IETF Logo Mail Archive

Re: [openpgp] Choices for AEAD modes

Ronald Tse <tse@ribose.com> Thu, 16 June 2022 02:32 UTC

Return-Path: <tse@ribose.com>
X-Original-To: openpgp@ietfa.amsl.com
Delivered-To: openpgp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3F0D7C14CF05 for <openpgp@ietfa.amsl.com>; Wed, 15 Jun 2022 19:32:04 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.11
X-Spam-Level:
X-Spam-Status: No, score=-2.11 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ribose.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id BweAeswBIk4s for <openpgp@ietfa.amsl.com>; Wed, 15 Jun 2022 19:32:00 -0700 (PDT)
Received: from APC01-SG2-obe.outbound.protection.outlook.com (mail-sgaapc01on2062d.outbound.protection.outlook.com [IPv6:2a01:111:f400:feab::62d]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id F0736C14CF01 for <openpgp@ietf.org>; Wed, 15 Jun 2022 19:31:58 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=XDjP3kwuKiZcrWfuHO3U3MH9IoNpLh/pbG9XQw0oCl+jqenUnJoNjubXVBBTlVXDKZQcARuCtQZgeDFQ5ZgFiEG9AE4VKvXBtyGG84pNz1b7MHPOWC6+Ohgou83r8urvmq6ftXqQUctFkU4tP/kG/b4W3PqhALqwT5iqU7F6lbP/262e0iF/C9BcccSrPdoAWOnaX0cweAn3LoHrWfIDdbcJRH/QGrMMEI3+a9zsYs1cSuCynfOnFvT/G6ZyJPcRNoH23UzXX4ZAmMT5X74HfBOq6ERPlxRFXTIxZ8eyB7EUF5WuGTswskKL2fDpShYem+WEi4shW0+21JyrsI2d3Q==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=4PjJm5ATqLqhQ9OshBwU3YKmVUTLxkLdzCGg0zVLccg=; b=hiSdvCVjC8I5BR7gdlUhgnL1gkASeNMdz0v+qlP1D/LP05OFlWoJ2PYJ3aoqYYkdO84qemWensuAH8EgjTZDHpp4JtAgjnrCVp7JSOq2e/nTfsYxf02Gkz9o+dWXzG6oUu1Ms77fjivrm70NM2SVGSYcrf+H8pUB7GBgkM+1uFzlEP57qRJmCwRR4UJ1Iu4qwC8D7IZqrYM9IktthfVsj7HLrw0pzQJiIWwUygc0CWGqaZ/1FsEA2fs/BAF2ozdiMkN3LBTH7+r5Hn1vXQPFiKHs3bHncau3IgGngQVvA5k3FuvxVJ9ie6MnJT7DKqYE6RZ/igNEAYH8FNnyPbYcwQ==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=ribose.com; dmarc=pass action=none header.from=ribose.com; dkim=pass header.d=ribose.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ribose.com; s=selector2; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=4PjJm5ATqLqhQ9OshBwU3YKmVUTLxkLdzCGg0zVLccg=; b=GBCqAE1Q9lq9qtSeXB1AJEBHkC5OZq40YGkn7YhLXlmddbNyUrDe8eYh3hPFLqWU9Xnj2ygGBslXMfqP3RDqiqMRl/xrDW1ri5Gw77aJf8MbucG92aCdpNG8rWdW3Qx4Fxi56N5qazbkYW8vMuV/HPtAmhra4zbVLRCGEm2lZFk=
Received: from HK0PR01MB2001.apcprd01.prod.exchangelabs.com (2603:1096:203:23::14) by SG2PR01MB3399.apcprd01.prod.exchangelabs.com (2603:1096:4:85::15) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.5332.20; Thu, 16 Jun 2022 02:31:48 +0000
Received: from HK0PR01MB2001.apcprd01.prod.exchangelabs.com ([fe80::ccdf:b313:ad91:3838]) by HK0PR01MB2001.apcprd01.prod.exchangelabs.com ([fe80::ccdf:b313:ad91:3838%7]) with mapi id 15.20.5332.023; Thu, 16 Jun 2022 02:31:48 +0000
From: Ronald Tse <tse@ribose.com>
To: Werner Koch <wk@gnupg.org>
CC: "openpgp@ietf.org" <openpgp@ietf.org>
Thread-Topic: [openpgp] Choices for AEAD modes
Thread-Index: AQHYgKGKxEPH/81deEuiD9MrCHlCMa1RUTCA
Date: Thu, 16 Jun 2022 02:31:47 +0000
Message-ID: <00887B9F-C10D-4CE4-8292-5B118E05AB9D@ribose.com>
References: <BB9D0AB9-CC8C-420E-8082-E9F64B09BF46@ribose.com> <7547a547-bb71-2bdd-f85e-91d46476bc6@nohats.ca> <54B2F360-C996-4A5D-BE3D-6EA405406C68@icloud.com> <YqPEw8OIlf0PG40T@camp.crustytoothpaste.net> <25c3a7b5-07ef-1521-1a14-43ef0c7b4043@cs.tcd.ie> <SY4PR01MB6251D365368552630ECCD720EEA99@SY4PR01MB6251.ausprd01.prod.outlook.com> <4dd0ad8b-9de7-15e6-a9ef-e0401acd69f8@sixdemonbag.org> <p_7pskU0MxbpIjGwmAUTMmFsJxjA8QRQCGDbCfrYQTSXocrlDUFDdNuHXChjBwy3RAc2eA_mRIyGFDWD6u5peNNL_F9I3yUYXAa5Khy5XqE=@protonmail.com> <87y1y0bj9r.fsf_-_@wheatstone.g10code.de> <mAnMlR7HNIXC0Mzquewg8bVEHE9cqSkScWwn7zNyD0GBWXzr6CFS858ENPS6fPzVV7TyIbkOhgiG75aVKSuw2EBeCc_SDYpaG5IIzmDGemQ=@protonmail.com> <87o7yuoluk.fsf@fifthhorseman.net> <875yl2bajt.fsf@wheatstone.g10code.de> <877d5ixomj.fsf@europ.lan> <875yl29qo7.fsf_-_@wheatstone.g10code.de>
In-Reply-To: <875yl29qo7.fsf_-_@wheatstone.g10code.de>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-mailer: Apple Mail (2.3696.100.31)
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=ribose.com;
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 640f5e50-d9fe-4dc6-18e4-08da4f405ccd
x-ms-traffictypediagnostic: SG2PR01MB3399:EE_
x-microsoft-antispam-prvs: <SG2PR01MB3399B7AE9D88E8229249BEAED7AC9@SG2PR01MB3399.apcprd01.prod.exchangelabs.com>
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: PZZ4NfIdBXZvZlRnHTkyaqGT3SuVaH+InvKvITKtbiiUIarjlTh0OvuDHVcFGZIFiMIdUU7R8thyETgNKx/QhVHt+ixeayZTY+2D6sGTNvCh+jJs+zYGHHDIVcHCmAOtdTPdsu7YqhYjD70Sv29O5mZh8hxn0WrMVFRd6vCMkYBJd/MAwLfve65mnhe9H8UwsMOtfGL+OjYEBwGj6eNTLdJDYKuNmq75chXxtFjl3bZbdACWjdjkqj8RbYNk9O1bCgFAebsX/VApOm7HnPh31eEuqUFoPpOXO378hhS1rsQEz7MKs1pmgWC97ddgk9CtxNpm66bxvGRxcFqRcPIzQdxoQwqHhS8pURL/0ekHscyTQN01ks76sRcZkr9Eks+yNl2ykQr4jYR+ztsX9YahezMUCYcpgYkg7fiujbJhnj4Z2B6AsAim4jATWQTBc+8vN/ex8PwUvSpnz1yQGCe3V5dOw1qNr88fKym7Jir4eRHkE3TfwqaRcBV5VK3cpVoJdMm8CNsi88W1Cb93dwVgBY4pj2CoVURQhyKYY66uML0hEAZ3kShTodc6pcM2cXZEFzGzs8DYp0h4WtvECnZPIpKceWSdOm26Z2IekHQl9cj//rvqs0MSq8SnYcfxSCVsuGTLxuKR16eC1qEl9CWJwOVfNjSRnt/qbLno+WUvGOnzz8/cDxCztfPHV8EAqg6flC2SW++0P4zmOp88OI0NyqU9e01aDOpbgLX+9ZDga/EbW5doi2c/9ONBWBZuOvRGDBT9mt3kreczgpiSlAPLHf7ZBMhZjUzTOszLtz/hok4=
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:HK0PR01MB2001.apcprd01.prod.exchangelabs.com; PTR:; CAT:NONE; SFS:(13230016)(39830400003)(136003)(366004)(346002)(396003)(38070700005)(186003)(316002)(2906002)(66476007)(41300700001)(2616005)(86362001)(66446008)(508600001)(6506007)(8676002)(122000001)(8936002)(71200400001)(38100700002)(5660300002)(76116006)(66946007)(91956017)(64756008)(66556008)(6512007)(33656002)(6486002)(966005)(6916009)(83380400001)(4326008)(36756003)(26005); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: text/plain; charset="utf-8"
Content-ID: <B599959F8FDC104F9ABDE8299955BCF8@apcprd01.prod.exchangelabs.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: ribose.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: HK0PR01MB2001.apcprd01.prod.exchangelabs.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 640f5e50-d9fe-4dc6-18e4-08da4f405ccd
X-MS-Exchange-CrossTenant-originalarrivaltime: 16 Jun 2022 02:31:47.9480 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: d98a04ff-ef98-489b-b33c-13c23a2e091a
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: lwySzOKcMh44tKhxkK6jxOXX/w3gCkKF9jcDLafzW5r5/rEtv8mp1ji0bcuLh/GH
X-MS-Exchange-Transport-CrossTenantHeadersStamped: SG2PR01MB3399
Archived-At: <https://mailarchive.ietf.org/arch/msg/openpgp/sj7ATxMP56OVgnbQNyzmRRLkrWo>
Subject: Re: [openpgp] Choices for AEAD modes
X-BeenThere: openpgp@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "Ongoing discussion of OpenPGP issues." <openpgp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/openpgp>, <mailto:openpgp-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/openpgp/>
List-Post: <mailto:openpgp@ietf.org>
List-Help: <mailto:openpgp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/openpgp>, <mailto:openpgp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 16 Jun 2022 02:32:04 -0000

I confirm the summary of events from Werner. The RNP team wishes to keep the currently deployed AEAD scheme which has undergone interoperability testing and is already deployed by users today.

It was always a mystery why the nearly finalised I-D had to be reopened for unnecessary surgery — that has now ended up setting back publication of the revision, and that is damaging to the community.

>> If you had all that consensus in the WG back then, maybe you should
>> have actually produced a revision to RFC4880?
> 
> Rfc4880bis-10 and earlier versions [1]
> 
>> draft-ietf-openpgp-crypto-refresh-06 represents a broad consensus among
>> the community: members of most major OpenPGP implementations came
>> together and worked on the text in the design team.  Represented were
>> GnuPG, RNP, GopenPGP, OpenPGP.js, and Sequoia.
> 
> No, there was no consensus from GnuPG and RNP in the design team for any
> of the changes after we had finalized the AEAD chunk size thingy.
> 
>> If you have concrete concerns, then by all means, do speak up.  However,
>> "this is different from what I've been doing" isn't a valid concern.
> 
> I have not said this. I stated that the AEAD scheme has been deployed a
> long time now, we have done extensive interop testing and that things
> are in real world use.  This is the way the OpenPGP WG has been working
> since its beginnings in the 25 years ago.  And we are pretty successful
> in taking interoperability serious as long as anyhow possible.
> 
> 
> Shalom-Salam,
> 
>   Werner
> 
> 
> 
> 
> [1] We had this all ready when you and your friends changed employer
>    from g10 Code to pEp in Summer 2017.  And then immediately started
>    to request changes to a nearly finalized I-D which we had discussed
>    in our weekly company meetings often enough.  It seems the requested
>    changes were not just for on technical grounds but for "competative"
>    reasons.
> 
> -- 
> The pioneers of a warless world are the youth that
> refuse military service.             - A. Einstein
> _______________________________________________
> openpgp mailing list
> openpgp@ietf.org
> https://www.ietf.org/mailman/listinfo/openpgp

v2.23.0 | Report a Bug | By Email