpgp_______________________________________________ > > openpgp mailing list > openpgp@ietf.org > https://www.ietf.org/mailman/listinfo/openpgp
- [openpgp] Stop dragging around old material, plea… Rick van Rein
- Re: [openpgp] Stop dragging around old material, … Aron Wussler
- Re: [openpgp] Stop dragging around old material, … Daniel Huigens
- Re: [openpgp] Stop dragging around old material, … Rick van Rein
- Re: [openpgp] Stop dragging around old material, … Daniel Huigens
- Re: [openpgp] Stop dragging around old material, … Neal H. Walfield
- Re: [openpgp] Stop dragging around old material, … Rick van Rein
- Re: [openpgp] Stop dragging around old material, … Daniel Huigens