Re: [secdir] Secdir last call review of draft-ietf-curdle-ssh-ed25519-ed448-07

Daniel Migault <daniel.migault@ericsson.com> Mon, 31 December 2018 14:37 UTC

Return-Path: <daniel.migault@ericsson.com>
X-Original-To: secdir@ietfa.amsl.com
Delivered-To: secdir@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3447F1200D7 for <secdir@ietfa.amsl.com>; Mon, 31 Dec 2018 06:37:14 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.366
X-Spam-Level:
X-Spam-Status: No, score=-4.366 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.065, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_MED=-2.3, SPF_PASS=-0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ericsson.com header.b=WPnaxKdu; dkim=pass (1024-bit key) header.d=ericsson.com header.b=FKtxTn/d
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ngYgFayAr1ZF for <secdir@ietfa.amsl.com>; Mon, 31 Dec 2018 06:37:13 -0800 (PST)
Received: from sesbmg22.ericsson.net (sesbmg22.ericsson.net [193.180.251.48]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 7494512870E for <secdir@ietf.org>; Mon, 31 Dec 2018 06:37:12 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; d=ericsson.com; s=mailgw201801; c=relaxed/relaxed; q=dns/txt; i=@ericsson.com; t=1546267028; x=1548859028; h=From:Sender:Reply-To:Subject:Date:Message-ID:To:CC:MIME-Version:Content-Type: Content-Transfer-Encoding:Content-ID:Content-Description:Resent-Date:Resent-From: Resent-Sender:Resent-To:Resent-Cc:Resent-Message-ID:In-Reply-To:References:List-Id: List-Help:List-Unsubscribe:List-Subscribe:List-Post:List-Owner:List-Archive; bh=bImTzoD+s1kc7hZU97vre0UcipmAvJjdgi+l7b7NTA4=; b=WPnaxKduFRHq+w51sc3h+ZqSV1kPWbB//wot3O7gWfCOj2VdMKGLgCOczXJBfcG9 0EV+lYASK0WihDZY7t3nV5OSyioOmh6jgyjDSZ4w+gVR48AaLuJ044lI9GJ8/LI1 aHYkVOHWaeccBk173ghAJ8epEYT4EIieqpO0s2iVyhE=;
X-AuditID: c1b4fb30-41b3a9e00000355c-9f-5c2a2994c8c7
Received: from ESESBMB501.ericsson.se (Unknown_Domain [153.88.183.114]) by sesbmg22.ericsson.net (Symantec Mail Security) with SMTP id 8B.AA.13660.4992A2C5; Mon, 31 Dec 2018 15:37:08 +0100 (CET)
Received: from ESESBMR506.ericsson.se (153.88.183.202) by ESESBMB501.ericsson.se (153.88.183.168) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256_P256) id 15.1.1466.3; Mon, 31 Dec 2018 15:37:05 +0100
Received: from ESESSMB501.ericsson.se (153.88.183.162) by ESESBMR506.ericsson.se (153.88.183.202) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256_P256) id 15.1.1466.3; Mon, 31 Dec 2018 15:37:05 +0100
Received: from NAM03-DM3-obe.outbound.protection.outlook.com (153.88.183.157) by ESESSMB501.ericsson.se (153.88.183.162) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256_P256) id 15.1.1466.3 via Frontend Transport; Mon, 31 Dec 2018 15:37:05 +0100
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ericsson.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=bImTzoD+s1kc7hZU97vre0UcipmAvJjdgi+l7b7NTA4=; b=FKtxTn/dhkxTV/KdhoVBcyRDLmomDI8hov7snxLfba7A5nCrtkTOw0KFOs1Oym2vctOtXZmqR3UcKao3XGyQ0bDfBLC1rSIFbce/F/c1czeC8RVNKFTn0msXaV5voKaU17+78l1Zn1HkUaW+b1Fauf7Jh04mxeG0Kcbl6cHQ65s=
Received: from BL2PR15MB0947.namprd15.prod.outlook.com (10.167.116.21) by BL2PR15MB0946.namprd15.prod.outlook.com (10.167.116.20) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.1471.20; Mon, 31 Dec 2018 14:37:00 +0000
Received: from BL2PR15MB0947.namprd15.prod.outlook.com ([fe80::7504:fcc:895b:b5cf]) by BL2PR15MB0947.namprd15.prod.outlook.com ([fe80::7504:fcc:895b:b5cf%2]) with mapi id 15.20.1471.019; Mon, 31 Dec 2018 14:36:59 +0000
From: Daniel Migault <daniel.migault@ericsson.com>
To: Catherine Meadows <catherine.meadows@nrl.navy.mil>, "secdir@ietf.org" <secdir@ietf.org>
CC: "draft-ietf-curdle-ssh-ed25519-ed448.all@ietf.org" <draft-ietf-curdle-ssh-ed25519-ed448.all@ietf.org>, "curdle@ietf.org" <curdle@ietf.org>, "ietf@ietf.org" <ietf@ietf.org>
Thread-Topic: Secdir last call review of draft-ietf-curdle-ssh-ed25519-ed448-07
Thread-Index: AQHUntPLv+O6457FtEm30XmZ9+2xIqWY7ptw
Date: Mon, 31 Dec 2018 14:36:58 +0000
Message-ID: <BL2PR15MB094795C97AB00E3557DAB7F4E3B20@BL2PR15MB0947.namprd15.prod.outlook.com>
References: <154601853411.21528.4173984200093785499@ietfa.amsl.com>
In-Reply-To: <154601853411.21528.4173984200093785499@ietfa.amsl.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: spf=none (sender IP is ) smtp.mailfrom=daniel.migault@ericsson.com;
x-originating-ip: [70.80.131.240]
x-ms-publictraffictype: Email
x-microsoft-exchange-diagnostics: 1; BL2PR15MB0946; 6:daNplUx8d/M7mXf01ztdjnrpN0y6eF479cc4pfXtSD2lKjai6l8z/Bu56u0xdtzsms1JrY3XiKJ+BTnG18ODzXWxTWrygjNltEgFPXy1tZNYzHAkHabwbF02Xpx4IomkKXYt1CH8iUv9NwfOq0cTmgOSOfMaf2ATmbxRRqsxqyousitnaTECpU3z7InE5VFSS9pNweKMWv80Lt31ru5J3Nv3gVaiQy5ZvoUr2ekiV6bDcMgq776+J97RMVPUxZMGqzTz8OkmJ8lRoeDqjlrd2hOsgfE7ea2upQ0U223p67mlk4OWKUrAYFE8zszQtrXvoSinMagQaZKp5ZRCPkDy5Tz3JzQ/centy8mUVPgEk5TQ5iZSru1bqMuLkK3B4mKQpMVeao287+1e9EZsbrPlEbRkJI4hdvqY/6UoB4/yj0tA7SBFnx+5D3ixZxpf9pCPZ2APboKIlNI43zWz3/wjsg==; 5:X0cWCqr+EcPAMn794LfxV/5C1T+vb1VZwsaPfaW/o/oaivfQOS+e8Zc2EQkzu6KyWLdsJPZXf2DkVguDJxhQJbYVuJa2zP9wpXG38NWhmjpkmdDHki1o9f6KnUIt1bskYSjw57+I1ky0oCyKj2M1OxGLuv24s7rkhLFJXNJXnLo=; 7:zIrprwQYKba4IC3IdrV3iuiQzYlbJ6Z8zirSqxQcmWHETraZ2vta9XkqJvy0ziNtl8h3Qo0QDjqGcpCiusJuM2DF/o93unDSs5AnebHrZyt39rQVD8uz2JnG3Bu/OJzox/6iTv+4ThAUAUzs07mf6w==
x-ms-exchange-antispam-srfa-diagnostics: SOS;
x-ms-office365-filtering-correlation-id: e74fd2d2-08e4-4c01-a140-08d66f2d6c0c
x-microsoft-antispam: BCL:0; PCL:0; RULEID:(2390118)(7020095)(4652040)(8989299)(5600109)(711020)(4534185)(4627221)(201703031133081)(201702281549075)(8990200)(2017052603328)(7153060)(7193020); SRVR:BL2PR15MB0946;
x-ms-traffictypediagnostic: BL2PR15MB0946:
x-microsoft-antispam-prvs: <BL2PR15MB094656B9C0ABA565A2B8AAC9E3B20@BL2PR15MB0946.namprd15.prod.outlook.com>
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(8211001083)(3230021)(908002)(999002)(5005026)(6040522)(8220055)(2401047)(8121501046)(10201501046)(3002001)(93006095)(93001095)(3231475)(944501520)(52105112)(6041310)(20161123564045)(20161123562045)(20161123558120)(20161123560045)(201703131423095)(201702281528075)(20161123555045)(201703061421075)(201703061406153)(201708071742011)(7699051)(76991095); SRVR:BL2PR15MB0946; BCL:0; PCL:0; RULEID:; SRVR:BL2PR15MB0946;
x-forefront-prvs: 0903DD1D85
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(366004)(396003)(346002)(39860400002)(136003)(376002)(51914003)(199004)(189003)(13464003)(25786009)(478600001)(106356001)(76176011)(105586002)(53546011)(26005)(74316002)(6506007)(186003)(71200400001)(5660300001)(71190400001)(66066001)(229853002)(4326008)(6246003)(53936002)(68736007)(97736004)(99286004)(305945005)(55016002)(2501003)(9686003)(102836004)(2906002)(54906003)(33656002)(14444005)(7696005)(7736002)(3846002)(6116002)(316002)(256004)(8936002)(44832011)(81156014)(86362001)(14454004)(11346002)(8676002)(6436002)(446003)(81166006)(110136005)(476003)(486006); DIR:OUT; SFP:1101; SCL:1; SRVR:BL2PR15MB0946; H:BL2PR15MB0947.namprd15.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; A:1; MX:1;
received-spf: None (protection.outlook.com: ericsson.com does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam-message-info: DkyH9TX2hyq6+h+tap8/SlNecmbZ87sZhXjs1ozfjBcLgqb/yV9hy4fv8lLWIWIxGRm6ODsuYIRIe7lBdDg5RTa6xUXv5c5SzDL/b75jF2SKVAJuUCVQsZDEVzqnUBAd8fhDgpaUu8oiOCbmkFVB3t11gVVSk4Wz63d1QoW3F5KBBYsRmEThrJIU+c7BqxOEW9ixN4P3AEAxvvC0Hj4ySYKKr8BEXk47y1TtQ5XoXTEsHbc6xvycSRv6qzscE/5ftPpkDXwJTMzqw2LqkK33VxoS0L6CPaubEMYv25QFVdlRYJ5uebDayoM27/OM+o2f
spamdiagnosticoutput: 1:99
spamdiagnosticmetadata: NSPM
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-Network-Message-Id: e74fd2d2-08e4-4c01-a140-08d66f2d6c0c
X-MS-Exchange-CrossTenant-originalarrivaltime: 31 Dec 2018 14:36:59.4720 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 92e84ceb-fbfd-47ab-be52-080c6b87953f
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BL2PR15MB0946
X-OriginatorOrg: ericsson.com
X-Brightmail-Tracker: H4sIAAAAAAAAA02Sa0hTYRjHec85m8fl8HXeHjQhB36Y4G1UzAq1G0hZWFBZLW3qQUWdcs6y FAw1zLyVeCk1agqTTA3NtKktyGWgUloGIkFiOm9dwBSdpWUez6K+/S+/5+V54KVJWbnIg07S 6hhWq0mRiyVUTZSR9atU+KoDrfeVqrvV2arO+lpS1dq7RKhmHusp1UL9JypMFG4w/CDCn+U/ oiKJc5J98UxKUgbDBoRclCQON94j002OV/LeLJE56IZjEaJpwDthsFFbhCS0DPchqG4cIgSz gmDNsPTPrOibScEYCOj6NiPmDYXLSFg0j4mEpoIA6502JJgJBOuff21i9rQYK+G6+ZYdr13w Behsq9h6mMRPEPS/rqf4VZzxccjtUwvMCRhYHRfxscvm7CsLy0sK+4B1EfOEFKuhYNRC8lqG D0JD7xjBI/b4EPRMsHyMsBtYB1sIXpPYHT5Y9FsaMAaDaZgUtCvMT/0WCXw0rHwvseXe8LW7 RSRoLxjRF29dBXhUDMbSm3ZC4QcLVVW2gWPwoLzBBr1FYGkz2gpfKMxrtQ0kQ+mSQSxA70gw XfsiLkNBtf9tWLt5BIkV0NoTIMTeUFn8ya5262YnGKixUHWIakKuHMPFpiYolf4MmxTHcWla fy2ja0ebP6W3Yy2wC83P7jcjTCO5g/TpDl+1TKTJ4DJTzQhoUu4iPR2jUMuk8ZrMLIZNi2Ev pTCcGXnSlNxdui5zUstwgkbHJDNMOsP+bQna3iMH7VWezJ9ynA5WGApD9aExYabB4NiOjcnL h9nyufHbp7KiHV6MBG7nHn7MFYdktzDcNuv8kbMHvIYidAt73i/PTu8e/lkStpxeYty12t0e 0VXcvD5aMPd8MaWjK90t7mg/GOsUPt305HnPKO+rhGS+JG45evGl88aZYWVkU2QeNMkpLlET 5EuynOYPZPlgWSUDAAA=
Archived-At: <https://mailarchive.ietf.org/arch/msg/secdir/MQgWxrIBOwl0uzB7HjJBzbVWpmw>
Subject: Re: [secdir] Secdir last call review of draft-ietf-curdle-ssh-ed25519-ed448-07
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/secdir/>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 31 Dec 2018 14:37:14 -0000

Thanks for the clarification Catherine.

Yours, 
Daniel

-----Original Message-----
From: Catherine Meadows <catherine.meadows@nrl.navy.mil>; 
Sent: Friday, December 28, 2018 12:36 PM
To: secdir@ietf.org
Cc: draft-ietf-curdle-ssh-ed25519-ed448.all@ietf.org; curdle@ietf.org; ietf@ietf.org
Subject: Secdir last call review of draft-ietf-curdle-ssh-ed25519-ed448-07

Reviewer: Catherine Meadows
Review result: Has Nits

This draft specifies the use of the digital signature algorithms Ed25519 and
Ed448 in the SSH protocol.  Most of this,  except for syntactic features such as formats and names, can be found in other RFC’s, and the appropriate references are given.  The Security Considerations are also given by reference to RFC4241 (security considerations for SSH) and RFC8032 and RFC7479 (for
Ed25519 and Ed448).  These security considerations sections are very thorough and I don’t see any need for any additions.

A nit:
The paragraph

This document describes the method implemented by OpenSSH and others,  and formalizes its use of the name "ssh-ed25519". Additionally, it  also describes the use of Ed448 and formalizes its use of the name  "ssh-ed448".

Would be clearer as

This document describes the Ed25519 method implemented by OpenSSH and others,  and formalizes its use of the name "ssh-ed25519". Additionally, it  also describes the use of Ed448 and formalizes its use of the name  "ssh-ed448”.