Re: [lamps] Benjamin Kaduk's Yes on draft-ietf-lamps-rfc5750-bis-06: (with COMMENT)
Jim Schaad <ietf@augustcellars.com> Wed, 20 June 2018 20:41 UTC
Return-Path: <ietf@augustcellars.com>
X-Original-To: spasm@ietfa.amsl.com
Delivered-To: spasm@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 5B7F5130E1B; Wed, 20 Jun 2018 13:41:50 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.901
X-Spam-Level:
X-Spam-Status: No, score=-1.901 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id rL1woUbtGbNc; Wed, 20 Jun 2018 13:41:48 -0700 (PDT)
Received: from mail2.augustcellars.com (augustcellars.com [50.45.239.150]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 06A34130EA6; Wed, 20 Jun 2018 13:41:48 -0700 (PDT)
Received: from Jude (73.180.8.170) by mail2.augustcellars.com (192.168.0.56) with Microsoft SMTP Server (TLS) id 15.0.1347.2; Wed, 20 Jun 2018 13:38:42 -0700
From: Jim Schaad <ietf@augustcellars.com>
To: 'Benjamin Kaduk' <kaduk@mit.edu>
CC: 'The IESG' <iesg@ietf.org>, draft-ietf-lamps-rfc5750-bis@ietf.org, 'Russ Housley' <housley@vigilsec.com>, lamps-chairs@ietf.org, spasm@ietf.org
References: <152952187281.28465.4474916033160303537.idtracker@ietfa.amsl.com> <005801d408cd$c16f9420$444ebc60$@augustcellars.com> <20180620194231.GM4946@kduck.kaduk.org>
In-Reply-To: <20180620194231.GM4946@kduck.kaduk.org>
Date: Wed, 20 Jun 2018 13:41:39 -0700
Message-ID: <006901d408d7$18e61630$4ab24290$@augustcellars.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
X-Mailer: Microsoft Outlook 16.0
Thread-Index: AQJIXLdaRw4T5OApPj486w74EdgAywF8KUXnAfMrVM+jZW2PMA==
Content-Language: en-us
X-Originating-IP: [73.180.8.170]
Archived-At: <https://mailarchive.ietf.org/arch/msg/spasm/-zQrkezu6QHlwGaMOtKqj0RyN0g>
Subject: Re: [lamps] Benjamin Kaduk's Yes on draft-ietf-lamps-rfc5750-bis-06: (with COMMENT)
X-BeenThere: spasm@ietf.org
X-Mailman-Version: 2.1.26
Precedence: list
List-Id: "This is a venue for discussion of doing Some Pkix And SMime \(spasm\) work." <spasm.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/spasm>, <mailto:spasm-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/spasm/>
List-Post: <mailto:spasm@ietf.org>
List-Help: <mailto:spasm-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/spasm>, <mailto:spasm-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 20 Jun 2018 20:41:51 -0000
> -----Original Message----- > From: Benjamin Kaduk <kaduk@mit.edu> > Sent: Wednesday, June 20, 2018 12:43 PM > To: Jim Schaad <ietf@augustcellars.com> > Cc: 'The IESG' <iesg@ietf.org>; draft-ietf-lamps-rfc5750-bis@ietf.org; 'Russ > Housley' <housley@vigilsec.com>; lamps-chairs@ietf.org; spasm@ietf.org > Subject: Re: Benjamin Kaduk's Yes on draft-ietf-lamps-rfc5750-bis-06: (with > COMMENT) > > Trimming the easily resolved bits... > > On Wed, Jun 20, 2018 at 12:34:46PM -0700, Jim Schaad wrote: > > > > > > > -----Original Message----- > > > From: Benjamin Kaduk <kaduk@mit.edu> > > > Sent: Wednesday, June 20, 2018 12:11 PM > > > To: The IESG <iesg@ietf.org> > > > Cc: draft-ietf-lamps-rfc5750-bis@ietf.org; Russ Housley > > > <housley@vigilsec.com>; lamps-chairs@ietf.org; housley@vigilsec.com; > > > spasm@ietf.org > > > Subject: Benjamin Kaduk's Yes on draft-ietf-lamps-rfc5750-bis-06: > > > (with > > > COMMENT) > > > > > > > > > Section 4.3 > > > > > > Why are we going from SHOULD+ (in RFC 5750) to just SHOULD for > > > RSASSA- PSS with SHA-256? > > > > Big long discussion on this, but mostly because EdDSA has overtaken > RSASSA-PSS in the mind share of the world. > > Maybe we could have a little text in Appendix A, then? Putting it in Appendix A seems really wrong because it is not a historical algorithm. I am reluctant to do this because the only reason why we have discussed why algorithms are changing is because they are no longer considered to be of sufficient strength. The plus basically says this is our best guess of what is going to happen when we right the algorithm. That best guess has changed and different people are going to have different ideas of why it changed. It boils down from it was a SHOULD and it is now a SHOULD we just don't think it is where the world is headed at the moment. This could change next year if something really unexpected happens. > > > > > > > > > [...] Other extensions may be included, but those extensions > > > SHOULD NOT be marked as critical. > > > > > > Is this a candidate for a 2119 MAY? > > > > No not really, marking things a critical is a hinderance to interoperability > rather than promoting it. The selection of SHOULD NOT rather than MAY > indicates this by saying that if you want to do this you should probably > reconsider that decision unless you have a really good case to do so. > > Whoops, I was talking about "MAY be included", not the "SHOULD NOT be > marked as critical". But I could go either way; it's kind of a statement of fact. I think that is a very poor use of the word MAY. On the other hand for the most part I don't like MAY in general because the sentences that include it are not written in a way which is useful. So - No. Jim > > -Benjamin
- Re: [lamps] Benjamin Kaduk's Yes on draft-ietf-la… Benjamin Kaduk
- Re: [lamps] Benjamin Kaduk's Yes on draft-ietf-la… Jim Schaad
- Re: [lamps] Benjamin Kaduk's Yes on draft-ietf-la… Benjamin Kaduk
- Re: [lamps] Benjamin Kaduk's Yes on draft-ietf-la… Jim Schaad
- [lamps] Benjamin Kaduk's Yes on draft-ietf-lamps-… Benjamin Kaduk