Re: I-D Action: draft-denis-tls-aegis-03.txt
John Mattsson <john.mattsson@ericsson.com> Mon, 09 December 2024 13:32 UTC
Return-Path: <john.mattsson@ericsson.com>
X-Original-To: quic@ietfa.amsl.com
Delivered-To: quic@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6416FC14CE42; Mon, 9 Dec 2024 05:32:25 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.252
X-Spam-Level:
X-Spam-Status: No, score=-2.252 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.148, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_BLOCKED=0.001, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_VALIDITY_RPBL_BLOCKED=0.001, RCVD_IN_VALIDITY_SAFE_BLOCKED=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=ericsson.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id z6rWYBPbRCtk; Mon, 9 Dec 2024 05:32:21 -0800 (PST)
Received: from OSPPR02CU001.outbound.protection.outlook.com (mail-norwayeastazon11013008.outbound.protection.outlook.com [40.107.159.8]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange ECDHE (P-384) server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id B8674C14F703; Mon, 9 Dec 2024 05:32:20 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector10001; d=microsoft.com; cv=none; b=pQkv0t4HH+M+AZJwhZmy3ugyTMYKbwUG9wlRqUgONdikM8cpR2eyDuWSKVHndt89e6EEsqdEf+L/OGwyPl2GiELO878hzFM8foCTTGEM1cMeCbSD5sbQSA+i0OA96y6VGPYsxXRmyXMATvGuPusUjfT4KvXMkNOR8UyxK7Y4aipBgPjYSHW27Ghf4RFYVe5UOQEPKSOWjIXr5nHUxqpp/kAjcrbUAT22VrFX7RWhmgqOJGwQMN2OGIX5y7bKADDxi+iPj1JCRTD1k5DJFmTB4cXInFOoGUkUfFNW9WEufLtEKVU6VJ2jgWktUoSyMGpU4WNlFexNfWFHXXDpruylUg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector10001; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=PRHIa8Vh3g39bJW5dBe7SxDuhOSNaPAAUyCWQbTZKAQ=; b=MJ5t4wnvOT3OGq6VIibjENRT9/AGcoLFsDGTFD/PJyMkSf4rcQgIm8FrhN+X7S0MIYAQTkQIh7AJE7YUgdsE6DUFwSStGFJq1PgAEdpJCUyb0UxOzV1gwgyq/G4bX2M/XadZcwObo9f4NCVXDtuUs3vew0606nVAWem4jaTIs7FwlRDHiUw1FEjemQyWE3KPd6Qak0gYeJGL7L3mOIV4djTR4Slxw8Dyzjv8GcoNutHsTmvosiTjdcYPfG+hoOq27y/oFNRqSOFTw0JHfMcbhZN/EOFcy+VLfAXcIpJlG4V63E6ZmCl9YOfNW+/QQDhKptADXCzlOK5YFDcbhU2fMg==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=ericsson.com; dmarc=pass action=none header.from=ericsson.com; dkim=pass header.d=ericsson.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ericsson.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=PRHIa8Vh3g39bJW5dBe7SxDuhOSNaPAAUyCWQbTZKAQ=; b=cuX/VEy+3ZGazVs/lxpwn7qzg85ZST+oCmUdkAjCYxEljShm+ccvHbZzn/pZQ7R8F9rbXvE1AtYOzPq9pqIAmavTNssGn++EmeLydDg2kSa/1mhjNCtKoaFb/9gXuuySeMvSAodfRKq/SibnSFuUzOfQnmVeTngBqgnupT41dsmcBm7o+bYtdWSsO/e/aGQ3rPuEFVdv59FAgJ/ZBmwV6mZyj/hb7mJfYXz05IuBkTIzqhF0tg4WNJF8cwF/jgHeaUjiDWwIhuieKg0K+l/NeqZC/qNPvAZmQaNWbmVRTMM6sZT4LPRZfq3rgydLumwbKZKCmVVDlKu+4hrBj9IaTA==
Received: from GVXPR07MB9678.eurprd07.prod.outlook.com (2603:10a6:150:114::10) by AM7PR07MB6835.eurprd07.prod.outlook.com (2603:10a6:20b:1b7::21) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.8230.18; Mon, 9 Dec 2024 13:32:17 +0000
Received: from GVXPR07MB9678.eurprd07.prod.outlook.com ([fe80::bcf3:3f45:888e:a4b8]) by GVXPR07MB9678.eurprd07.prod.outlook.com ([fe80::bcf3:3f45:888e:a4b8%5]) with mapi id 15.20.8230.016; Mon, 9 Dec 2024 13:32:17 +0000
From: John Mattsson <john.mattsson@ericsson.com>
To: "TLS@ietf.org" <tls@ietf.org>, "quic@ietf.org" <quic@ietf.org>
Subject: Re: I-D Action: draft-denis-tls-aegis-03.txt
Thread-Topic: I-D Action: draft-denis-tls-aegis-03.txt
Thread-Index: AQHbSjs1MieUJES5IEKwtTx/8u93gQ==
Date: Mon, 09 Dec 2024 13:32:17 +0000
Message-ID: <GVXPR07MB967887CF13CA35B4EFDC7400893C2@GVXPR07MB9678.eurprd07.prod.outlook.com>
Accept-Language: en-US
Content-Language: en-GB
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-ms-reactions: allow
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=ericsson.com;
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: GVXPR07MB9678:EE_|AM7PR07MB6835:EE_
x-ms-office365-filtering-correlation-id: 27df7085-3f46-4036-107a-08dd1855e687
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;ARA:13230040|376014|366016|1800799024|8096899003|38070700018;
x-microsoft-antispam-message-info: psP70jDxzS2qtVOoHR2qXFS7pMCfZVJEyAgyft078DNip3nxYY6qcQbRfYAIp+/3XixNWzWt2Cg7QK3CdHP8ANdZ61+gS5tjCbcEBBGd1g+BQQzcL8rrvhbuN4OTdPMf4FmofS3ADacKXS+3/wbXqMEbMtHApReQbsVo78A4YgVj6w1b54A97dWKuWJESVCu4Cnrtsrqs/cTvmYCf3Qc9/YhcKMovTBQcg/npsqEbKzCiLl0RacIF3LitAbulNzyVw8IJ4/mgTpxlWJ600yxOgknBoj2r83jiKXKpWJsKYGox0WKOYBQ38iDmQrL27nldCZMaHNk4E8+8OSeQHBWvgREuC3m1TY5GRrK7H+puQnN6s4aiOaGSrxQH99Oqqgbdko7Lj+XRlOD9CedcXfNQcsJEFJFdXpuwB3dBQMNDZjI927kgU+oQcANpqfsdM9VI/ctJchnLfgMZgjhsP2l1EEokN8OmGAfQz4hSGZJFPKKZ6hN2mR4JYQyJyh3eHTpiAHMTE7D6o+gIsR9IDo2C5VEJmPaiOxCUsN5k9kyucbC0vgz8g2HSFdnxnQnSXgKD3RIW0ZWbPZ838QcwXTJDKbrX87IZtuNOekilZoen9FipVB6ar9tbjmLgif6sU8gEwmUPNb04eg1YZeIOkHlg56Htbdms/USQJPgo+mVbuuFc0SqObKqbFoH1Q3zPZNq1AydipiATubsrzCPz6jm783ZLZKvXFNIOMbXTGo6xLJrkCN8l2YGiJEMvMSksQTEeOZSaHbUifgSsWAT5lHa7wsRmwIY3Z77qQGuB2Xsw+UcdN7OdQkps0C40XH/i696Mm3CoUoG8XjDWV46tAi/Ua82cexn3a42ixb/rNY/kko3qWZbCzsCN5kYHAya9T6ZNRww3KMKco2Bwvlby/qOKTY08vCRWDHh9odAowJv+XvvUCnJtxA8RtwT/FWqehKPhumZTlK6Jw20Bvbl+K75yGx6ctutTf3GqNNY4re5Sm/BeK1uY62GmFfdn69KHzKyAiOMRQIXbye2JLBhjwOk3FGX9XTud0Wo21d9QRzfPbci6bnNEJNNmmxYK4JQDaBsCzoD+vIJjQk5L/teQJvc7y8KAP8yx2e3IELDldZNykyQxYhIxRqH3sloiErnPu7V+SEJQr2UpGhFaGqXUUxXduuCAyYcKUBoLUAwqrpN4xIOrq6dHMDW3LRgkN7yHAhqW8gcS2a9/Jplwyb+aBLMH9zP9gnyAalzu91Y6SXnd+zwUtFNXjI7uWz0jOdxZJ8gNDhI3P6TwDTPi86TcOCyt6cWtyv3lQgYlR6fH5p/fda/69voyCbrIsZGMiklPnYrsGvf6pR4YsuMdgQwYwYjrw5035g4d3zH4LGOd4BxvI6kjYpN0/VUTgr0PtG6xKVdHlaEh+uef5UB84/wH3pv5TnE18xiTVabxQNlNo7fG30=
x-forefront-antispam-report: CIP:255.255.255.255;CTRY:;LANG:en;SCL:1;SRV:;IPV:NLI;SFV:NSPM;H:GVXPR07MB9678.eurprd07.prod.outlook.com;PTR:;CAT:NONE;SFS:(13230040)(376014)(366016)(1800799024)(8096899003)(38070700018);DIR:OUT;SFP:1101;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: multipart/alternative; boundary="_000_GVXPR07MB967887CF13CA35B4EFDC7400893C2GVXPR07MB9678eurp_"
MIME-Version: 1.0
X-OriginatorOrg: ericsson.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: GVXPR07MB9678.eurprd07.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 27df7085-3f46-4036-107a-08dd1855e687
X-MS-Exchange-CrossTenant-originalarrivaltime: 09 Dec 2024 13:32:17.4755 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 92e84ceb-fbfd-47ab-be52-080c6b87953f
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: MEZuWU709eP7fWvsUWJUe2Q+FVC65D2s+di7MwEa9e8jrKMgXfBCdEEQ28XgopklaZuSK1HXhpLwRsnfglXmKdatPSRZud+fsJyBH11DB9g=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: AM7PR07MB6835
Message-ID-Hash: 7XISMJK74Z6KWRC56TKWB5K4WLAIXLWG
X-Message-ID-Hash: 7XISMJK74Z6KWRC56TKWB5K4WLAIXLWG
X-MailFrom: john.mattsson@ericsson.com
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-quic.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
X-Mailman-Version: 3.3.9rc6
Precedence: list
List-Id: Main mailing list of the IETF QUIC working group <quic.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/quic/XkZ4fzVOTraskTl9u_WcZUsa-b0>
List-Archive: <https://mailarchive.ietf.org/arch/browse/quic>
List-Help: <mailto:quic-request@ietf.org?subject=help>
List-Owner: <mailto:quic-owner@ietf.org>
List-Post: <mailto:quic@ietf.org>
List-Subscribe: <mailto:quic-join@ietf.org>
List-Unsubscribe: <mailto:quic-leave@ietf.org>
Hi, Looking at the performance figures for the X2 and X4 variant of AEGIS on AMD Zen 4 and Apple M1, I started thinking if adding parallelism at the algorithm level is the right solution. An alternative is to add parallelism at the protocol level similar to IPsec, something DTLS 1.3 and QUIC do not currently support. In QUIC and DTLS 1.3 you could for example add an extension to include the Connection ID in the derivation of traffic secrets (lets ignore key updates for now) and use several Connection IDs in parallel over a single connection. Would 2 or 4 parallel AEGIS-128L have better performance than AEGIS-128X2 and AEGIS-128X4? https://github.com/jedisct1/aegis-X Cheers, John On 2024-12-01, 14:23, "internet-drafts@ietf.org" <internet-drafts@ietf.org> wrote: Internet-Draft draft-denis-tls-aegis-03.txt is now available. Title: AEGIS-based Cipher Suites for TLS 1.3, DTLS 1.3 and QUIC Authors: Frank Denis Samuel Lucas Name: draft-denis-tls-aegis-03.txt Pages: 9 Dates: 2024-12-01 Abstract: This document proposes new cipher suites based on the AEGIS family of authenticated encryption algorithms for integration into the TLS 1.3, DTLS 1.3, and QUIC protocols. About This Document This note is to be removed before publishing as an RFC. Status information for this document may be found at https://datatracker.ietf.org/doc/draft-denis-tls-aegis/. Source for this draft and an issue tracker can be found at https://github.com/jedisct1/draft-denis-tls-aegis. The IETF datatracker status page for this Internet-Draft is: https://datatracker.ietf.org/doc/draft-denis-tls-aegis/ There is also an HTML version available at: https://www.ietf.org/archive/id/draft-denis-tls-aegis-03.html A diff from the previous version is available at: https://author-tools.ietf.org/iddiff?url2=draft-denis-tls-aegis-03 Internet-Drafts are also available by rsync at: rsync.ietf.org::internet-drafts
- Re: I-D Action: draft-denis-tls-aegis-03.txt John Mattsson