IETF Logo Mail Archive

Re: [openpgp] Choices for AEAD modes

Werner Koch <wk@gnupg.org> Wed, 15 June 2022 10:20 UTC

Return-Path: <wk@gnupg.org>
X-Original-To: openpgp@ietfa.amsl.com
Delivered-To: openpgp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D9759C15D879 for <openpgp@ietfa.amsl.com>; Wed, 15 Jun 2022 03:20:17 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.108
X-Spam-Level:
X-Spam-Status: No, score=-2.108 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_BLOCKED=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=gnupg.org
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id R-ULMWMeOaKT for <openpgp@ietfa.amsl.com>; Wed, 15 Jun 2022 03:20:13 -0700 (PDT)
Received: from kerckhoffs.g10code.com (kerckhoffs.g10code.com [IPv6:2001:aa8:fff1:100::22]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 73457C15790B for <openpgp@ietf.org>; Wed, 15 Jun 2022 03:20:11 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=gnupg.org; s=20181017; h=Content-Type:MIME-Version:Message-ID:Date:References: In-Reply-To:Subject:Cc:To:From:Sender:Reply-To:Content-Transfer-Encoding: Content-ID:Content-Description:Resent-Date:Resent-From:Resent-Sender: Resent-To:Resent-Cc:Resent-Message-ID:List-Id:List-Help:List-Unsubscribe: List-Subscribe:List-Post:List-Owner:List-Archive; bh=Q4FGG+rC48tgRd/rb4MTi7xpbqDIsQf3bWxrxsLOL68=; b=TvhMl2TQsk++EpxVbIkGMy5vlW /xzykcjJR+mdpQ55LLOoZUmu9jIRt/k6sFf6MzFwiRjI820bK++vClD8w4xNCOdRnB/hj0Oxb8b0p uowpkmTsSzQkpQEoofFlDXuhEhiOQsI25wFCBfK5qpNVuJhUv9HMG6PS2xj9cH/W955Y=;
Received: from uucp by kerckhoffs.g10code.com with local-rmail (Exim 4.89 #1 (Debian)) id 1o1Q87-00081X-DD for <openpgp@ietf.org>; Wed, 15 Jun 2022 12:20:07 +0200
Received: from wk by wheatstone.g10code.de with local (Exim 4.92 #5 (Debian)) id 1o1Q5e-0004Dl-T4; Wed, 15 Jun 2022 12:17:34 +0200
From: Werner Koch <wk@gnupg.org>
To: Justus Winter <justus@sequoia-pgp.org>
Cc: Daniel Kahn Gillmor <dkg@fifthhorseman.net>, openpgp@ietf.org
In-Reply-To: <877d5ixomj.fsf@europ.lan> (Justus Winter's message of "Wed, 15 Jun 2022 11:27:48 +0200")
References: <BB9D0AB9-CC8C-420E-8082-E9F64B09BF46@ribose.com> <7547a547-bb71-2bdd-f85e-91d46476bc6@nohats.ca> <54B2F360-C996-4A5D-BE3D-6EA405406C68@icloud.com> <YqPEw8OIlf0PG40T@camp.crustytoothpaste.net> <25c3a7b5-07ef-1521-1a14-43ef0c7b4043@cs.tcd.ie> <SY4PR01MB6251D365368552630ECCD720EEA99@SY4PR01MB6251.ausprd01.prod.outlook.com> <4dd0ad8b-9de7-15e6-a9ef-e0401acd69f8@sixdemonbag.org> <p_7pskU0MxbpIjGwmAUTMmFsJxjA8QRQCGDbCfrYQTSXocrlDUFDdNuHXChjBwy3RAc2eA_mRIyGFDWD6u5peNNL_F9I3yUYXAa5Khy5XqE=@protonmail.com> <87y1y0bj9r.fsf_-_@wheatstone.g10code.de> <mAnMlR7HNIXC0Mzquewg8bVEHE9cqSkScWwn7zNyD0GBWXzr6CFS858ENPS6fPzVV7TyIbkOhgiG75aVKSuw2EBeCc_SDYpaG5IIzmDGemQ=@protonmail.com> <87o7yuoluk.fsf@fifthhorseman.net> <875yl2bajt.fsf@wheatstone.g10code.de> <877d5ixomj.fsf@europ.lan>
User-Agent: Gnus/5.13 (Gnus v5.13)
X-message-flag: Mails containing HTML will not be read! Please send only plain text.
Jabber-ID: wk@jabber.gnupg.org
Mail-Followup-To: Justus Winter <justus@sequoia-pgp.org>, Daniel Kahn Gillmor <dkg@fifthhorseman.net>, openpgp@ietf.org
Date: Wed, 15 Jun 2022 12:17:28 +0200
Message-ID: <875yl29qo7.fsf_-_@wheatstone.g10code.de>
MIME-Version: 1.0
Content-Type: multipart/signed; boundary="=FARC_AIMSX_Ft._Knox_Janet_Reno_Chemical_weapon_rhost_Cyber_terror=Ba"; micalg="pgp-sha256"; protocol="application/pgp-signature"
Archived-At: <https://mailarchive.ietf.org/arch/msg/openpgp/shvr_U9UpakPzvskEnr2yw-MPfE>
Subject: Re: [openpgp] Choices for AEAD modes
X-BeenThere: openpgp@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "Ongoing discussion of OpenPGP issues." <openpgp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/openpgp>, <mailto:openpgp-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/openpgp/>
List-Post: <mailto:openpgp@ietf.org>
List-Help: <mailto:openpgp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/openpgp>, <mailto:openpgp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 15 Jun 2022 10:20:17 -0000

On Wed, 15 Jun 2022 11:27, Justus Winter said:

> If you had all that consensus in the WG back then, maybe you should
> have actually produced a revision to RFC4880?

Rfc4880bis-10 and earlier versions [1]

> draft-ietf-openpgp-crypto-refresh-06 represents a broad consensus among
> the community: members of most major OpenPGP implementations came
> together and worked on the text in the design team.  Represented were
> GnuPG, RNP, GopenPGP, OpenPGP.js, and Sequoia.

No, there was no consensus from GnuPG and RNP in the design team for any
of the changes after we had finalized the AEAD chunk size thingy.

> If you have concrete concerns, then by all means, do speak up.  However,
> "this is different from what I've been doing" isn't a valid concern.

I have not said this. I stated that the AEAD scheme has been deployed a
long time now, we have done extensive interop testing and that things
are in real world use.  This is the way the OpenPGP WG has been working
since its beginnings in the 25 years ago.  And we are pretty successful
in taking interoperability serious as long as anyhow possible.


Shalom-Salam,

   Werner




[1] We had this all ready when you and your friends changed employer
    from g10 Code to pEp in Summer 2017.  And then immediately started
    to request changes to a nearly finalized I-D which we had discussed
    in our weekly company meetings often enough.  It seems the requested
    changes were not just for on technical grounds but for "competative"
    reasons.

-- 
The pioneers of a warless world are the youth that
refuse military service.             - A. Einstein

v2.23.0 | Report a Bug | By Email