IETF Logo Mail Archive

Re: Ready for Camellia?

David Shaw <dshaw@jabberwocky.com> Fri, 14 March 2008 15:45 UTC

Return-Path: <owner-ietf-openpgp@mail.imc.org>
X-Original-To: ietfarch-openpgp-archive@core3.amsl.com
Delivered-To: ietfarch-openpgp-archive@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id E20993A6F4B for <ietfarch-openpgp-archive@core3.amsl.com>; Fri, 14 Mar 2008 08:45:00 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.599
X-Spam-Level:
X-Spam-Status: No, score=-2.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id x3pM3lb+t7cY for <ietfarch-openpgp-archive@core3.amsl.com>; Fri, 14 Mar 2008 08:45:00 -0700 (PDT)
Received: from balder-227.proper.com (cl-240.ewr-01.us.sixxs.net [IPv6:2001:4830:1200:ef::2]) by core3.amsl.com (Postfix) with ESMTP id 9AED13A6F01 for <openpgp-archive@ietf.org>; Fri, 14 Mar 2008 08:44:59 -0700 (PDT)
Received: from balder-227.proper.com (localhost [127.0.0.1]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id m2EFGJgq001204 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Fri, 14 Mar 2008 08:16:19 -0700 (MST) (envelope-from owner-ietf-openpgp@mail.imc.org)
Received: (from majordom@localhost) by balder-227.proper.com (8.14.2/8.13.5/Submit) id m2EFGJZc001203; Fri, 14 Mar 2008 08:16:19 -0700 (MST) (envelope-from owner-ietf-openpgp@mail.imc.org)
X-Authentication-Warning: balder-227.proper.com: majordom set sender to owner-ietf-openpgp@mail.imc.org using -f
Received: from foobar.cs.jhu.edu (foobar.cs.jhu.edu [128.220.13.173]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id m2EFGH6a001197 for <ietf-openpgp@imc.org>; Fri, 14 Mar 2008 08:16:18 -0700 (MST) (envelope-from dshaw@jabberwocky.com)
Received: from walrus.jabberwocky.com (c-75-69-177-157.hsd1.ma.comcast.net [75.69.177.157]) by foobar.cs.jhu.edu (8.11.6/8.11.6) with ESMTP id m2EFGGN26778 for <ietf-openpgp@imc.org>; Fri, 14 Mar 2008 10:16:16 -0500
Received: from jabberwocky.com (grover.jabberwocky.com [172.24.84.28]) by walrus.jabberwocky.com (8.14.1/8.14.1) with SMTP id m2EFGBVR006487 for <ietf-openpgp@imc.org>; Fri, 14 Mar 2008 11:16:11 -0400
Date: Fri, 14 Mar 2008 11:16:11 -0400
From: David Shaw <dshaw@jabberwocky.com>
To: ietf-openpgp@imc.org
Subject: Re: Ready for Camellia?
Message-ID: <20080314151611.GA651@jabberwocky.com>
Mail-Followup-To: ietf-openpgp@imc.org
References: <sjmtzje1ltx.fsf@pgpdev.ihtfp.org> <20080311180200.GC4826@jabberwocky.com> <sjmzlt3x33m.fsf@pgpdev.ihtfp.org> <20080313152341.GB1587@jabberwocky.com> <47DA85DD.8000500@systemics.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Disposition: inline
In-Reply-To: <47DA85DD.8000500@systemics.com>
OpenPGP: id=99242560; url=http://www.jabberwocky.com/david/keys.asc
User-Agent: Mutt/1.5.17 (2007-11-01)
Sender: owner-ietf-openpgp@mail.imc.org
Precedence: bulk
List-Archive: <http://www.imc.org/ietf-openpgp/mail-archive/>
List-Unsubscribe: <mailto:ietf-openpgp-request@imc.org?body=unsubscribe>
List-ID: <ietf-openpgp.imc.org>

On Fri, Mar 14, 2008 at 03:04:13PM +0100, Ian G wrote:
>> I think we're ready for the final push on Camellia.  All of the
>> suggested changes have been incorporated, and if folks could give it a
>> final read, I'd appreciate it:
>>   http://www.ietf.org/internet-drafts/draft-ietf-openpgp-camellia-01.txt

> I am confused about one language difference between Camellia doc and ECC 
> doc.  In Camellia, there are MAYs.  In ECC, there are MUSTs, SHOULDs, MAYs.
>
> The way I interpret it, Camellia is *incorporated within* RFC4880 and adds 
> MAY algorithms.  But ECC is *appended as a MAY* ... the entire appendix is 
> a MAY, within which there are choices guided by RFC2119.
>
> Maybe I'm wrong about my interpretation, and if so, stop reading here.

I disagree with that interpretation.  There is nothing special about
Camellia here.  Both Camellia and ECC are the same: new RFCs that
specify new functionality.  Whatever they may specify, they can only
specify that in regards to themselves.

>    This document is an optional appendix to [RFC4880] which
>    makes the entire Camellia addition a MAY.  If you do add
>    Camellia then you must follow the recommendations below
>    using the normal language of [RFC2119].
>
> OK, that's really crappy language but I hope you get the idea.

The draft more or less says that:

   OpenPGP applications MAY implement Camellia.  If implemented,
   Camellia may be used in any place in OpenPGP where a symmetric
   cipher is usable, and is subject to the same usage requirements
   (such as its presence in the Preferred Symmetric Algorithms
   signature subpacket) as the other symmetric ciphers in OpenPGP.

Note that the whole draft has only one "MAY" (and no MUSTs, SHOULDs,
etc) with regards to Camellia.  That is appropriate for a simple
algorithm RFC.  It's "you MAY implement this, but doing so doesn't get
you out of the various MUSTs and other rules from 4880."

> I agree with dropping 192.  I see no consistency argument here, the notion 
> of having consistent sets across algorithms seems esthetic only.  Real 
> users won't understand these notions of esthetics.

I just thought of another reason to leave Camellia-192 out: if we
leave it out and then change our minds, it's pretty easy to add it
later (just write a tiny RFC and get an algorithm number for it).  If
we do put it in now and then change our minds, it's nearly impossible
to get rid of it later.

David

v2.39.1 | Report a Bug | By Email | System Status