Re: [saag] Section 2.9: was Re: AD review of draft-iab-crypto-alg-agility-06
Viktor Dukhovni <ietf-dane@dukhovni.org> Thu, 03 September 2015 20:34 UTC
Return-Path: <ietf-dane@dukhovni.org>
X-Original-To: saag@ietfa.amsl.com
Delivered-To: saag@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id DE1711B3B6F for <saag@ietfa.amsl.com>; Thu, 3 Sep 2015 13:34:24 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.6
X-Spam-Level:
X-Spam-Status: No, score=-2.6 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_LOW=-0.7] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Z3FmsP9ll4vp for <saag@ietfa.amsl.com>; Thu, 3 Sep 2015 13:34:23 -0700 (PDT)
Received: from mournblade.imrryr.org (mournblade.imrryr.org [38.117.134.19]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 6B27B1B2CDA for <saag@ietf.org>; Thu, 3 Sep 2015 13:34:23 -0700 (PDT)
Received: by mournblade.imrryr.org (Postfix, from userid 1034) id 96CF2284B6C; Thu, 3 Sep 2015 20:34:22 +0000 (UTC)
Date: Thu, 03 Sep 2015 20:34:22 +0000
From: Viktor Dukhovni <ietf-dane@dukhovni.org>
To: IETF SAAG <saag@ietf.org>
Message-ID: <20150903203422.GS9021@mournblade.imrryr.org>
References: <20150901165526.GU9021@mournblade.imrryr.org> <4F6E430F-61E7-46BA-9B4A-8E12156B62FA@vigilsec.com> <20150901211906.GA9021@mournblade.imrryr.org> <E44EE5B3-1469-49D7-9C15-299230E13779@vigilsec.com> <tsl8u8pmzta.fsf@mit.edu> <92D9378E-4724-4721-A5F4-26614D96831E@gmail.com> <20150902040145.GD9021@mournblade.imrryr.org> <CAC4RtVBJQX+B3XvnGnUpHbHdyw08Yn+CEGXML7K+c3q2pLNa7w@mail.gmail.com> <20150902223418.GS9021@mournblade.imrryr.org> <C1143EE0-499A-4DD5-B412-53F03A8C28BE@vigilsec.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Disposition: inline
In-Reply-To: <C1143EE0-499A-4DD5-B412-53F03A8C28BE@vigilsec.com>
User-Agent: Mutt/1.5.23 (2014-03-12)
Archived-At: <http://mailarchive.ietf.org/arch/msg/saag/CxLT3JtWX28Jx3nU8hafaDo_hCM>
Subject: Re: [saag] Section 2.9: was Re: AD review of draft-iab-crypto-alg-agility-06
X-BeenThere: saag@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
Reply-To: saag@ietf.org
List-Id: Security Area Advisory Group <saag.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/saag>, <mailto:saag-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/saag/>
List-Post: <mailto:saag@ietf.org>
List-Help: <mailto:saag-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/saag>, <mailto:saag-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 03 Sep 2015 20:34:25 -0000
On Thu, Sep 03, 2015 at 04:08:59PM -0400, Russ Housley wrote:
> > It can be a sentence or two, just enough to not give the impression
> > that weak crypto is preferred with OS.
>
> The words in my current edit buffer are:
>
> Despite the guidance in Section 2.4, opportunistic security [RFC7435]
> also deserves consideration, especially at the time a protocol
> implementation is deployed and configured. Using algorithms that are
> weak against advanced attackers but sufficient against others is one
> way to make pervasive surveillance significantly more difficult. As
> a result, algorithms that would not be acceptable in many negotiated
> situations are acceptable for opportunistic security when legacy
> systems are in use for unauthenticated encrypted sessions as
> discussed in Section 3 of [RFC7435] as long as their use does not
> facilitate downgrade attacks. Similarly, weaker algorithms and
> shorter key sizes are also acceptable for opportunistic security with
> the same constraints. That said, the use of strong algorithms is
> always preferable.
>
> Would it help to change "As a result" to "As a result, when communicating
> parties do not have strong algorithms in common"?
You're heading in the right direction, but I think this is a sentence
or so too late. The sentence that starts with "Using algorithms
that are weak ..." is troublesome. How about:
Using the strongest available encryption (even if not strong
enough for mandatory security) is one way ...
And then perhaps still make the additional change you're proposing.
--
Viktor.
- [saag] Section 2.9: was Re: AD review of draft-ia… Kathleen Moriarty
- Re: [saag] Section 2.9: was Re: AD review of draf… Viktor Dukhovni
- Re: [saag] Section 2.9: was Re: AD review of draf… Eliot Lear
- Re: [saag] Section 2.9: was Re: AD review of draf… Viktor Dukhovni
- Re: [saag] Section 2.9: was Re: AD review of draf… Steve Crocker
- Re: [saag] Section 2.9: was Re: AD review of draf… Salz, Rich
- Re: [saag] Section 2.9: was Re: AD review of draf… Russ Housley
- Re: [saag] Section 2.9: was Re: AD review of draf… Viktor Dukhovni
- Re: [saag] Section 2.9: was Re: AD review of draf… Kathleen Moriarty
- Re: [saag] Section 2.9: was Re: AD review of draf… Russ Housley
- Re: [saag] Section 2.9: was Re: AD review of draf… Sam Hartman
- Re: [saag] Section 2.9: was Re: AD review of draf… Kathleen Moriarty
- Re: [saag] Section 2.9: was Re: AD review of draf… Viktor Dukhovni
- Re: [saag] Section 2.9: was Re: AD review of draf… Barry Leiba
- Re: [saag] Section 2.9: was Re: AD review of draf… Russ Housley
- Re: [saag] Section 2.9: was Re: AD review of draf… Kathleen Moriarty
- Re: [saag] Section 2.9: was Re: AD review of draf… Stephen Farrell
- Re: [saag] Section 2.9: was Re: AD review of draf… Viktor Dukhovni
- Re: [saag] Section 2.9: was Re: AD review of draf… Russ Housley
- Re: [saag] Section 2.9: was Re: AD review of draf… Viktor Dukhovni
- Re: [saag] Section 2.9: was Re: AD review of draf… Russ Housley
- Re: [saag] Section 2.9: was Re: AD review of draf… Viktor Dukhovni
- Re: [saag] Section 2.9: was Re: AD review of draf… Sam Hartman
- Re: [saag] Section 2.9: was Re: AD review of draf… Kathleen Moriarty