[openpgp] Proposal to include AEAD OCB mode to 4880bis

Ronald Tse <tse@ribose.com> Wed, 25 October 2017 09:16 UTC

Return-Path: <tse@ribose.com>
X-Original-To: openpgp@ietfa.amsl.com
Delivered-To: openpgp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 1CF66139950 for <openpgp@ietfa.amsl.com>; Wed, 25 Oct 2017 02:16:50 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ribose.onmicrosoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id gDCokCEdKIry for <openpgp@ietfa.amsl.com>; Wed, 25 Oct 2017 02:16:47 -0700 (PDT)
Received: from APC01-HK2-obe.outbound.protection.outlook.com (mail-hk2apc01on0056.outbound.protection.outlook.com [104.47.124.56]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 447B9139680 for <openpgp@ietf.org>; Wed, 25 Oct 2017 02:16:47 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ribose.onmicrosoft.com; s=selector1-ribose-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version; bh=swzUQeT7zZsTjpZWFHMfpIu3h2ayhkz706p0/eTF20c=; b=adiZ2NshDl4s0jgkld7xGdZYk1wIs62hxunvm+Xn9cBsUnWryZ04088rXJ1H/c9/+sQW9oaiY8FGS6tzWytr4V7+zLX1t4CbrerjGUL7ZusnvlOlV0VqdEmSQi9rX+QW0WRjnky4dnZAxL/JprSUQ4nSHqZQbg2jtnNHeQGYJPg=
Received: from PS1PR01MB1050.apcprd01.prod.exchangelabs.com (10.165.210.30) by PS1PR01MB1050.apcprd01.prod.exchangelabs.com (10.165.210.30) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384_P256) id 15.20.156.4; Wed, 25 Oct 2017 09:16:43 +0000
Received: from PS1PR01MB1050.apcprd01.prod.exchangelabs.com ([fe80::f0e3:51e5:3abd:6c17]) by PS1PR01MB1050.apcprd01.prod.exchangelabs.com ([fe80::f0e3:51e5:3abd:6c17%14]) with mapi id 15.20.0156.007; Wed, 25 Oct 2017 09:16:43 +0000
From: Ronald Tse <tse@ribose.com>
To: "openpgp@ietf.org" <openpgp@ietf.org>
Thread-Topic: Proposal to include AEAD OCB mode to 4880bis
Thread-Index: AQHTTXH5w45VH0tw2ky7nHf16p0Usw==
Date: Wed, 25 Oct 2017 09:16:42 +0000
Message-ID: <D0505748-E376-4CF9-8906-9AD77838FB23@ribose.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: spf=none (sender IP is ) smtp.mailfrom=tse@ribose.com;
x-originating-ip: [118.140.121.70]
x-ms-publictraffictype: Email
x-microsoft-exchange-diagnostics: 1; PS1PR01MB1050; 6:NfGx/OhUHr/9HtOpz53Dg8zXaC1AQ0aFOs7676ZlvHxrtI/hc4bvbdK+RAUZm3Gw8fPCDiyTHzC1Ve5zdAn/VaqDGf2xn6hlI1C94OGjQ7WOiHsRphdbHVqSmivg0gAVGN36feH6Ya/oHdyCrzXyYOggZuyShjBTgNMEGGgtNurDkf6cIzGUAjKMvdJHpH/bR5EC0h/VALBG1lb5qvzTwpd9gBLm0NIWuMRvOK6kKCZSlWeVPrZlfh0sv0r3U5u8fXxqVsGWuaOuge6IFSjoaCSSfHPxzAi7AOy4m0ZOojcN7MrkTKfZbJ4vEdMVpC6tZj3hmQMndzKdFB2fu1GEVg==; 5:wc5HrLTPIxkeFU5Nd6bJr9CuBGk/dn1FZDhIJdspAXZjE9RlgIm1B8pHVeERHbxzraxUJK2Fq9lKj9fHXTHg12B80dModiek5Rsm5TdTyp89ZL9QKa/ZzOJ+24Icr/fgd2Ioi3/3wNuO5CuhcwUAWg==; 24:+qekfimm6kEdmjiZ+33CU3X47H9qX+LRuAq6N/CEGzDlE0RZrs3DFDyzJ1VMa11N8NPWpTKbvkxS/iFFnwDX2g0f0bl5O+2pDIZTFRm1vAw=; 7:n935Anxt+mcHFvrtDNVvEtQNeh7VCUpbuzD2mXaxXg6vfQH/xGmPC/zaTfj7w4B30fKSC3yuBKUnotgJbhMxWLNpuPo4CYYe2L8O1UGMrlIdZn24wBUxjv823B6JoLdEm4ZsrT7D9TjYVMh8R7aoaOjpPIeVC3ku73CNsFs94el0uqlLqQ6WIPOYgCvZ28nE3IPJl6I9SLLazya70VH6BkhXB8IuglJVn+uDZuL8tlc=
x-ms-exchange-antispam-srfa-diagnostics: SSOS;
x-ms-office365-filtering-correlation-id: 95689c50-3a21-47d1-4fab-08d51b891bb3
x-microsoft-antispam: UriScan:; BCL:0; PCL:0; RULEID:(22001)(4534020)(4602075)(4603075)(4627075)(201702281549075)(2017052603199); SRVR:PS1PR01MB1050;
x-ms-traffictypediagnostic: PS1PR01MB1050:
x-exchange-antispam-report-test: UriScan:(4782527817362);
x-microsoft-antispam-prvs: <PS1PR01MB1050D4C0104FE9F371237DE2D7440@PS1PR01MB1050.apcprd01.prod.exchangelabs.com>
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(100000700101)(100105000095)(100000701101)(100105300095)(100000702101)(100105100095)(6040450)(2401047)(8121501046)(5005006)(100000703101)(100105400095)(3231020)(93006095)(93001095)(10201501046)(3002001)(6041248)(2016111802025)(201703131423075)(201702281528075)(201703061421075)(201703061406153)(20161123555025)(20161123558100)(20161123562025)(20161123564025)(20161123560025)(6072148)(6043046)(201708071742011)(100000704101)(100105200095)(100000705101)(100105500095); SRVR:PS1PR01MB1050; BCL:0; PCL:0; RULEID:(100000800101)(100110000095)(100000801101)(100110300095)(100000802101)(100110100095)(100000803101)(100110400095)(100000804101)(100110200095)(100000805101)(100110500095); SRVR:PS1PR01MB1050;
x-forefront-prvs: 0471B73328
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(39830400002)(376002)(346002)(76104003)(189002)(199003)(2900100001)(478600001)(97736004)(6116002)(102836003)(3846002)(6506006)(5250100002)(2501003)(83716003)(54896002)(86362001)(53936002)(99286003)(6512007)(236005)(6436002)(6306002)(6486002)(2351001)(966005)(316002)(345774005)(2906002)(54356999)(1730700003)(6916009)(81166006)(8676002)(5660300001)(33656002)(81156014)(106356001)(606006)(50986999)(8936002)(3660700001)(3280700002)(25786009)(68736007)(14454004)(5640700003)(101416001)(7736002)(82746002)(66066001)(105586002)(189998001)(36756003)(217873001); DIR:OUT; SFP:1101; SCL:1; SRVR:PS1PR01MB1050; H:PS1PR01MB1050.apcprd01.prod.exchangelabs.com; FPR:; SPF:None; PTR:InfoNoRecords; MX:3; A:1; LANG:en;
received-spf: None (protection.outlook.com: ribose.com does not designate permitted sender hosts)
spamdiagnosticoutput: 1:99
spamdiagnosticmetadata: NSPM
Content-Type: multipart/alternative; boundary="_000_D0505748E3764CF989069AD77838FB23ribosecom_"
MIME-Version: 1.0
X-OriginatorOrg: ribose.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 95689c50-3a21-47d1-4fab-08d51b891bb3
X-MS-Exchange-CrossTenant-originalarrivaltime: 25 Oct 2017 09:16:43.0123 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: d98a04ff-ef98-489b-b33c-13c23a2e091a
X-MS-Exchange-Transport-CrossTenantHeadersStamped: PS1PR01MB1050
Archived-At: <https://mailarchive.ietf.org/arch/msg/openpgp/pP7sTh2h_inJV9TVp7-0R7b3VMU>
Subject: [openpgp] Proposal to include AEAD OCB mode to 4880bis
X-BeenThere: openpgp@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "Ongoing discussion of OpenPGP issues." <openpgp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/openpgp>, <mailto:openpgp-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/openpgp/>
List-Post: <mailto:openpgp@ietf.org>
List-Help: <mailto:openpgp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/openpgp>, <mailto:openpgp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 25 Oct 2017 09:16:50 -0000

Hi OpenPGP WG,

There has been some discussion in the group some time ago about OCB, but back then the AEAD requirements were not set in stone.

Since bis-02 now formally defines the AEAD packet and an AEAD algorithm registry, I’d like to bring up the topic again of adding OCB to the draft given its clear benefits. There have been previous mentions of patent concerns, but OCB is freely licensed for open source tools and has been included in libraries like OpenSSL and Botan.

I have submitted a merge request to the document repository, and the diffs can be seen below.

Merge request
* https://gitlab.com/openpgp-wg/rfc4880bis/merge_requests/8

Diffs
* https://gitlab.com/openpgp-wg/rfc4880bis/merge_requests/8/diffs

Please feel free to let me know what you think. Thanks!

Kind regards,
Ron

P.S. this merge request includes https://gitlab.com/openpgp-wg/rfc4880bis/merge_requests/7 as the document wasn’t “buildable” due to a missing reference to RFC 7748.

_____________________________________

Ronald Tse
Ribose Inc.

+=========================================================+
This message may contain confidential and/or privileged
information.  If you are not the addressee or authorized to
receive this for the addressee, you must not use, copy,
disclose or take any action based on this message or any
information herein.  If you have received this message in
error, please advise the sender immediately by reply e-mail
and delete this message.  Thank you for your cooperation.
+=========================================================+