[saag] kitten Summary - IETF 90
Shawn M Emery <shawn.emery@oracle.com> Thu, 24 July 2014 03:12 UTC
Return-Path: <shawn.emery@oracle.com>
X-Original-To: saag@ietfa.amsl.com
Delivered-To: saag@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 235991A8BB7 for <saag@ietfa.amsl.com>; Wed, 23 Jul 2014 20:12:47 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.201
X-Spam-Level:
X-Spam-Status: No, score=-4.201 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3, RP_MATCHES_RCVD=-0.001, SPF_PASS=-0.001, UNPARSEABLE_RELAY=0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id O_ePOKpVF0tQ for <saag@ietfa.amsl.com>; Wed, 23 Jul 2014 20:12:46 -0700 (PDT)
Received: from userp1040.oracle.com (userp1040.oracle.com [156.151.31.81]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 061411A0B07 for <saag@ietf.org>; Wed, 23 Jul 2014 20:12:45 -0700 (PDT)
Received: from acsinet22.oracle.com (acsinet22.oracle.com [141.146.126.238]) by userp1040.oracle.com (Sentrion-MTA-4.3.2/Sentrion-MTA-4.3.2) with ESMTP id s6O3ChNQ029899 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=OK); Thu, 24 Jul 2014 03:12:44 GMT
Received: from aserz7021.oracle.com (aserz7021.oracle.com [141.146.126.230]) by acsinet22.oracle.com (8.14.4+Sun/8.14.4) with ESMTP id s6O3CgxX000629 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Thu, 24 Jul 2014 03:12:42 GMT
Received: from abhmp0012.oracle.com (abhmp0012.oracle.com [141.146.116.18]) by aserz7021.oracle.com (8.14.4+Sun/8.14.4) with ESMTP id s6O3CgGm011147; Thu, 24 Jul 2014 03:12:42 GMT
Received: from dhcp-8b19.meeting.ietf.org (/10.159.72.72) by default (Oracle Beehive Gateway v4.0) with ESMTP ; Wed, 23 Jul 2014 20:12:42 -0700
Message-ID: <53D079B3.1050809@oracle.com>
Date: Wed, 23 Jul 2014 21:12:51 -0600
From: Shawn M Emery <shawn.emery@oracle.com>
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.6; rv:24.0) Gecko/20100101 Thunderbird/24.6.0
MIME-Version: 1.0
To: saag@ietf.org
References: <531736E4.6060906@oracle.com>
In-Reply-To: <531736E4.6060906@oracle.com>
X-Forwarded-Message-Id: <531736E4.6060906@oracle.com>
Content-Type: text/plain; charset="ISO-8859-1"; format="flowed"
Content-Transfer-Encoding: 7bit
X-Source-IP: acsinet22.oracle.com [141.146.126.238]
Archived-At: http://mailarchive.ietf.org/arch/msg/saag/OoGpkNygVUh5VOK9hJ6lRLWownE
Subject: [saag] kitten Summary - IETF 90
X-BeenThere: saag@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Security Area Advisory Group <saag.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/saag>, <mailto:saag-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/saag/>
List-Post: <mailto:saag@ietf.org>
List-Help: <mailto:saag-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/saag>, <mailto:saag-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 24 Jul 2014 03:12:47 -0000
Co-chairs: Sam Hartman, Shawn Emery, and Josh Howlett
Outgoing co-chairs: Sam Hartman and Josh Howlett (thank you)
Incoming co-chairs: Ben Kaduk and Matt Miller (welcome aboard)
The WG met for the Wednesday morning session.
I've included the high-lighted topics on the agenda that were discussed:
AES-SHA2
WGLC has expired. WGLC comments were not blocking. A suggestion was to use an AEAD
based algorithm such as SIV, where the cyphertext is the same length as the plaintext.
Consensus on the list was that this should be handled in a separate draft(s) if so
desired. KDF values and PRF output will also be verified by the implementations.
CAMMAC
WGLC has expired, but with only one comment/review. Chairs have requested more review.
RFC Updates
bis drafts have been created to fix:
6112: KeyExchange -> KEYEXCHANGE
Anonymous KDC option MUST, not SHOULD, be set when using an anonymous ticket
4402: PRF starts counter at 1, however implementations start at 0
5653: GSSException class does not provide an error token
Open mic
There were no dissenting comments.
Shawn.
--
kitten co-chair
- [saag] kitten Summary - IETF 88 Shawn M Emery
- [saag] kitten Summary - IETF 89 Shawn M Emery
- [saag] kitten Summary - IETF 90 Shawn M Emery
- [saag] kitten Summary - IETF 91 Shawn M Emery
- Re: [saag] kitten Summary - IETF 91 Randy Bush
- Re: [saag] kitten Summary - IETF 91 Shawn M Emery