[Sframe] Paul Wouters' Discuss on draft-ietf-sframe-enc-07: (with DISCUSS)
Paul Wouters via Datatracker <noreply@ietf.org> Thu, 04 April 2024 10:57 UTC
Return-Path: <noreply@ietf.org>
X-Original-To: sframe@ietf.org
Delivered-To: sframe@ietfa.amsl.com
Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 52F7CC14F701; Thu, 4 Apr 2024 03:57:51 -0700 (PDT)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
From: Paul Wouters via Datatracker <noreply@ietf.org>
To: The IESG <iesg@ietf.org>
Cc: draft-ietf-sframe-enc@ietf.org, sframe-chairs@ietf.org, sframe@ietf.org, mt@lowentropy.net, mt@lowentropy.net
X-Test-IDTracker: no
X-IETF-IDTracker: 12.9.0
Auto-Submitted: auto-generated
Precedence: bulk
Reply-To: Paul Wouters <paul.wouters@aiven.io>
Message-ID: <171222827133.13678.14383922324724649943@ietfa.amsl.com>
Date: Thu, 04 Apr 2024 03:57:51 -0700
Archived-At: <https://mailarchive.ietf.org/arch/msg/sframe/ZpoX8j8053WpmkK3oTMq9Cc8sBg>
Subject: [Sframe] Paul Wouters' Discuss on draft-ietf-sframe-enc-07: (with DISCUSS)
X-BeenThere: sframe@ietf.org
X-Mailman-Version: 2.1.39
List-Id: Secure Media Frames <sframe.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/sframe>, <mailto:sframe-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/sframe/>
List-Post: <mailto:sframe@ietf.org>
List-Help: <mailto:sframe-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/sframe>, <mailto:sframe-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 04 Apr 2024 10:57:51 -0000
Paul Wouters has entered the following ballot position for draft-ietf-sframe-enc-07: Discuss When responding, please keep the subject line intact and reply to all email addresses included in the To and CC lines. (Feel free to cut this introductory paragraph, however.) Please refer to https://www.ietf.org/about/groups/iesg/statements/handling-ballot-positions/ for more information about how to handle DISCUSS and COMMENT positions. The document, along with other ballot positions, can be found here: https://datatracker.ietf.org/doc/draft-ietf-sframe-enc/ ---------------------------------------------------------------------- DISCUSS: ---------------------------------------------------------------------- I have some questions that are likely easily answered and more indicative of my lack of experience in streaming infrastructure. 1) KID and CTR encoding Is there really much to be gained from the SFrame Header KID and CTR encoding for small values? For example an audio or video stream would almost immediately require the "extended encoding" for the CTR? I find it difficult to see the advantage of this added complexity. 2) Tag size What is the real gain of allowing shorter authentication tags? Even the document itself states: Nonetheless, without these mitigations, an application that makes use of short tags will be at heightened risk of forgery attacks. In many cases, it is simpler to use full-size tags and tolerate slightly higher bandwidth usage rather than add the additional defenses necessary to safely use short tags. Why not simplify on just 1 tag size? 3) IANA Considerations Have you considered splitting the ciphersuites into a part that requires standards action and a part that is specification required? Related, have you considered using a RECOMMENDED column for ciphersuites, where a RECOMMENDED=y can only be done via standards action?
- [Sframe] Paul Wouters' Discuss on draft-ietf-sfra… Paul Wouters via Datatracker
- Re: [Sframe] Paul Wouters' Discuss on draft-ietf-… Richard Barnes
- Re: [Sframe] Paul Wouters' Discuss on draft-ietf-… Paul Wouters