IETF Logo Mail Archive

Re: [openpgp] Wording/meaning (draft-06, 5.13.1)

Justus Winter <justus@sequoia-pgp.org> Thu, 21 July 2022 16:46 UTC

Return-Path: <justus@sequoia-pgp.org>
X-Original-To: openpgp@ietfa.amsl.com
Delivered-To: openpgp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 848CDC16ECD2 for <openpgp@ietfa.amsl.com>; Thu, 21 Jul 2022 09:46:57 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.907
X-Spam-Level:
X-Spam-Status: No, score=-1.907 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, MSGID_FROM_MTA_HEADER=0.001, SPF_HELO_NONE=0.001, SPF_NONE=0.001, T_SCC_BODY_TEXT_LINE=-0.01] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 7vOqz7qqcn-I for <openpgp@ietfa.amsl.com>; Thu, 21 Jul 2022 09:46:53 -0700 (PDT)
Received: from harrington.uberspace.de (harrington.uberspace.de [185.26.156.85]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 8AA41C15A72F for <openpgp@ietf.org>; Thu, 21 Jul 2022 09:46:51 -0700 (PDT)
Received: (qmail 5432 invoked by uid 500); 21 Jul 2022 16:46:49 -0000
Authentication-Results: harrington.uberspace.de; auth=pass (plain)
From: Justus Winter <justus@sequoia-pgp.org>
To: Bruce Walzer <bwalzer@59.ca>
Cc: openpgp@ietf.org
In-Reply-To: <Ytk0Rx0WPL0YdRgM@ohm.59.ca>
References: <YtMgfznF78Fb7KJC@ohm.59.ca> <874jzf4iz4.fsf@sequoia-pgp.org> <YthdKvV4/q1G09XD@ohm.59.ca> <87k0871r99.fsf@sequoia-pgp.org> <Ytk0Rx0WPL0YdRgM@ohm.59.ca>
Date: Thu, 21 Jul 2022 18:46:47 +0200
Message-ID: <87edye1ki0.fsf@sequoia-pgp.org>
MIME-Version: 1.0
Content-Type: text/plain
X-Rspamd-Bar: -
X-Rspamd-Report: BAYES_HAM(-1.273587) MIME_GOOD(-0.1)
X-Rspamd-Score: -1.373587
Received: from unknown (HELO unkown) (::1) by harrington.uberspace.de (Haraka/2.8.28) with ESMTPSA; Thu, 21 Jul 2022 18:46:48 +0200
Archived-At: <https://mailarchive.ietf.org/arch/msg/openpgp/lI1OUm0auRfskv4MCEwuJt28dXk>
Subject: Re: [openpgp] Wording/meaning (draft-06, 5.13.1)
X-BeenThere: openpgp@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "Ongoing discussion of OpenPGP issues." <openpgp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/openpgp>, <mailto:openpgp-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/openpgp/>
List-Post: <mailto:openpgp@ietf.org>
List-Help: <mailto:openpgp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/openpgp>, <mailto:openpgp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 21 Jul 2022 16:46:57 -0000

Bruce Walzer <bwalzer@59.ca> writes:

> On Wed, Jul 20, 2022 at 10:08:34PM +0200, Justus Winter wrote:
> [...]
>>    Note also that unlike nearly every other OpenPGP subsystem, there are
>>    no parameters in the MDC system. It hard-defines SHA-1 as its hash
>>    function. This is not an accident. It is an intentional choice to
>>    avoid downgrade and cross-grade attacks while making a simple, fast
>>    system. (A downgrade attack would be an attack that replaced SHA2-256
>>    with SHA-1, for example. A cross-grade attack would replace SHA-1 with
>>    another 160-bit hash, such as RIPEMD-160, for example.)
>
> This says that the MDC is immune to downgrade and cross-grade attacks
> because there is only one possible hash (SHA1). What does that have to
> do with updating anything as referred to here:
>
>> However, no update will be needed because the MDC has been replaced
>> by the AEAD encryption described in this document.
>
> ...?

In order to be able to update the system, it would have to be
parameterized in the first place.  The fact that it is not parameterized
is not a problem, because "no update will be needed".  That is the
relation between the two paragraphs.

It has become very clear that the text does not seem to be easy to
understand.  For me, the text seems very clear, but clearly having
worked a long time with the text I have lost that perspective.  Maybe
you can help by proposing a change?

Best,
Justus

v2.23.0 | Report a Bug | By Email