Re: [secdir] Secdir review of draft-ietf-ecrit-additional-data

Brian Rosen <br@brianrosen.net> Wed, 16 September 2015 18:32 UTC

Return-Path: <br@brianrosen.net>
X-Original-To: secdir@ietfa.amsl.com
Delivered-To: secdir@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 701C71A8897 for <secdir@ietfa.amsl.com>; Wed, 16 Sep 2015 11:32:53 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.821
X-Spam-Level:
X-Spam-Status: No, score=-1.821 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_LOW=-0.7, SPF_NEUTRAL=0.779] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id k4eR4_2pdgrk for <secdir@ietfa.amsl.com>; Wed, 16 Sep 2015 11:32:52 -0700 (PDT)
Received: from mail-qk0-f172.google.com (mail-qk0-f172.google.com [209.85.220.172]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 26B3F1A88A0 for <secdir@ietf.org>; Wed, 16 Sep 2015 11:32:49 -0700 (PDT)
Received: by qkfq186 with SMTP id q186so90299958qkf.1 for <secdir@ietf.org>; Wed, 16 Sep 2015 11:32:48 -0700 (PDT)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:content-type:mime-version:subject:from :in-reply-to:date:cc:content-transfer-encoding:message-id:references :to; bh=sdJKgzJfazeDHOSnFVjpw+8pBdBGGWsJcH1kvZv8+Y8=; b=h0z47MwIdlNObSnw6OCehymTB4ADqqoQHIpZpEdCG4v7rzDepJKLMaoTNSy5OK4Opf 2W/YG/Ljyig/MGfrhqQO6HiDI5suV04VOENFRrU3/jVHDdj9gyNcR1z2gNPnrMJtf0fg kaYQmVT4qjtuhtQbNkZHjsKu22fnObAK34l8TyErGkb6UAGhn5rd49mSqpbl46R4sHI4 XNH4IGcBi3NasH42qbelDzGcSRqbF/N2rAtXQdtTQnXyHEMj2zZx7DMyPuGf2lkjsNON nN8Zyg3zsVG6i6YGXlVazzxIaEJazQ45z+gMl43PFEPiSgmKx/p/U4PQoDjY93wJhom5 bjcg==
X-Gm-Message-State: ALoCoQnxayrzE8Zuyl8szuVSWsQ4B41F/Awjl4i124/nJig4OCdPWB31ANtKTYwYc9wkKmWhiKfs
X-Received: by 10.55.198.11 with SMTP id b11mr43779372qkj.53.1442428368294; Wed, 16 Sep 2015 11:32:48 -0700 (PDT)
Received: from [10.33.192.36] (neustargw.va.neustar.com. [209.173.53.233]) by smtp.gmail.com with ESMTPSA id v34sm10495711qge.47.2015.09.16.11.32.46 (version=TLSv1 cipher=ECDHE-RSA-RC4-SHA bits=128/128); Wed, 16 Sep 2015 11:32:47 -0700 (PDT)
Content-Type: text/plain; charset="iso-8859-1"
Mime-Version: 1.0 (Mac OS X Mail 8.2 \(2104\))
From: Brian Rosen <br@brianrosen.net>
In-Reply-To: <p06240616d21f443ed6d5@[99.111.97.136]>
Date: Wed, 16 Sep 2015 14:32:42 -0400
Content-Transfer-Encoding: quoted-printable
Message-Id: <4EE7311A-C4AA-4153-8B19-2C3175F03D89@brianrosen.net>
References: <CADajj4bzDNqCzaJSjviVZm1nk8CrbUopzj0PrNNOUcK9SNG1ZA@mail.gmail.com> <p06240610d21e68de6c17@99.111.97.136> <CADajj4a+uJi3h1qjQ9xgGup_2teQc9hgfRyWDwwKvQS5aUJDOg@mail.gmail.com> <p06240612d21e7dc050f6@99.111.97.136> <CADajj4ZGx-8vFrZXd_CQcuG3GJWYDJoFTBQ+do-duicgadkEYw@mail.gmail.com> <2do7j0.nurejh.2vaeqo-qmf@mercury.scss.tcd.ie> <p06240616d21f443ed6d5@[99.111.97.136]>
To: Randall Gellens <randy@qti.qualcomm.com>
X-Mailer: Apple Mail (2.2104)
Archived-At: <http://mailarchive.ietf.org/arch/msg/secdir/QmA3SWuSXXl5yGedTUvP0vdyk_Q>
X-Mailman-Approved-At: Wed, 16 Sep 2015 11:52:23 -0700
Cc: secdir@ietf.org, draft-ietf-ecrit-additional-data@tools.ietf.org
Subject: Re: [secdir] Secdir review of draft-ietf-ecrit-additional-data
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/secdir/>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 16 Sep 2015 18:32:53 -0000

TLS MUST be version 1.2 or later.  It is RECOMMENDED to use only
  cipher suites that offer Perfect Forward Secrecy (PFS), avoid
  Cipher Block Chaining (CBC) and follow the recommendations in BCP195.

> On Sep 16, 2015, at 12:14 PM, Randall Gellens <randy@qti.qualcomm.com> wrote:
> 
> At 7:38 AM +0000 9/16/15, stephen.farrell@cs.tcd.ie wrote:
> 
>> On Wed Sep 16 04:09:03 2015 GMT+0100, Magnus Nyström wrote:
>>> Yes, at least mandating TLS 1.2 or higher and recommending as per above
>>> seems reasonable.
>>> The references for the GCM suites would be RFC 5288 and RFC 5289.
>> 
>> BCP195 has recent recommendations for most TLS options. I'd say it'd be best to use those or if not figure out why they're not correct for this context.
> 
> Just to be clear: are you suggesting that we replace text suggested by Magnus:
> 
>   TLS MUST be version 1.2 or later.  It is RECOMMENDED to use only
>   cypher suites that offer Perfect Forward Secrecy (PFS) and avoid
>   Cipher Block Chaining (CBC), for example,
>   TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384,
>   TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256,
>   TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384,
>   TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256,
>   TLS_DHE_RSA_WITH_AES_256_GCM_SHA384,
>   TLS_DHE_RSA_WITH_AES_128_GCM_SHA256 [RFC5288] [RFC5289].
> 
> With this:
> 
>   TLS MUST be version 1.2 or later.  It is RECOMMENDED follow
>   [BCP195].
> 
> 
> Note that BCP 195 does not address CBC (but does discuss PFS).  I just want to be clear before making the change, so please confirm that this works.
> 
> --
> Randall Gellens
> Opinions are personal;    facts are suspect;    I speak for myself only
> -------------- Randomly selected tag: ---------------
> If the odds are a million to one against something occurring, chances
> are 50-50 it will.