IETF Logo Mail Archive

Re: [saag] sntrup761x25519-sha512

Simon Josefsson <simon@josefsson.org> Tue, 23 May 2023 08:25 UTC

Return-Path: <simon@josefsson.org>
X-Original-To: saag@ietfa.amsl.com
Delivered-To: saag@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 88CF0C151520 for <saag@ietfa.amsl.com>; Tue, 23 May 2023 01:25:06 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.096
X-Spam-Level:
X-Spam-Status: No, score=-2.096 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_BLOCKED=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=neutral reason="invalid (unsupported algorithm ed25519-sha256)" header.d=josefsson.org header.b="neBeb1nB"; dkim=pass (2736-bit key) header.d=josefsson.org header.b="Stxt1/uT"
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Rv50hhOE3AH1 for <saag@ietfa.amsl.com>; Tue, 23 May 2023 01:25:00 -0700 (PDT)
Received: from uggla.sjd.se (uggla.sjd.se [IPv6:2001:9b1:8633::107]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange ECDHE (P-256) server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E78F6C15109E for <saag@ietf.org>; Tue, 23 May 2023 01:25:00 -0700 (PDT)
DKIM-Signature: v=1; a=ed25519-sha256; q=dns/txt; c=relaxed/relaxed; d=josefsson.org; s=ed2303; h=Content-Type:MIME-Version:Message-ID:In-Reply-To :Date:References:Subject:Cc:To:From:Sender:Reply-To:Content-Transfer-Encoding :Content-ID:Content-Description; bh=Ii4Fxdpg07ERL5voVFLXHZ8qIl6ykl/Q8BxwbTkh31E=; t=1684830296; x=1686039896; b=neBeb1nBoc/uXHpwjuSVglehBxTlg8qvB8c4+rEQjlBnKEA/fE34Uk1u9WL5K6lcre42bxHmk4f wVNw4DuFWBg==;
DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=josefsson.org; s=rsa2303; h=Content-Type:MIME-Version:Message-ID: In-Reply-To:Date:References:Subject:Cc:To:From:Sender:Reply-To: Content-Transfer-Encoding:Content-ID:Content-Description; bh=Ii4Fxdpg07ERL5voVFLXHZ8qIl6ykl/Q8BxwbTkh31E=; t=1684830296; x=1686039896; b=Stxt1/uT8hNWp1ZOkxgoESn8Qv9WxcLNp9eBZ3JDI6FZoLeVNa/PQyCJL2tqpUF61EQbN9Fosyq gmg39roafGEXZTyDaETOPlehyOgVfM8RqzxNWnIIwTUEiQyuYzDpDX56c9jGtXNXZ/GpRkaTAt3zU Pbp6KnmRCQl2wK03tBVKGGhkgePTC6uBJH93vc0+xBAFzqUQCFG+JTqsbCX6R3XzuvOZE5p3xnxBE +i5JDykOc1ne1oE1p6KdTafwGfrcz3S7I9J/nvMBEyABy+KjOGTh/vKyUF4/j/x6HF840jKdr4nTw FcTGifgUQFvRzRxK54GzG5Uvru6NBY5ejHEpsegVvrMWrJWErkze9m+ByQjGEQyC9Nru/2asPwl6i l1HHCo7lezn4UB6YRADChevGx9CP7kjGVgocyElP+zfqV+Qf+a/f/ZmILOUgHo/roi49prKwD;
Received: from [2001:9b1:41ac:ff00:823f:5dff:fe09:16ac] (port=34496 helo=kaka) by uggla.sjd.se with esmtpsa (TLS1.3) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (Exim 4.95) (envelope-from <simon@josefsson.org>) id 1q1NK8-00AYQp-Rq; Tue, 23 May 2023 08:24:52 +0000
From: Simon Josefsson <simon@josefsson.org>
To: Martin Thomson <mt@lowentropy.net>
Cc: saag@ietf.org
References: <875y8y4ip2.fsf@kaka.sjd.se> <84296E62-5843-4E7A-BD43-430491A5A1F3@akamai.com> <874jo8ytgw.fsf@kaka.sjd.se> <f6aa133635084609b0032ab1cfbfb7ce@amazon.com> <87sfbny046.fsf@kaka.sjd.se> <34f16e71-6897-4370-a77c-effc45e434a4@app.fastmail.com>
OpenPGP: id=B1D2BD1375BECB784CF4F8C4D73CF638C53C06BE; url=https://josefsson.org/key-20190320.txt
X-Hashcash: 1:22:230523:mt@lowentropy.net::tNfdn3Ms4mrc3wU0:36Lz
X-Hashcash: 1:22:230523:saag@ietf.org::8VGFzGxBUr/YIbvv:Frwy
Date: Tue, 23 May 2023 10:24:48 +0200
In-Reply-To: <34f16e71-6897-4370-a77c-effc45e434a4@app.fastmail.com> (Martin Thomson's message of "Tue, 23 May 2023 10:00:02 +0200")
Message-ID: <87jzwzxxnz.fsf@kaka.sjd.se>
User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/27.1 (gnu/linux)
MIME-Version: 1.0
Content-Type: multipart/signed; boundary="=-=-="; micalg="pgp-sha256"; protocol="application/pgp-signature"
Archived-At: <https://mailarchive.ietf.org/arch/msg/saag/rD6-H1fLZ27_ikFeTtYP9yxbtcY>
Subject: Re: [saag] sntrup761x25519-sha512
X-BeenThere: saag@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Security Area Advisory Group <saag.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/saag>, <mailto:saag-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/saag/>
List-Post: <mailto:saag@ietf.org>
List-Help: <mailto:saag-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/saag>, <mailto:saag-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 23 May 2023 08:25:06 -0000

"Martin Thomson" <mt@lowentropy.net> writes:

> On Tue, May 23, 2023, at 09:31, Simon Josefsson wrote:
>> There is no either/or conflict here -- SNTRU is deployed and will be in
>> wide use on the Internet for the coming 5+ years.  It seems useful for
>> the IETF to be involved in standardizing protocols that are used on the
>> Internet.
>
> If it is deployed already, I'd assume that there is no intent to
> change it.  That is, the IETF isn't going to gain change control.

One point of my draft is to give IETF change control.  The process was
the same with RFC 8731 when we documented how Curve25519 was used in
OpenSSH at the time.  Many implementations (including OpenSSH) now use
the RFC 8731 algorithm identifier that is under IETF change control.

> So is this a case for ISE publication?  That is, a note saying that
> this is how the Internet does it.  There's value in that, but at least
> it would not pretend that this is standardization.

The IANA SSH KEX registration rule is IETF review.  My draft is labeled
as Informational now, but that could be changed.

/Simon

v2.23.0 | Report a Bug | By Email