IETF Logo Mail Archive

Re: [Spasm] New Version Notification for draft-wconner-blake2sigs-00.txt

Jim Schaad <ietf@augustcellars.com> Tue, 02 May 2017 07:59 UTC

Return-Path: <ietf@augustcellars.com>
X-Original-To: spasm@ietfa.amsl.com
Delivered-To: spasm@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 14BA413146B for <spasm@ietfa.amsl.com>; Tue, 2 May 2017 00:59:58 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.001
X-Spam-Level:
X-Spam-Status: No, score=-2.001 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RP_MATCHES_RCVD=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=augustcellars.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ljPZk1tZvCpF for <spasm@ietfa.amsl.com>; Tue, 2 May 2017 00:59:55 -0700 (PDT)
Received: from mail4.augustcellars.com (augustcellars.com [50.45.239.150]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 84BD31294FF for <spasm@ietf.org>; Tue, 2 May 2017 00:54:25 -0700 (PDT)
Content-Type: multipart/alternative; boundary="----=_NextPart_000_0111_01D2C32A.00BCC660"
Content-Language: en-us
DKIM-Signature: v=1; a=rsa-sha256; d=augustcellars.com; s=winery; c=simple/simple; t=1493711663; h=from:subject:to:date:message-id; bh=ehYW1WiX6ElN6KLO9CmMcoQX8qk1YVtVnFfa/u9mmAk=; b=a5N0PA+3Nv9SlF9TopN8Wn6xczHRahrpsh/XlCtEeqQxFEHL6nyNOet6VIwRBne0n0oRdpnHmD/ f/G7pnMhWvhDkx7UeQeS1eI2jG2+ZlN/vEL57r/895c4mKQ2ScUr5WWGgBagIQ3P7wWSC9bygNwV7 4GZ7e6ARRH9mYJianwOc+D08rE+mnvCjgc2EqjK0d0NV+vjyatBBa3ZDi1acnyHbeZ5xOecqudV1L mUwc0sCI1ufzqshOBaZ3EgXxp0rFiZ1TDfYGDNDtNEuoSJa0RpY6FiIYj1uRuFzQNCM1IYnqq7dWk GPkMvTOSGWaCkpkEQ3g/nxN2CAYrYYtYGY9g==
Received: from mail2.augustcellars.com (192.168.1.201) by mail4.augustcellars.com (192.168.1.153) with Microsoft SMTP Server (TLS) id 15.0.1263.5; Tue, 2 May 2017 00:54:23 -0700
Received: from Hebrews (109.7.6.36) by mail2.augustcellars.com (192.168.0.56) with Microsoft SMTP Server (TLS) id 15.0.1263.5; Tue, 2 May 2017 00:54:10 -0700
From: Jim Schaad <ietf@augustcellars.com>
To: 'Ryan Sleevi' <ryan-ietf@sleevi.com>
CC: 'SPASM' <spasm@ietf.org>
References: <149218146333.15800.10260233763572420696.idtracker@ietfa.amsl.com> <CAFTQxQtMSzVNr8oae1U6Nbu_YjkYbTDxk6FJ2FkA4yH9vGnZ0g@mail.gmail.com> <000001d2c04d$46673770$d335a650$@augustcellars.com> <F2DE7842-511B-454D-9B05-A9E44E8A34F6@vigilsec.com> <009101d2c1ed$85c18d70$9144a850$@augustcellars.com> <CAErg=HGJ53zfns1sW-YvNmQSRDRq+AS1Y5=f73Rh2jHWfgzC4Q@mail.gmail.com>
In-Reply-To: <CAErg=HGJ53zfns1sW-YvNmQSRDRq+AS1Y5=f73Rh2jHWfgzC4Q@mail.gmail.com>
Date: Tue, 02 May 2017 09:53:46 +0200
Message-ID: <011001d2c319$3d313740$b793a5c0$@augustcellars.com>
MIME-Version: 1.0
X-Mailer: Microsoft Outlook 16.0
Thread-Index: AQDDZz1qAuXyhgyMEs+1C58pozIThAKEdXKIAso7izABaJvrIgHSh6AyAZuIZcujrO374A==
X-Originating-IP: [109.7.6.36]
Archived-At: <https://mailarchive.ietf.org/arch/msg/spasm/2poOu0bA36aNeZJinPSbOD2ol9I>
Subject: Re: [Spasm] New Version Notification for draft-wconner-blake2sigs-00.txt
X-BeenThere: spasm@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "This is a venue for discussion of doing Some Pkix And SMime \(spasm\) work." <spasm.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/spasm>, <mailto:spasm-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/spasm/>
List-Post: <mailto:spasm@ietf.org>
List-Help: <mailto:spasm-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/spasm>, <mailto:spasm-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 02 May 2017 07:59:58 -0000

 

 

From: Ryan Sleevi [mailto:ryan-ietf@sleevi.com] 
Sent: Monday, May 1, 2017 1:23 AM
To: Jim Schaad <ietf@augustcellars.com>
Cc: Russ Housley <housley@vigilsec.com>; SPASM <spasm@ietf.org>; William Conner <wconner@google.com>
Subject: Re: [Spasm] New Version Notification for draft-wconner-blake2sigs-00.txt

 

 

 

On Sun, Apr 30, 2017 at 4:08 PM, Jim Schaad <ietf@augustcellars.com <mailto:ietf@augustcellars.com> > wrote:

I think that that is a regrettable but understandable opinion for an existing signature algorithm.  I find it less convincing for a new signature algorithm.

 

Why is that?

 

Many HSMs can handle this as well - using CKM_RSA_PKCS, in which the caller provides the encoded digest algorithm OID and hash, and the HSM performs the overall encapsulation. This was very much at the forefront of CAs concerns. It also simplifies implementations with many existing cryptographic libraries.

 

[JLS] The fact that one can create such a signature is not all of the relevant to my argument.  However, I don’t see that documented as a normal PKCS#11 interface.  Like Brian, I have a vague memory of being able to sign an arbitrary value, but I don’t see it off hand in the PKCS#11 spec either so I don’t know why I thought that to be true.

 

My argument is that this is a new signature algorithm.  I am trying to kill PKCS v1.5 signature.  Therefore I see no need to create a new PKCS v1.5 signature with a new hash algorithm.  The fact that it can be implemented does not have anything to do with this.  The fact that Ilari has presented a weak argument for collisions between PKCS v1.5 and PSS also pushes me to want to just have PSS.

 

Jim

v2.23.0 | Report a Bug | By Email