IETF Logo Mail Archive

Re: [lamps] draft-housley-lamps-crmf-update-algs - proposal on adding text regarding iterationCount and pwd quality

Jonathan Hammell <jfhamme.cccs@gmail.com> Fri, 27 November 2020 17:47 UTC

Return-Path: <jfhamme.cccs@gmail.com>
X-Original-To: spasm@ietfa.amsl.com
Delivered-To: spasm@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7DA043A0AE5 for <spasm@ietfa.amsl.com>; Fri, 27 Nov 2020 09:47:49 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.099
X-Spam-Level:
X-Spam-Status: No, score=-2.099 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id E0swfsyTekPb for <spasm@ietfa.amsl.com>; Fri, 27 Nov 2020 09:47:48 -0800 (PST)
Received: from mail-ot1-x329.google.com (mail-ot1-x329.google.com [IPv6:2607:f8b0:4864:20::329]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 5BB363A0AD5 for <spasm@ietf.org>; Fri, 27 Nov 2020 09:47:48 -0800 (PST)
Received: by mail-ot1-x329.google.com with SMTP id y24so5358947otk.3 for <spasm@ietf.org>; Fri, 27 Nov 2020 09:47:48 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=ATv08llFUbRoWvK2TfBBnTD+ffJuTGUu/ohCgxeDBTg=; b=kcr+r6smw8/Sgw7b7STfoWyKKXmvXr1IIXQq2Fa4Mx6wVcyfWfyGdocHErj++scdLB Chig37NtcGDUjaGg0T4IlscRdlIv9xPLI35P2d7JFo8YIQJQivGhhZOel7F9sMTx5c3z iUFvSaRpVrWTzLdtGloDkNyL1+SWvbUDya3U/DLjFSUaiTOQmYAlNtlfjzDztn+d8PSR K1lq4/2uQVDEEgQR+d9Q1IVpBzzDsSUBhRdOZ557hGPX6OWv5gKP2aM49sA/UAgjiJYT kPvw3VEcfBSRohZHxvyDBbTwasDErKAY4+y3X8jBFnncL3EvUG32IHBuNNOazl5jY/Gt 04qA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=ATv08llFUbRoWvK2TfBBnTD+ffJuTGUu/ohCgxeDBTg=; b=SSnUIx5Van/qsNAWMR99Yo76vedX5vMYa0qgMwfZwUan64yZN854SfOHBZLO8EpQ3l o+9NpN+UL+QqKRrYuPkAZrfk1OFvHhPJzNs60MmrwUAaeIZ/1adB17obGl/aTb6T6epj 0HTjfknv42K2GHwfFvhYBDI/moisuK4I063nsxiRLHcc2asobUpfC0zGNfZOq7XOYK8f NssfA9hS/Q6zusjTbtUPYyLsaHtUCoWQC7nujt/JuJKVj3hp0RXcwnc0I50RfOwqUwcf w4LbN7Zpkih1lJM/vxjdWg6vIvpSrk5UF89AJ3eaSjtZa6lXgc6WcPb5Fk3zpNugvZfO z/4Q==
X-Gm-Message-State: AOAM530z1MsqXLkrmqlzTL8uQg+Cs6LpnI3gBayxwTy8QVNKjboI2t0P 0s+IBLcEU6oIX+4c2SN6dcFkBY0eY42q8EqqQuE=
X-Google-Smtp-Source: ABdhPJy9nCE4wcX9jikR0i2kI/EK/tfRsxbU2ZACT1fCuK63zw4leq9Ayd+83Tn2Lm6h6kyV23piIE3gFCQt95mshU4=
X-Received: by 2002:a9d:4808:: with SMTP id c8mr7121674otf.194.1606499267769; Fri, 27 Nov 2020 09:47:47 -0800 (PST)
MIME-Version: 1.0
References: <AM0PR10MB24188049A1B53C88EE19B606FEF90@AM0PR10MB2418.EURPRD10.PROD.OUTLOOK.COM> <86E7B55E-986C-42C1-8E02-20FB70C2F022@vigilsec.com> <CALhKWgiA+kg3OxzZndwiwPNexk6ABJAKn1AQmZ_LL5YcQSFvSw@mail.gmail.com> <314553E7-B3D9-43B4-B775-31482C5035C6@vigilsec.com>
In-Reply-To: <314553E7-B3D9-43B4-B775-31482C5035C6@vigilsec.com>
From: Jonathan Hammell <jfhamme.cccs@gmail.com>
Date: Fri, 27 Nov 2020 12:47:36 -0500
Message-ID: <CALhKWgjoQsdWtpA3uhGL21rfKRLdwnfxvCd0_azd7s+1=40fww@mail.gmail.com>
To: Russ Housley <housley@vigilsec.com>
Cc: "Brockhaus, Hendrik" <hendrik.brockhaus@siemens.com>, LAMPS <spasm@ietf.org>, "steffen.fries@siemens.com" <steffen.fries@siemens.com>, "hans.aschauer@siemens.com" <hans.aschauer@siemens.com>
Content-Type: text/plain; charset="UTF-8"
Archived-At: <https://mailarchive.ietf.org/arch/msg/spasm/Cb8prweW4ytze6egm1d7nE8ReQg>
Subject: Re: [lamps] draft-housley-lamps-crmf-update-algs - proposal on adding text regarding iterationCount and pwd quality
X-BeenThere: spasm@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "This is a venue for discussion of doing Some Pkix And SMime \(spasm\) work." <spasm.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/spasm>, <mailto:spasm-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/spasm/>
List-Post: <mailto:spasm@ietf.org>
List-Help: <mailto:spasm-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/spasm>, <mailto:spasm-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 27 Nov 2020 17:47:50 -0000

Russ:
> > However, I'm concerned about the ASN.1 for PBMParameter Section 4.4 of
> > RFC 4211 for the following reasons.  If one wanted to use scrypt (RFC
> > 7914) for the owf, there is duplication of the salt parameter and the
> > iterationCount in PBMParameter would no longer be relevant.  One might
> > even want to use Argon2 (draft-irtf-cfrg-argon2), but unfortunately
> > there is no ASN.1 module in that I-D to specify parameterization.  I
> > realize that backwards compatibility needs to be maintained for
> > PBMParameter so those parameters cannot be made OPTIONAL, but perhaps
> > some guidance like the following should be added?
> >
> >  "If a salt value is specified in the AlgorithmIdentifier parameters
> > for owf (such as in [RFC7914]), the salt value in PBMParameter MUST
> > NOT be used and it SHOULD be the zero-length octet string.  Similarly,
> > if the mechanism specified in owf has its own cost parameter for
> > deriving a key (such as in [RFC7914]), then the iterationCount value
> > in PBMParameter MUST NOT be used and it SHOULD be set to 0."
>
> I do not think I agree.  If you want to use one of these other constructions, wouldn't completely replace id-PasswordBasedMAC?

You would not be able to just replace id-PasswordBasedMAC with
id-scrypt since you need the specification for the MAC construction to
perform the proof of possession.  However, you are right, it might be
best to use a new OID and define a new parameters structure to use a
MAC with one of these alternative PBKDF mechanisms.

Best regards,
Jonathan

v2.23.0 | Report a Bug | By Email