Re: [openpgp] Expiration impending: <draft-ietf-openpgp-rfc4880bis-01.txt>

Werner Koch <wk@gnupg.org> Tue, 04 July 2017 08:39 UTC

Return-Path: <wk@gnupg.org>
X-Original-To: openpgp@ietfa.amsl.com
Delivered-To: openpgp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C6745131B1F for <openpgp@ietfa.amsl.com>; Tue, 4 Jul 2017 01:39:35 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.9
X-Spam-Level:
X-Spam-Status: No, score=-6.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_HI=-5] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 8CVTJG-zS8YR for <openpgp@ietfa.amsl.com>; Tue, 4 Jul 2017 01:39:32 -0700 (PDT)
Received: from kerckhoffs.g10code.com (kerckhoffs.g10code.com [IPv6:2001:aa8:fff1:100::22]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 98241131B2D for <openpgp@ietf.org>; Tue, 4 Jul 2017 01:39:32 -0700 (PDT)
Received: from uucp by kerckhoffs.g10code.com with local-rmail (Exim 4.89 #1 (Debian)) id 1dSJMo-0003mp-PP for <openpgp@ietf.org>; Tue, 04 Jul 2017 10:39:30 +0200
Received: from wk by wheatstone.g10code.de with local (Exim 4.84 #3 (Debian)) id 1dSJGe-0000Wr-K8; Tue, 04 Jul 2017 10:33:08 +0200
From: Werner Koch <wk@gnupg.org>
To: "Robert J. Hansen" <rjh@sixdemonbag.org>
Cc: openpgp@ietf.org
References: <149847732613.7086.8580563657011849337.idtracker@ietfa.amsl.com> <CALaySJKxWevOZYv1hOBFV-+3T=2x43vmie50t6ko2A+a-gTS_A@mail.gmail.com> <a3a82aab-a0d9-f044-21c0-26de346bf6b3@sixdemonbag.org> <20170702232541.t25v6mf36qnrxkex@genre.crustytoothpaste.net> <1b5da7bf-d43b-fde5-f6b6-28d9c6fd6edb@gmx.net> <94a05934-4b5c-4fb6-d127-beb0eacb47cf@sixdemonbag.org> <679411c5b2de4c308cbfbb3733c4fe54@usma1ex-dag1mb1.msg.corp.akamai.com> <9fbed93a-e4a7-3d00-1c53-ee587c2dface@o.banes.ch> <f3e7ad3f-4ce1-d3fc-f2a3-2981382d6a8e@sixdemonbag.org>
Organisation: The GnuPG Project
X-message-flag: Mails containing HTML will not be read! Please send only plain text.
OpenPGP: url=https://k.gnupg.net/80615870F5BAD690333686D0F2AD85AC1E42B367
Mail-Followup-To: "Robert J. Hansen" <rjh@sixdemonbag.org>, openpgp@ietf.org
Date: Tue, 04 Jul 2017 10:33:03 +0200
In-Reply-To: <f3e7ad3f-4ce1-d3fc-f2a3-2981382d6a8e@sixdemonbag.org> (Robert J. Hansen's message of "Mon, 3 Jul 2017 15:51:05 -0400")
Message-ID: <87o9t0sitc.fsf@wheatstone.g10code.de>
User-Agent: Gnus/5.13 (Gnus v5.13)
MIME-Version: 1.0
Content-Type: multipart/signed; boundary="=Adriatic_counter_intelligence_InfoSec_USCODE_asset_Etacs_gamma_Dick="; micalg=pgp-sha256; protocol="application/pgp-signature"
Archived-At: <https://mailarchive.ietf.org/arch/msg/openpgp/nhp6x60KTsuYXkBM4J1SzCJnoUU>
Subject: Re: [openpgp] Expiration impending: <draft-ietf-openpgp-rfc4880bis-01.txt>
X-BeenThere: openpgp@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "Ongoing discussion of OpenPGP issues." <openpgp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/openpgp>, <mailto:openpgp-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/openpgp/>
List-Post: <mailto:openpgp@ietf.org>
List-Help: <mailto:openpgp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/openpgp>, <mailto:openpgp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 04 Jul 2017 08:39:36 -0000

On Mon,  3 Jul 2017 21:51, rjh@sixdemonbag.org said:

> The latest draft minimizes (but does not eliminate) SHA-1.  3DES is
> still a MUST-implement algorithm, and will likely be so for the ongoing

The problem with TripleDES is that it is the only implicit symmetric
algorithm preference.  This makes it hard to remove.  However there is a
way to do that: We should define a new key flag requesting the use of
the to-be-specified new Symmetrically Encrypted Data Packet.  That new
data packet will require the use of a 128 bit block length algorithm and
can also require that AESnnn is the new implicit symmetric algorithm
preference.


Salam-Shalom,

   Werner


-- 
Die Gedanken sind frei.  Ausnahmen regelt ein Bundesgesetz.