Re: [saag] Perfect Forward Secrecy vs Forward Secrecy

Dan Brown <danibrown@blackberry.com> Wed, 18 March 2020 20:26 UTC

Return-Path: <danibrown@blackberry.com>
X-Original-To: saag@ietfa.amsl.com
Delivered-To: saag@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 006CB3A1B95 for <saag@ietfa.amsl.com>; Wed, 18 Mar 2020 13:26:30 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.1
X-Spam-Level:
X-Spam-Status: No, score=-2.1 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=blackberry.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id yAAupxepHy6z for <saag@ietfa.amsl.com>; Wed, 18 Mar 2020 13:26:28 -0700 (PDT)
Received: from smtp-pg10.blackberry.com (smtp-pg10.blackberry.com [68.171.242.226]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 771493A1B9B for <saag@ietf.org>; Wed, 18 Mar 2020 13:26:27 -0700 (PDT)
Received: from pps.filterd (mhs400ykf.rim.net [127.0.0.1]) by mhs400ykf.rim.net (8.16.0.27/8.16.0.27) with SMTP id 02IK6vPR179737; Wed, 18 Mar 2020 16:26:20 -0400
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=blackberry.com; h=from : to : subject : date : message-id : references : in-reply-to : content-type : content-transfer-encoding : mime-version; s=corp19; bh=TJEY/cGPbw+igA5N9dmBKDIdtwfAtV3U2Kg9KCx2sfk=; b=oFeGhWYnZWV8Aa7b5pR8B74KQp+b827vzeP/GQVWUqrt2by0FuVBBCg3bWA09ZVekAwe WGvzQt9aeD1df8Gtl6UTzgIsIPtWQSi1+tgU2zlmybrvm4K5RuvfbpPeOKfoFexcT8TN VYWPjLl9YyYGSiwSETXvzI3K9bAdwgcvrpXCVY2Ro/I+MP/nQ1eTaRwPd+S2K1jox4zQ jhjySYP8YdKWYdprY3YVL9cQSf76CXAJMzRp79AhSQGxn1f4Ae0W7nQ4WOOPJjmwImFT H/2q25LHeHu4PueFZPffOC5Vc1ZqJg3zFnAI87nIOgD+om+3Rr0QRm/DqehzvtSlV+3u ow==
Received: from xch211cnc.rim.net (xch211cnc.rim.net [10.3.27.116]) by mhs400ykf.rim.net with ESMTP id 2yuraf0b6g-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128 verify=NOT); Wed, 18 Mar 2020 16:26:20 -0400
Received: from XCH210YKF.rim.net (10.2.27.110) by XCH211CNC.rim.net (10.3.27.116) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id 15.1.1913.5; Wed, 18 Mar 2020 16:26:19 -0400
Received: from XCH210YKF.rim.net ([fe80::81ca:ad34:fc3:5ce8]) by XCH210YKF.rim.net ([fe80::81ca:ad34:fc3:5ce8%5]) with mapi id 15.01.1913.007; Wed, 18 Mar 2020 16:26:19 -0400
From: Dan Brown <danibrown@blackberry.com>
To: Dan Brown <danibrown@blackberry.com>, "Salz, Rich" <rsalz=40akamai.com@dmarc.ietf.org>, Robert Moskowitz <rgm-sec@htt-consult.com>, "saag@ietf.org" <saag@ietf.org>
Thread-Topic: [saag] Perfect Forward Secrecy vs Forward Secrecy
Thread-Index: AQHV/TKnv/elDdMNE0+7rke4G0Sq8ahOsTMAgAABcQCAAAHUAP//zF7wgABGPoA=
Date: Wed, 18 Mar 2020 20:26:19 +0000
Message-ID: <00475ac5178a456eb352e397ca9b98b1@blackberry.com>
References: <7231a98e-e4a2-55c9-3a51-d62886d7d061@htt-consult.com> <F318A864-CC99-47F7-BEFF-608F93AEB451@akamai.com> <89121466-d091-5f22-a053-a2a618946908@htt-consult.com> <B2FE2994-7C87-44C0-8DBC-DBCF15515115@akamai.com> <18624c8526f94f8892d80bb756e543c6@blackberry.com>
In-Reply-To: <18624c8526f94f8892d80bb756e543c6@blackberry.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [100.64.97.35]
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:6.0.138, 18.0.645 definitions=2020-03-18_07:2020-03-18, 2020-03-18 signatures=0
X-Proofpoint-Spam-Details: rule=outbound_notspam policy=outbound score=0 priorityscore=1501 malwarescore=0 suspectscore=0 phishscore=0 bulkscore=0 spamscore=0 clxscore=1015 lowpriorityscore=0 mlxscore=0 impostorscore=0 mlxlogscore=620 adultscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.0.1-2002250000 definitions=main-2003180088
Archived-At: <https://mailarchive.ietf.org/arch/msg/saag/LruLqoRkL1-1ChI0ElRugQRnWeM>
Subject: Re: [saag] Perfect Forward Secrecy vs Forward Secrecy
X-BeenThere: saag@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Security Area Advisory Group <saag.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/saag>, <mailto:saag-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/saag/>
List-Post: <mailto:saag@ietf.org>
List-Help: <mailto:saag-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/saag>, <mailto:saag-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 18 Mar 2020 20:26:31 -0000

> -----Original Message-----
> From: saag <saag-bounces@ietf.org> On Behalf Of Dan Brown
> does not use the term perfect, which I think is a good idea.

I prefer "forward secrecy" (or forward security), so no "perfect", please.  [To clarify my ambiguous grammar above with a clause appended to negation, oops.] 

The bike-shed color "perfect" should be avoided because it is too garish, metaphorically. The term "perfect" is unclear and inaccurate, no matter what formal definition is attached to it. 

The term-of-the-art justifications for perpetuating "perfect" are imperfect, based on my limited understanding of the art, but also based on the general principle of reform, evolution, and improvement, ever towards a more perfect world.  

----------------------------------------------------------------------
This transmission (including any attachments) may contain confidential information, privileged material (including material protected by the solicitor-client or other applicable privileges), or constitute non-public information. Any use of this information by anyone other than the intended recipient is prohibited. If you have received this transmission in error, please immediately reply to the sender and delete this information from your system. Use, dissemination, distribution, or reproduction of this transmission by unintended recipients is not authorized and may be unlawful.