Re: [lamps] Benjamin Kaduk's Yes on draft-ietf-lamps-rfc5750-bis-06: (with COMMENT)
Benjamin Kaduk <kaduk@mit.edu> Wed, 20 June 2018 20:58 UTC
Return-Path: <kaduk@mit.edu>
X-Original-To: spasm@ietfa.amsl.com
Delivered-To: spasm@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id F07B6130E30; Wed, 20 Jun 2018 13:58:40 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.201
X-Spam-Level:
X-Spam-Status: No, score=-4.201 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id LUv8KB8u8Jt6; Wed, 20 Jun 2018 13:58:39 -0700 (PDT)
Received: from dmz-mailsec-scanner-1.mit.edu (dmz-mailsec-scanner-1.mit.edu [18.9.25.12]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id AFDEF130E1B; Wed, 20 Jun 2018 13:58:38 -0700 (PDT)
X-AuditID: 1209190c-d05ff70000002fd0-6d-5b2abffd8782
Received: from mailhub-auth-4.mit.edu ( [18.7.62.39]) (using TLS with cipher DHE-RSA-AES256-SHA (256/256 bits)) (Client did not present a certificate) by dmz-mailsec-scanner-1.mit.edu (Symantec Messaging Gateway) with SMTP id A1.A9.12240.DFFBA2B5; Wed, 20 Jun 2018 16:58:37 -0400 (EDT)
Received: from outgoing.mit.edu (OUTGOING-AUTH-1.MIT.EDU [18.9.28.11]) by mailhub-auth-4.mit.edu (8.13.8/8.9.2) with ESMTP id w5KKwao3021580; Wed, 20 Jun 2018 16:58:36 -0400
Received: from kduck.kaduk.org (24-107-191-124.dhcp.stls.mo.charter.com [24.107.191.124]) (authenticated bits=56) (User authenticated as kaduk@ATHENA.MIT.EDU) by outgoing.mit.edu (8.13.8/8.12.4) with ESMTP id w5KKwVVF024995 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NOT); Wed, 20 Jun 2018 16:58:34 -0400
Date: Wed, 20 Jun 2018 15:58:31 -0500
From: Benjamin Kaduk <kaduk@mit.edu>
To: Jim Schaad <ietf@augustcellars.com>
Cc: 'The IESG' <iesg@ietf.org>, draft-ietf-lamps-rfc5750-bis@ietf.org, 'Russ Housley' <housley@vigilsec.com>, lamps-chairs@ietf.org, spasm@ietf.org
Message-ID: <20180620205831.GN4946@kduck.kaduk.org>
References: <152952187281.28465.4474916033160303537.idtracker@ietfa.amsl.com> <005801d408cd$c16f9420$444ebc60$@augustcellars.com> <20180620194231.GM4946@kduck.kaduk.org> <006901d408d7$18e61630$4ab24290$@augustcellars.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Disposition: inline
In-Reply-To: <006901d408d7$18e61630$4ab24290$@augustcellars.com>
User-Agent: Mutt/1.9.1 (2017-09-22)
X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFmpileLIzCtJLcpLzFFi42IRYrdT1/27Xyva4P1DZYs5+5IsXr24yW4x 489EZovV07+zWVyeu5bNYt61ZAc2j41zprN5LFnyk8lj1Z0vrAHMUVw2Kak5mWWpRfp2CVwZ hy5NYCqYIlnxcelUtgbGTcJdjJwcEgImEr/W3mQFsYUEFjNJTDseDWFvZJR43ybSxcgFZF9l krjR0MsGkmARUJV4d/QwmM0moCLR0H2ZGcQWEVCX2Lr6JhNIA7PASkaJZbu2sYMkhAXCJNZ1 PwNr4BUwlrj58TYTxNTHjBIHXx1lhEgISpyc+YQFxGYW0JK48e8lUBEHkC0tsfwfB0iYU8BB omkjyAJODlEBZYm9fYfYJzAKzELSPQtJ9yyE7gWMzKsYZVNyq3RzEzNzilOTdYuTE/PyUot0 DfVyM0v0UlNKNzGCgppTkmcH45k3XocYBTgYlXh4b4RpRQuxJpYVV+YeYpTkYFIS5eWvAQrx JeWnVGYkFmfEF5XmpBYfYpTgYFYS4a3ZCJTjTUmsrEotyodJSXOwKInzZi9ijBYSSE8sSc1O TS1ILYLJynBwKEnwzt4H1ChYlJqeWpGWmVOCkGbi4AQZzgM03Aikhre4IDG3ODMdIn+KUVFK nFcGJCEAksgozYPrBSUdiez9Na8YxYFeEebNA6niASYsuO5XQIOZgAZXN4MNLklESEk1MObP f/GUfVWB0uR3Eo3/dsXVv0iRDhdIqtscfWHWGwVFBgsvyUMXzlaUmHcd39e4Z9lqoafqsd8O unHH+fGVBeUu1Wc7LtrqOslvekpLLcsakUtsd7iP7zK/yMBZscdO4R2zfNWshZ6TPytdUNWa FJMUIJX8hClQKfecWKHwHlZh2d/pFwJllViKMxINtZiLihMBzcE2ZBUDAAA=
Archived-At: <https://mailarchive.ietf.org/arch/msg/spasm/-LkcwMB1J5uQxV318rI5kKaW-jY>
Subject: Re: [lamps] Benjamin Kaduk's Yes on draft-ietf-lamps-rfc5750-bis-06: (with COMMENT)
X-BeenThere: spasm@ietf.org
X-Mailman-Version: 2.1.26
Precedence: list
List-Id: "This is a venue for discussion of doing Some Pkix And SMime \(spasm\) work." <spasm.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/spasm>, <mailto:spasm-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/spasm/>
List-Post: <mailto:spasm@ietf.org>
List-Help: <mailto:spasm-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/spasm>, <mailto:spasm-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 20 Jun 2018 20:58:41 -0000
Just to close the loop: thanks for the extra responses; your proposal to not change the document text seems reasonable to me, now. -Benjamin On Wed, Jun 20, 2018 at 01:41:39PM -0700, Jim Schaad wrote: > > > > -----Original Message----- > > From: Benjamin Kaduk <kaduk@mit.edu> > > Sent: Wednesday, June 20, 2018 12:43 PM > > To: Jim Schaad <ietf@augustcellars.com> > > Cc: 'The IESG' <iesg@ietf.org>; draft-ietf-lamps-rfc5750-bis@ietf.org; > 'Russ > > Housley' <housley@vigilsec.com>; lamps-chairs@ietf.org; spasm@ietf.org > > Subject: Re: Benjamin Kaduk's Yes on draft-ietf-lamps-rfc5750-bis-06: > (with > > COMMENT) > > > > Trimming the easily resolved bits... > > > > On Wed, Jun 20, 2018 at 12:34:46PM -0700, Jim Schaad wrote: > > > > > > > > > > -----Original Message----- > > > > From: Benjamin Kaduk <kaduk@mit.edu> > > > > Sent: Wednesday, June 20, 2018 12:11 PM > > > > To: The IESG <iesg@ietf.org> > > > > Cc: draft-ietf-lamps-rfc5750-bis@ietf.org; Russ Housley > > > > <housley@vigilsec.com>; lamps-chairs@ietf.org; housley@vigilsec.com; > > > > spasm@ietf.org > > > > Subject: Benjamin Kaduk's Yes on draft-ietf-lamps-rfc5750-bis-06: > > > > (with > > > > COMMENT) > > > > > > > > > > > > Section 4.3 > > > > > > > > Why are we going from SHOULD+ (in RFC 5750) to just SHOULD for > > > > RSASSA- PSS with SHA-256? > > > > > > Big long discussion on this, but mostly because EdDSA has overtaken > > RSASSA-PSS in the mind share of the world. > > > > Maybe we could have a little text in Appendix A, then? > > Putting it in Appendix A seems really wrong because it is not a historical > algorithm. I am reluctant to do this because the only reason why we have > discussed why algorithms are changing is because they are no longer > considered to be of sufficient strength. The plus basically says this is > our best guess of what is going to happen when we right the algorithm. That > best guess has changed and different people are going to have different > ideas of why it changed. It boils down from it was a SHOULD and it is now a > SHOULD we just don't think it is where the world is headed at the moment. > This could change next year if something really unexpected happens. > > > > > > > > > > > > > > [...] Other extensions may be included, but those extensions > > > > SHOULD NOT be marked as critical. > > > > > > > > Is this a candidate for a 2119 MAY? > > > > > > No not really, marking things a critical is a hinderance to > interoperability > > rather than promoting it. The selection of SHOULD NOT rather than MAY > > indicates this by saying that if you want to do this you should probably > > reconsider that decision unless you have a really good case to do so. > > > > Whoops, I was talking about "MAY be included", not the "SHOULD NOT be > > marked as critical". But I could go either way; it's kind of a statement > of fact. > > I think that is a very poor use of the word MAY. On the other hand for the > most part I don't like MAY in general because the sentences that include it > are not written in a way which is useful. > > So - No. > > Jim > > > > > > -Benjamin >
- Re: [lamps] Benjamin Kaduk's Yes on draft-ietf-la… Benjamin Kaduk
- Re: [lamps] Benjamin Kaduk's Yes on draft-ietf-la… Jim Schaad
- Re: [lamps] Benjamin Kaduk's Yes on draft-ietf-la… Benjamin Kaduk
- Re: [lamps] Benjamin Kaduk's Yes on draft-ietf-la… Jim Schaad
- [lamps] Benjamin Kaduk's Yes on draft-ietf-lamps-… Benjamin Kaduk