IETF Logo Mail Archive

Re: [saag] sntrup761x25519-sha512

Eric Rescorla <ekr@rtfm.com> Tue, 23 May 2023 22:57 UTC

Return-Path: <ekr@rtfm.com>
X-Original-To: saag@ietfa.amsl.com
Delivered-To: saag@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 456EFC151082 for <saag@ietfa.amsl.com>; Tue, 23 May 2023 15:57:11 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.892
X-Spam-Level:
X-Spam-Status: No, score=-1.892 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_BLOCKED=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_NONE=0.001, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=rtfm-com.20221208.gappssmtp.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 9-EA146BH73i for <saag@ietfa.amsl.com>; Tue, 23 May 2023 15:57:10 -0700 (PDT)
Received: from mail-yw1-x112e.google.com (mail-yw1-x112e.google.com [IPv6:2607:f8b0:4864:20::112e]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 8950CC14F726 for <saag@ietf.org>; Tue, 23 May 2023 15:57:10 -0700 (PDT)
Received: by mail-yw1-x112e.google.com with SMTP id 00721157ae682-561a33b6d63so4110767b3.1 for <saag@ietf.org>; Tue, 23 May 2023 15:57:10 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=rtfm-com.20221208.gappssmtp.com; s=20221208; t=1684882629; x=1687474629; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:from:to:cc:subject:date:message-id:reply-to; bh=HV5zbH50vQ95u4LNJ4OCEOOeAuDxdDVs6iOGgIrYQ9A=; b=AK2M31S0Hq520oJxXGKoRHwUokLS2PltIZbmyH16HzPs+38cG4qOOki0rfm0Nj5b0o VkQV8x9BQnTnTwfUMl5QNXehuuizJAwna4wI7GjB6JBXy0nLXv7R8Urm9nfBLF4ZABQs QPs41dq3MmAGE5HazfWmh+hwpdx/E+rNXI2lJ/7CLROqgdZatSG0b9MkSFd1YLcQMh1D WDgJFTG4dvOnxzjbU/vOwSB6SmUfsgChR2wX1nkUI49+hofwCiZK6eVzcmQksXi3tqyM +fbD8dbL8NApPTFdfQ4X3BeMIzA7EH/jTEt63+0p3Sm7+N8dUVdrm7sFTghnzskAtbBl /WvA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20221208; t=1684882629; x=1687474629; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:x-gm-message-state:from:to:cc:subject:date:message-id :reply-to; bh=HV5zbH50vQ95u4LNJ4OCEOOeAuDxdDVs6iOGgIrYQ9A=; b=HP9XnPBM7zdC2xroJYHhndQviaTOYGn+LOQv033lehsTBYwdm2oTorHFOFwZ/T13wT kLWLLcuwYg3+ZzeDYHkbfowsRzZPmlcEg8aIF1tyO5YNUs/fK7W3ceHALUELzGojfp+v joUnAJ+D8Rkgk/jFXdWzc/LrMG73nDUEfH2iKFmWTMd7ZdMWY5Z7maIshyKxBar+J2kk LEcoory5YxdGwHya2Qb7CSX7ae+1Lz04upp8uXhz+mq+T31vlHJx1wX61Ea2cHVeg/uv ayrGiYBC5Ih7WYh6YbnkEYETE3n98v18Am6f2VM9j5bLdOKBW0l0slKaUoI1ehg6KCW+ CtEA==
X-Gm-Message-State: AC+VfDwx7URxuWf85Ob0q4DgGE8TDvjpOAwYA9xOoXpbk/nfnHroRw2k TUgoZwICep6tYSuQdvbBeJrMQcOEs3DuvZYKXZp7C3NqNvxzcCfr
X-Google-Smtp-Source: ACHHUZ7sb0mxWdpEcP62N3GTgIjkHxqTSJhNqw1YThIHXK1KSfxbAoES1bLigGnpa5EaDi0tlyb718CKgMR98f1tn+U=
X-Received: by 2002:a0d:ea87:0:b0:54f:ba25:61c5 with SMTP id t129-20020a0dea87000000b0054fba2561c5mr16345522ywe.0.1684882629622; Tue, 23 May 2023 15:57:09 -0700 (PDT)
MIME-Version: 1.0
References: <875y8y4ip2.fsf@kaka.sjd.se> <84296E62-5843-4E7A-BD43-430491A5A1F3@akamai.com> <874jo8ytgw.fsf@kaka.sjd.se> <f6aa133635084609b0032ab1cfbfb7ce@amazon.com> <87sfbny046.fsf@kaka.sjd.se> <CABcZeBME4CRjd+4kqFCzYOmaOEafUiabsBoUQ0Eqm8A7OD-46A@mail.gmail.com> <87fs7nxj9f.fsf@kaka.sjd.se> <b82f1264-3935-4ca0-918a-fdb7f819c2bf@app.fastmail.com> <877csyznd1.fsf@kaka.sjd.se>
In-Reply-To: <877csyznd1.fsf@kaka.sjd.se>
From: Eric Rescorla <ekr@rtfm.com>
Date: Tue, 23 May 2023 15:56:33 -0700
Message-ID: <CABcZeBMobKFKjtFn3xt7DDD1rx0ZtvW2m5sq6Gz1q29ETp04rQ@mail.gmail.com>
To: Simon Josefsson <simon=40josefsson.org@dmarc.ietf.org>
Cc: Martin Thomson <mt@lowentropy.net>, saag@ietf.org
Content-Type: multipart/alternative; boundary="000000000000a093ed05fc644e8d"
Archived-At: <https://mailarchive.ietf.org/arch/msg/saag/uG-xwFBHHGsJlnS24ihSLO1bxcg>
Subject: Re: [saag] sntrup761x25519-sha512
X-BeenThere: saag@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Security Area Advisory Group <saag.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/saag>, <mailto:saag-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/saag/>
List-Post: <mailto:saag@ietf.org>
List-Help: <mailto:saag-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/saag>, <mailto:saag-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 23 May 2023 22:57:11 -0000

Without taking a position on this draft, I think it would be good if we
loosened
the policy for the SSH-KEX registry, as we have for TLS and some other
protocols.

-Ekr


On Tue, May 23, 2023 at 3:37 PM Simon Josefsson <simon=
40josefsson.org@dmarc.ietf.org> wrote:

> "Martin Thomson" <mt@lowentropy.net> writes:
>
> > On Tue, May 23, 2023, at 15:35, Simon Josefsson wrote:
> >> In the same way that if the IETF decided to change the details of a
> >> deployed protocol, then the implementor community would change over to
> >> that code point, yes.
> >
> > So if the IETF decided that Kyber was preferred to SNTRU (as Panos
> > suggested), that goes too, right?  That's a pretty significant change,
> > but a good test of whether this is IETF vs. independent for me.
>
> I may be missing your actual point, and I don't speak for anyone but
> myself, but I believe that the SSH community is interested in
> standardizing, implementing and deploying a KEX based on Kyber in
> collaboration with the IETF community, and further believe that this
> does not take away the desire or usefulness for the IETF to publish a
> document that describes sntrup761x25519-sha512.  Those are orthogonal
> issues.  The latter is a widely deployed SSH KEX and will continue to be
> widely used for many years to come, even if Kyber would be implemented
> as well.
>
> > I think that you said that you wouldn't be interested in that outcome,
> > which is why I suggested that independent submissions would be better.
>
> As far as I understand, the independent submission route is not possible
> due to the IANA registration policy for the SSH KEX registry.
>
> /Simon
> _______________________________________________
> saag mailing list
> saag@ietf.org
> https://www.ietf.org/mailman/listinfo/saag
>

v2.23.0 | Report a Bug | By Email