IETF Logo Mail Archive

Re: [openpgp] Default preferences for the future

"Mark D. Baushke" <mdb@juniper.net> Tue, 21 March 2017 15:47 UTC

Return-Path: <mdb@juniper.net>
X-Original-To: openpgp@ietfa.amsl.com
Delivered-To: openpgp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 782BB129B36 for <openpgp@ietfa.amsl.com>; Tue, 21 Mar 2017 08:47:10 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.921
X-Spam-Level:
X-Spam-Status: No, score=-1.921 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H4=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=junipernetworks.onmicrosoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id yypm3OdgU0uI for <openpgp@ietfa.amsl.com>; Tue, 21 Mar 2017 08:47:08 -0700 (PDT)
Received: from NAM03-BY2-obe.outbound.protection.outlook.com (mail-by2nam03on0100.outbound.protection.outlook.com [104.47.42.100]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 51E34129BA8 for <openpgp@ietf.org>; Tue, 21 Mar 2017 08:44:52 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=junipernetworks.onmicrosoft.com; s=selector1-juniper-net; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version; bh=b+eovdhuJsw/o0NEkYZJVz/sPtpvePOjwhC09914OCk=; b=M40IIZHzOUZngC/S6HoHO6oJtjTobaInxovvj1MSABqcVMMPCATlbA2CMtfhK/bLmM/obMR/J+UOcPOgcUnHCbaFlEmqz9C06jiQisjhD5xIdPc56uVTrgKl6i41gbsns2K9qhaKdLG735LpgYRwDSCTHv/4nHRq+V16aYPCnz8=
Received: from CO2PR05CA0080.namprd05.prod.outlook.com (10.166.88.176) by BY2PR0501MB1749.namprd05.prod.outlook.com (10.163.154.23) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256_P256) id 15.1.991.4; Tue, 21 Mar 2017 15:44:50 +0000
Received: from BY2FFO11FD023.protection.gbl (2a01:111:f400:7c0c::151) by CO2PR05CA0080.outlook.office365.com (2603:10b6:102:2::48) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256_P256) id 15.1.991.4 via Frontend Transport; Tue, 21 Mar 2017 15:44:50 +0000
Authentication-Results: spf=softfail (sender IP is 66.129.239.18) smtp.mailfrom=juniper.net; addere.ch; dkim=none (message not signed) header.d=none;addere.ch; dmarc=fail action=none header.from=juniper.net;
Received-SPF: SoftFail (protection.outlook.com: domain of transitioning juniper.net discourages use of 66.129.239.18 as permitted sender)
Received: from p-emfe01a-sac.jnpr.net (66.129.239.18) by BY2FFO11FD023.mail.protection.outlook.com (10.1.15.212) with Microsoft SMTP Server (version=TLS1_0, cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA_P384) id 15.1.977.7 via Frontend Transport; Tue, 21 Mar 2017 15:44:50 +0000
Received: from p-mailhub01.juniper.net (10.160.2.17) by p-emfe01a-sac.jnpr.net (172.24.192.21) with Microsoft SMTP Server (TLS) id 14.3.123.3; Tue, 21 Mar 2017 08:44:49 -0700
Received: from eng-mail01.juniper.net (eng-mail01.juniper.net [172.17.28.114]) by p-mailhub01.juniper.net (8.14.4/8.11.3) with ESMTP id v2LFimVb026474; Tue, 21 Mar 2017 08:44:48 -0700 (envelope-from mdb@juniper.net)
Received: from eng-mail01.juniper.net (localhost [127.0.0.1]) by eng-mail01.juniper.net (Postfix) with ESMTP id 68FEB1144E; Tue, 21 Mar 2017 08:44:47 -0700 (PDT)
To: "Robert J. Hansen" <rjh@sixdemonbag.org>
CC: 'Ryru' <ryru@addere.ch>, openpgp@ietf.org
In-Reply-To: <00a901d2a24b$3f1d7df0$bd5879d0$@sixdemonbag.org>
References: <3b89c96a-0bb6-cd09-cbf7-1f9e26f04bd6@addere.ch> <52027.1490051694@eng-mail01.juniper.net> <87pohbm5or.fsf@wheatstone.g10code.de> <78804.1490102455@eng-mail01.juniper.net> <00a901d2a24b$3f1d7df0$bd5879d0$@sixdemonbag.org>
Comments: In-reply-to: "Robert J. Hansen" <rjh@sixdemonbag.org> message dated "Tue, 21 Mar 2017 09:58:38 -0400."
From: "Mark D. Baushke" <mdb@juniper.net>
Date: Tue, 21 Mar 2017 08:44:47 -0700
Message-ID: <11503.1490111087@eng-mail01.juniper.net>
Sender: mdb@juniper.net
MIME-Version: 1.0
Content-Type: text/plain
X-EOPAttributedMessage: 0
X-MS-Office365-Filtering-HT: Tenant
X-Forefront-Antispam-Report: CIP:66.129.239.18; IPV:NLI; CTRY:US; EFV:NLI; SFV:NSPM; SFS:(10019020)(6009001)(39450400003)(39860400002)(39840400002)(39850400002)(39410400002)(2980300002)(189002)(199003)(9170700003)(76506005)(4326008)(106466001)(6246003)(38730400002)(110136004)(105596002)(6266002)(50986999)(53936002)(76176999)(54356999)(86362001)(189998001)(53416004)(117636001)(7696004)(81166006)(6916009)(2950100002)(8676002)(5660300001)(7846003)(6392003)(229853002)(77096006)(8936002)(7126002)(55016002)(2906002)(5003940100001)(47776003)(356003)(50466002)(2810700001)(54906002)(305945005)(93886004)(48376002)(42262002); DIR:OUT; SFP:1102; SCL:1; SRVR:BY2PR0501MB1749; H:p-emfe01a-sac.jnpr.net; FPR:; SPF:SoftFail; MLV:sfv; MX:1; A:1; LANG:en;
X-Microsoft-Exchange-Diagnostics: 1; BY2FFO11FD023; 1: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
X-MS-Office365-Filtering-Correlation-Id: 32735efa-1c78-4a5d-fbaa-08d4707135d0
X-Microsoft-Antispam: UriScan:; BCL:0; PCL:0; RULEID:(22001)(2017030254075); SRVR:BY2PR0501MB1749;
X-Microsoft-Exchange-Diagnostics: 1; BY2PR0501MB1749; 3:qMADWJsnudhClK2pti76pKZWAHR4Cz+SlVJ6/Ht7o9yv0mvE51h9j1fONL6B4Oi1B5P1UY0KydDO9gE41xtRdBgcgTyZg1VhoCVPexRauSIDcEdDENdQXe4NEN/1dbxL0/07wtvCts9LpIqjcaRx/9aF7Vi4GnoizT2cSDBAoyAR3BdhMn9IOYJiplg+8M3GKFLSrj4Ynfju+880hySgBDJ50OKm0wNV9gLNcxRu5UTz2Unbxa+vBflECYjiG+iQdcQy+YNAKF2mQm2JfG5NQdRyFqOuJPIqlviUUnxx3g8W/n3nRy38luNH8sltbRiXne21xINIzQUTEcrfSZwcalAULlebjRxbv98F5nR7PhSKbNrxrPiAIXiJK7m4giRtmk+UVqdFdgPGF0pAhSf8Xg==; 25:Veh6noQ4PnodNoMMgfsZlXj1CPfgxBa88MHuEuDnxBQisBGtw1X0BGUjKf3VoUHYMEeUxmJehHEyBZG8zS6gSXUtDSdiNFXTPkVrWOeNwaEf02Ndsml1uik2jXeznCk6jNw53hRtx9bE7acun9YLkli9YJ0c4kBgF1LHKPMSOQ++hG/B1RHyPTDFsWHK1vuH2w2Jc7tuJ018hA2wJsUtLUCGmCZ+KneArsRwq+kfYwxi4sqnwkCCa9TRq9BbeQ+6z88BunmC8Y3y62ODu+LzbIJzc+1FHstb2cNH87nS69sMtTcI5Mjwlvuile9iWrMC3ZS2CYFFngLVnxE3nvA7KyLO17rACH+pnEGMvrD33W9lvxBlRJD7jQbqfpANqqhkwh8jkDMkdfjUeGrfnOm82dUvgPHbh/clxsAG/8lDrsBfjYl1aOawMgLMoHF1WIaP7hzOcNO6zwgxmLDNO2kVbQ==
X-Microsoft-Exchange-Diagnostics: 1; BY2PR0501MB1749; 31:aHSXxhCufnV11UPIAcKqO3CHOgGwa6KiuLkE+Tw0QiRQMGcH/i48Fbo4bTs5QflkvIFjQ7T1vkPhHHQYvXxG4yhBKnpEhgVC3btzCXFYLjslxNAZ3BJoOUSKC+g1NOM0bnxzicupOggOz3HH3Jt0iDIFkqIrGPy6yh1YDAsioOZxJnaO/i65MUdLGQwrgvQPnnYe4Ip5e1WEkO1nIfKE2aBMUE+T76IIrx9egC0y7Pq/Pbq8CfvIL6qx6imuqdLCkBgODhI07JJqHRDIZM6SZQNWKdqqJ/yztYVecqfpDR4=; 20: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
X-Microsoft-Antispam-PRVS: <BY2PR0501MB17493E46499D75FE89D1D8D2BF3D0@BY2PR0501MB1749.namprd05.prod.outlook.com>
X-Exchange-Antispam-Report-Test: UriScan:;
X-Exchange-Antispam-Report-CFA-Test: BCL:0; PCL:0; RULEID:(6040375)(601004)(2401047)(8121501046)(13017025)(13024025)(13018025)(13023025)(13015025)(5005006)(10201501046)(3002001)(6055026)(6041248)(20161123558025)(20161123562025)(20161123555025)(20161123560025)(20161123564025)(6072148); SRVR:BY2PR0501MB1749; BCL:0; PCL:0; RULEID:; SRVR:BY2PR0501MB1749;
X-Microsoft-Exchange-Diagnostics: 1; BY2PR0501MB1749; 4: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
X-Forefront-PRVS: 02530BD3AA
X-Microsoft-Exchange-Diagnostics: 1; BY2PR0501MB1749; 23:tZL8+JNojXBvjZWJ+F9UbdiP9OuCJYo34I05eL+zQB8bGHIBea+0HM1tsqoOA21PFPpI3Cca+DFYYjIcX8+LK8HwPTP64+5jAJHkzOnNRicKlunl+NDCN7Ho2ERK45dFkKKnHt8HIwr94lYVuNfVOJyYs6BS5P6JaAK6Dx4l27E31T4JDn9ZgIFK37OZyC31aBNAfcowkinTNOuw23ZHX3Hf147kSy8gnkv5UewLA/icCuUtUQXVARnW1uokkp28d2kprCPAo6cwptQ7v0XiYHnQ5oZMijKPqZMtS9HUH0NBkQSEDUnpnu0MR29NWYg72T7G3ndFsMvnpygsN6NrslsCdHhKSGW4e0TqtzMqZ/fvptekBBL7qB2iMXSD5y3qVdRiuk8furyhomOsNvDGZ59+IqJ1iaxV0aQg2NHsivr9BN6RPx7mk1tSqtIRssyqREwGYMHoEWXXYwAoLwa2Yy4z/6+vvV2qP3ePt05IOEZWGSaIqPo0ZCr6dsWF4yV2gwbFzcLDIz8iE03aZEsMDCeiV3HMPOvP/I+8dL3f8b53VdpH5f4Iz9xuZCm50zKxbakaFxhDqZGhOXZdzFd4cQIp1tCXQffG0eNhtcvymLGjACa2BiarNi0Y2TOd2yZDwadNDR5qrizKpvO5VV7ZtAqFmrTF+tjlZLEAghCbPguN3BE/ts3QeVsRTRWRPIljLW2nluDuxUp9JQzYei6ajpJ9jwmDvqaDGEXa5rGO2cSr4uQDvJQY6+rRV7XUU7Rxh1Y9tOS7dEk3HPzpP92mLQUFkHnFLkL0+6IhRLqxxkquBxZfm3eoadAB1/fjLxgIKujb1yPxrImLiqiHeAkkw2e/iV3ruDlFrjH8CbiNUlrXhrtMHFeCzpW2EgJe/MaT4tYz6MRLdG2k8AUuz6MYvolptug1q3c/7hmRA3tISzYC7Z/SSpcm1VzcblwQL3fNGHhGYUAOa2Hmai6zeiFoKoCvO9dFoHyOicXwO40LiN57+c9RSFXu52fY/kxTba8umV0OhE0vDu3W9gZpdL4vyyINAOYf72tvsUf0BpufATESpwj2sJDQC8tDpkReLhmDGYs8IpfpVvcnHvA9Ptdtjut6Xx2WTbA0581mQXpaMoEHtsvItFrcN8GXIm2UPPk3jbFaNQjty100+/ztummZbg0rutz9Qgl5MZv7Q505r4Q7JzRGZaNf5Sk9ss0D5L91OOduFdaYrpgyM1VjCVzdBg==
X-Microsoft-Exchange-Diagnostics: 1; BY2PR0501MB1749; 6:QAVoRQzJYZZMfWLK0Om818PHmhbrpYQiRdveo4bZZmqjQ+knwpRfY+qhhkSjF1QiWuvXpEanMowWr5K3NXE2aR8J8dGUcbGCJBhm+SepG6Ll/Le6bao6Kf0o/6RLUQntSI9557bPOG5ggh+nj9XXk0nqL8S9/rNpxLMZFzeY+UuWlEYtkc16cHVFcoyvpOk+ow3ifHA3hz5n2+Ri8CukkNSVxMMD///2iyWNusNQTxTr1WbUH4hBmMrsHvk4xzvM6i2bgQ5KrLHqZG8jQqnoTFavedkLFPbJvn9sFH+mKXAnfs7JIYXlm2c4rg8rnjPDs46UYXw4Us3Hq9UmPp5S1kmUfmsALkHZdp4ytGEer9LQIPMm0URf1pBTBNp/TswUOTV/C78jvfFmmkoJHrZIWh3Zmg286hoZS+4eUZksLmM=; 5:ApLkNuaZ6iPQ0m+rnFcyuLtlmMq+jSiO9iVrnTUbQ+NfVD8EsNtqpwqRxq2yN16+2bg8S76XCX60+8os0lL8jL0dC7GRLjVv4/OoSDVoxFbYeEONgSxXXknBnUQh7PazS1srTzNc9Kp6a7uA1ngZFQ==; 24:KkzPYp6xIJ8ofFQmgwar58g4jK+hyjAIr8iW5t2G0P64DKOAHbonlt1DN5OthxkzYoXd3kegIeis+zR4Pnxhw6syTr69vqM//wEei5n+wYc=
SpamDiagnosticOutput: 1:99
SpamDiagnosticMetadata: NSPM
X-Microsoft-Exchange-Diagnostics: 1; BY2PR0501MB1749; 7:Tq041/WWKz5+tTm1GSy5/ICXChAmN5YAmagrjz5YBWMlA0GQqDGam5rj+oR91vMhS+Wy6WHDkYbeb4cYOuYfjjcTxq2IHjEFv4JlroVnqX+Iqzyd+JXL8lI0aJ+1hiiOwRy9jzA5eO9PbkMnJIAEyP2xh5rd5Vh0zMG8SSPWCvQPblKERBVnW6uWrMNItyA2fYblVVCVBaeX5w6NVN6Q5Nqbt0rl1ji2pgci62250t3NqVdcaPUbU+HZTw4jEn2BkklfDA0D/u7KcwKR7t6M6sUQbDjqOiVbDpxRr/yKC8x6z/RGAb67z0es/SsTAtwE2PtnQjTy89jkIUGKGryCIA==
X-OriginatorOrg: juniper.net
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 21 Mar 2017 15:44:50.0246 (UTC)
X-MS-Exchange-CrossTenant-Id: bea78b3c-4cdb-4130-854a-1d193232e5f4
X-MS-Exchange-CrossTenant-OriginalAttributedTenantConnectingIp: TenantId=bea78b3c-4cdb-4130-854a-1d193232e5f4; Ip=[66.129.239.18]; Helo=[p-emfe01a-sac.jnpr.net]
X-MS-Exchange-CrossTenant-FromEntityHeader: HybridOnPrem
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BY2PR0501MB1749
Archived-At: <https://mailarchive.ietf.org/arch/msg/openpgp/vXxKW82WROHVrmfcRGzUC9L2wGg>
Subject: Re: [openpgp] Default preferences for the future
X-BeenThere: openpgp@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "Ongoing discussion of OpenPGP issues." <openpgp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/openpgp>, <mailto:openpgp-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/openpgp/>
List-Post: <mailto:openpgp@ietf.org>
List-Help: <mailto:openpgp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/openpgp>, <mailto:openpgp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 21 Mar 2017 15:47:10 -0000

Robert J. Hansen <rjh@sixdemonbag.org> writes:

> > I think TripleDES needs to go from a MUST to a SHOULD algorithm.
> 
> I don't see much point in dragging 3DES along with us into the future.
> It's done excellent service for 40 years, but the time has come to put
> it out to pasture.

I suppose it depends on how many messages you have encrypted that used
TripleDES as the algorithm. If you don't have an archive of encrypted
messages, then dropping TripleDES is not a big deal for you.

> > I think AES128 needs to be a MUST algorithm ... AES256 needs to 
> > be a SHOULD algorithm.
> 
> What's the rationale here? Why should the shorter keylength be
> required and the longer optional?

RFC4880 had AES128 as a SHOULD algorithm. Making it a MUST algorithm now
should not be a problem for most implmentations.

I do not object to making AES256 a MUST algorithm.

That said, if someone is using a symmetric key encryption from a pass
phrase, they are not really getting a very strong key. Certainly not one
that has 128 bits of randomness in it.

To get the most out of AES256, one needs enough entropy to properly seed
a PRNG to get 256 bits out of it. If one is using something like an
HMAC_DRBG with hmac-sha256, then really the entropy coming out of your
random number generator is only going to have 128 bits of security. So,
is there a real need to use AES256 for encryption if that is not how
many bits. I will grant you that a number of platforms are able to
provide 256 bits of strength, but not all of them.

A standard GNU/Linux system today which does not use a hardware source
of entropy and is only collecting mouse clicks and process interrupts is
not generally getting a lot of entropy for keys.

If I know that I have an OS that is using a hardware source of entropy,
then I have no problems using the stronger AES256 random key.

However, why use that much work if you know that the key is not really
that random?

	-- Mark

v2.23.0 | Report a Bug | By Email