IETF Logo Mail Archive

Re: [Secdispatch] sntrup761x25519-sha512

Roman Danyliw <rdd@cert.org> Thu, 20 July 2023 17:41 UTC

Return-Path: <rdd@cert.org>
X-Original-To: secdispatch@ietfa.amsl.com
Delivered-To: secdispatch@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id DA03DC15198B for <secdispatch@ietfa.amsl.com>; Thu, 20 Jul 2023 10:41:43 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.098
X-Spam-Level:
X-Spam-Status: No, score=-7.098 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_HI=-5, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cert.org
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 7-ITyflnObxN for <secdispatch@ietfa.amsl.com>; Thu, 20 Jul 2023 10:41:39 -0700 (PDT)
Received: from USG02-BN3-obe.outbound.protection.office365.us (mail-bn3usg02on0102.outbound.protection.office365.us [23.103.208.102]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 15D4CC15108C for <secdispatch@ietf.org>; Thu, 20 Jul 2023 10:41:38 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector5401; d=microsoft.com; cv=none; b=Zn4AJ9tqno3yMh2jUPocrDwafFTtL+TKGu7dg5VOjogY66nQId/l9W/naH8r/uEkkFpACKefsZEBhrSBKhDP8TGSd0XZgqK50ScLtzvzq7l37r/5tR99JUj4XCF4i6eG+Sf4o0+A3227naJpmY/lsn5nj9MuM3jERxRKJcAhz6mns2f2Pehg5yyLkRIV+sghtxwz3Pq8DA80W1gEhebHgPvvZPUqs1tz9JxFie4fYQ6nXHzTFLZVEf2sfScbnE6nxLiay3/shxvplh8iGG0CHw1yaLdBEuAs1QDysg2zizthin+Qzqc5emxIL769jpJ3SjSt3X46VwGSFcN6rtOs6A==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector5401; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=RJDD2pdnuhbg8ORkG4rORVo49n8baDGfGAvMxM3HwwY=; b=1CFAav/N0OIcJTxS1yfdWJoDnnR6RRc5qq7bOj1cSL1u1eUIGZdHkdqtUSSTXtLTyEqUgKgsxEd88jOFCj2YFC0yfelF3mir1bjoGvyJKvhinCbVHJ1iT8MuVMTFQMrai1SYMJ7eLlyinryGRsL240hKufAjHDFPYqFbd2UZvClrGaSmwR9BToc2H+6387kLaWr+TFOPCoVIKVJegXdyR1u3gs7hN37OHVVub3WZK0GoNAze7rrPVta2bsXZx65C5wYBkS7GIfyKcpDp02F4TvblhA3FEZ2FFsw//I5KLRkzPYMKgHP9KUF1BqdmxTuPgAvszV/9CoNLnzYMZYYnaQ==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cert.org; dmarc=pass action=none header.from=cert.org; dkim=pass header.d=cert.org; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cert.org; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=RJDD2pdnuhbg8ORkG4rORVo49n8baDGfGAvMxM3HwwY=; b=rnSiaOPfib48NxJV63cIwYQVxzKWtSdTbG4WZA3b8v8kCEDV8uISeRVwlO7x/iWp1t3xbzGmnscJvc4RKdXDvOfcboDR+lsdpeChC1v2/Cxtkg5BSRUAuy4eboiVXyjggMhImWJZCwUG2l3A6IUWfA+R/Z0TV1pKpM3d912fWnI=
Received: from BN2P110MB1107.NAMP110.PROD.OUTLOOK.COM (2001:489a:200:168::11) by BN2P110MB1224.NAMP110.PROD.OUTLOOK.COM (2001:489a:200:17a::14) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.6588.35; Thu, 20 Jul 2023 17:41:36 +0000
Received: from BN2P110MB1107.NAMP110.PROD.OUTLOOK.COM ([fe80::a92c:9d5a:c5d5:1856]) by BN2P110MB1107.NAMP110.PROD.OUTLOOK.COM ([fe80::a92c:9d5a:c5d5:1856%4]) with mapi id 15.20.6588.034; Thu, 20 Jul 2023 17:41:36 +0000
From: Roman Danyliw <rdd@cert.org>
To: Simon Josefsson <simon@josefsson.org>
CC: "secdispatch@ietf.org" <secdispatch@ietf.org>
Thread-Topic: [Secdispatch] sntrup761x25519-sha512
Thread-Index: AQHZjX01C3RG+gAMLEO+KUntrGRBPK/DR+Fw
Date: Thu, 20 Jul 2023 17:41:36 +0000
Message-ID: <BN2P110MB110720B1FEF2CD08CAF55572DC3EA@BN2P110MB1107.NAMP110.PROD.OUTLOOK.COM>
References: <875y8y4ip2.fsf@kaka.sjd.se> <84296E62-5843-4E7A-BD43-430491A5A1F3@akamai.com> <874jo8ytgw.fsf@kaka.sjd.se> <f6aa133635084609b0032ab1cfbfb7ce@amazon.com> <87sfbny046.fsf@kaka.sjd.se> <CABcZeBME4CRjd+4kqFCzYOmaOEafUiabsBoUQ0Eqm8A7OD-46A@mail.gmail.com> <87bkibxipq.fsf@kaka.sjd.se>
In-Reply-To: <87bkibxipq.fsf@kaka.sjd.se>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=cert.org;
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: BN2P110MB1107:EE_|BN2P110MB1224:EE_
x-ms-office365-filtering-correlation-id: 18d71ef8-193e-4c03-f69f-08db89489109
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:BN2P110MB1107.NAMP110.PROD.OUTLOOK.COM; PTR:; CAT:NONE; SFS:(13230028)(4636009)(366004)(396003)(39830400003)(136003)(451199021)(76116006)(2906002)(66446008)(64756008)(66946007)(66556008)(66476007)(6916009)(4326008)(7696005)(966005)(33656002)(71200400001)(9686003)(83380400001)(508600001)(186003)(41320700001)(82960400001)(86362001)(38070700005)(53546011)(6506007)(26005)(122000001)(38100700002)(55016003)(41300700001)(52536014)(5660300002)(8936002)(8676002); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: mWkdbHXWXBVccBjCeaYUDUnRhTTiok+5bkHMK3JycYsPSXhlvaoV/Ae65nknU5dSLVEWCykbHVMUhVtsT4Ukmuak1KA2n4eOaBTa+a9niL33wDru8XzDNvxh40StVm1vYTIPOWv4NBuDKvU1Ydja996u68Gmt3mK14xIzTa1OTKY1OvoSS6qR+Ud2Gs5i/212+K8LA5Axnt4wgcmRbSQRQEOqHx2IxHgLFo4TfKVeizMUVBBps/hk0+PYQNYegeNtls0zfFszE0N4pqV3tWAf6xxZVUqf2EgKkdlVdBZX2KCSBcPOYVqfjNagwBNFZ3GpERQD05Gb0X63mDDtVqG3j9nDujbszW0wRTyMBy4ev0BDcHUqwYxb79JwPWvR+q8fxjP9CowYDHr1AU2dA4iUHlKciPghvl/eTJmAgKLC9E=
Content-Type: text/plain; charset="Windows-1252"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-OriginatorOrg: cert.org
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: BN2P110MB1107.NAMP110.PROD.OUTLOOK.COM
X-MS-Exchange-CrossTenant-Network-Message-Id: 18d71ef8-193e-4c03-f69f-08db89489109
X-MS-Exchange-CrossTenant-originalarrivaltime: 20 Jul 2023 17:41:36.6995 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 95a9dce2-04f2-4043-995d-1ec3861911c6
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BN2P110MB1224
Archived-At: <https://mailarchive.ietf.org/arch/msg/secdispatch/zX_9tqFjwD2dvm_pxp29peCno4s>
Subject: Re: [Secdispatch] sntrup761x25519-sha512
X-BeenThere: secdispatch@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Security Dispatch <secdispatch.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdispatch>, <mailto:secdispatch-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/secdispatch/>
List-Post: <mailto:secdispatch@ietf.org>
List-Help: <mailto:secdispatch-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdispatch>, <mailto:secdispatch-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 20 Jul 2023 17:41:43 -0000

Hi Simon!

Thanks for raising this important piece of SSH registry maintenance (draft-josefsson-ntruprime-ssh-00).

The registry analysis described below is correct as of right now -- adding to the "Key Exchange Method Names" registry, https://www.iana.org/assignments/ssh-parameters/ssh-parameters.xhtml#ssh-parameters-16, requires IETF Review (i.e., something in the IETF stream).

Several meetings ago this registration policy was discussed and noted to be too restrictive.  After discussion in CURDLE and then in SecDispatch, an AD-sponsored document, https://datatracker.ietf.org/doc/draft-yee-ssh-iana-requirements/, was produced (thanks Peter Yee!) and it has been approved by the IESG.  There are a few minor editorial change to make.  After these are done, it will go to the RFC Editor and the changes to the registration practices will be enacted.

Practically, after publication of this RFC, the registration policy for "Key Exchange Method Names" will be "Expert Review".  This lower bar does not require an IETF-stream RFC (or even any RFC).  To double check, is there still interest in pursuing publication?

Roman



> -----Original Message-----
> From: Simon Josefsson <simon@josefsson.org>
> Sent: Tuesday, May 23, 2023 9:48 AM
> To: secdispatch@ietf.org
> Subject: [Secdispatch] sntrup761x25519-sha512
> 
> Hi
> 
> Over at the Curdle list the SSH sntrup761x25519-sha512 draft has been
> discussed:
> 
> https://datatracker.ietf.org/doc/html/draft-josefsson-ntruprime-ssh-00
> https://mailarchive.ietf.org/arch/browse/curdle/?gbt=1&index=g00shBcI9eUn
> wabG-oVTWdPXTVI
> 
> For context, this protocol (under a private-use code point) is the default SSH
> KEX in recent versions of OpenSSH, with support in TinySSH and AsyncSSH; and
> it is shipping with GNU/Linux distributions that will be supported many years
> going forward.
> 
> The situation is similar to what we did for RFC 8731 when we documented how
> Curve25519 was used in OpenSSH at the time.  Many implementations
> (including OpenSSH) now use the RFC 8731 algorithm identifier that is under
> IETF change control.
> 
> Rich's analysis below of what the IANA registry rules for SSH means, and
> quoting RFC 8126:
> 
> 4.8.  IETF Review
>      (Formerly called "IETF Consensus" in the first edition of this
>    document.)  With the IETF Review policy, new values are assigned only
>    through RFCs in the IETF Stream -- those that have been shepherded
>    through the IESG as AD-Sponsored or IETF working group documents
>    [RFC2026] [RFC5378], have gone through IETF Last Call, and have been
>    approved by the IESG as having IETF consensus.
> 
> Could SECDISPATCH provide feedback and make a decision?  It seems two
> possible routes forward are to form a WG for this, or to go the AD-sponsored
> route.
> 
> /Simon

v2.43.4 | Report a Bug | By Email | System Status