IETF Logo Mail Archive

Re: [lamps] Adoption call for draft-housley-lamps-cms-sha3-hash

Tim Hollebeek <tim.hollebeek@digicert.com> Mon, 27 November 2023 22:44 UTC

Return-Path: <tim.hollebeek@digicert.com>
X-Original-To: spasm@ietfa.amsl.com
Delivered-To: spasm@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 44CDEC151077 for <spasm@ietfa.amsl.com>; Mon, 27 Nov 2023 14:44:33 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.005
X-Spam-Level:
X-Spam-Status: No, score=-2.005 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_FONT_LOW_CONTRAST=0.001, HTML_MESSAGE=0.001, HTTPS_HTTP_MISMATCH=0.1, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_NONE=0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=digicert.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id BE7Aj-uGvyGi for <spasm@ietfa.amsl.com>; Mon, 27 Nov 2023 14:44:29 -0800 (PST)
Received: from NAM10-DM6-obe.outbound.protection.outlook.com (mail-dm6nam10on2136.outbound.protection.outlook.com [40.107.93.136]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 2F6EDC14F74A for <spasm@ietf.org>; Mon, 27 Nov 2023 14:44:29 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=efcxhky4Nd5IyMgXCtKaM+3Wxvz2C9wG/ZYaIUQCussWgTf+d+dpzKD8cQ7pNjEi1pgW6eT7bI22sGOfNclyoinVVVQZq6UnR92c91XYx3FDBZsUObxfTTiMrMHs7W3hThTDTOcDLj7V1k4NUjSux5Mp67RdyFl8BJY8lZHzkvHsAAzM3lRQDyTQ4L9bslavRFPzzKn7xj7rWSYvAyZZhUQS6k6GXhqEWI/MuLOAHzsNXPDfJ6umMBzrh4mq3JkI7z16+IXg3s6AJlMjYbLo4kS4xAdZPkrub55TwepV9TreVlYoMhuSXMUUdVjTjoMtmQ+bl+LeQmFlfF46/SgmZg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=7lMY+ba3q3x7rrOMUd+R+ABl1wlTxBj+yWf+hMUg7D8=; b=UVkKj+zRtYRVOUCOb7OOtxmnSS+r27ZoHbZ7p/3E4eB8/UzD2VOxyodctnDSpbwhA8ycJAvNTzflWhu9FQccJ76O0RaR+XrBy7SMiQvcKg9ZtzbQQBwZ7Al3nLcT7Jubj2Z1W5CJV2NgmASGPH++TopxxRSDK2H1A5Z+NaoC/QmbcDN5jEZUrJlekyCecdxArv5WPjdcLsZXl9dbtKVqYgP+LGUxzrZDJeEzwrDRtE3txclryNk4j9IgFfw3DZPWu4IJmoYqQtDoFy90fgFmvNHxxxr10s0To5FJ+Tiz2O8kmvC0zlueDBb1GPu019J3EpIjQyGK8waoG4pjovdZUg==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=digicert.com; dmarc=pass action=none header.from=digicert.com; dkim=pass header.d=digicert.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=digicert.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=7lMY+ba3q3x7rrOMUd+R+ABl1wlTxBj+yWf+hMUg7D8=; b=sK7KUeLYDELZcxu/dd+leQbMzvRS2EY42AN2WHKXv8UUvIaVRtEGRTz9WnqZxh0GhThcep1RmEwLWKboEpdy6x9kjCzxx8prXUYTVYaGuf0BkZKwtrnMBxfLJbB8j3y5XjiuCvOW7wq36YlcIwkGARD4oqNL9jFq4lW8OIAhFOjYry2G8K5oHUeoiACC2yRmq+hBJNdX8tuLkH4UubanhKDiITylb0hX+MkCiisOdsF24ZuhqFJ+qnKqIWA5DdvrVMSzdFscti09xmQem9mPp45+I/NnhdomMAP4oEQjnogjALhVb4ySXblzQhmdzcNVNJsxkwKib2YBXyBcfyPN5w==
Received: from SN7PR14MB6492.namprd14.prod.outlook.com (2603:10b6:806:328::17) by SN7PR14MB4368.namprd14.prod.outlook.com (2603:10b6:806:10e::6) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.7025.27; Mon, 27 Nov 2023 22:44:23 +0000
Received: from SN7PR14MB6492.namprd14.prod.outlook.com ([fe80::2a37:c081:fe77:e889]) by SN7PR14MB6492.namprd14.prod.outlook.com ([fe80::2a37:c081:fe77:e889%4]) with mapi id 15.20.7025.020; Mon, 27 Nov 2023 22:44:23 +0000
From: Tim Hollebeek <tim.hollebeek@digicert.com>
To: "Kampanakis, Panos" <kpanos=40amazon.com@dmarc.ietf.org>, Michael StJohns <msj@nthpermutation.com>, "spasm@ietf.org" <spasm@ietf.org>
Thread-Topic: [lamps] Adoption call for draft-housley-lamps-cms-sha3-hash
Thread-Index: AQHaChDqLu7UxaZPW06vOg/ULHyGh7BgIdQAgAF0aACALT504IAAD0EAgAAOL6A=
Date: Mon, 27 Nov 2023 22:44:23 +0000
Message-ID: <SN7PR14MB6492332C13F0BD102FAA24AD83BDA@SN7PR14MB6492.namprd14.prod.outlook.com>
References: <SN7PR14MB64924398A13D7C521AEDF4B283DCA@SN7PR14MB6492.namprd14.prod.outlook.com> <bfa2812c899541cc84f7c5abb38ee435@amazon.com> <597E6452-69BF-41EE-A3EB-19AF0A01304C@vigilsec.com> <CH0PR11MB573915B912FA76F9D2A8B3239FA3A@CH0PR11MB5739.namprd11.prod.outlook.com> <fb2e4bbe95964d8e9015e3787385fa53@amazon.com> <2d75918b-4815-4ec9-9e6f-74472af97a73@nthpermutation.com> <ee119d906d02451495e4b13a3c8bbc67@amazon.com> <SN7PR14MB649223E5A12E7D756977BD6C83BDA@SN7PR14MB6492.namprd14.prod.outlook.com> <177496e35a20449a9b1149f89d3e402e@amazon.com>
In-Reply-To: <177496e35a20449a9b1149f89d3e402e@amazon.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach: yes
X-MS-TNEF-Correlator:
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=digicert.com;
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: SN7PR14MB6492:EE_|SN7PR14MB4368:EE_
x-ms-office365-filtering-correlation-id: 9e7009f7-3ad8-4682-3acf-08dbef9a66fc
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:SN7PR14MB6492.namprd14.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230031)(136003)(346002)(376002)(39860400002)(366004)(396003)(230922051799003)(230173577357003)(230273577357003)(1800799012)(186009)(64100799003)(451199024)(38100700002)(41300700001)(86362001)(33656002)(38070700009)(166002)(99936003)(122000001)(55016003)(83380400001)(5660300002)(44832011)(26005)(2906002)(9686003)(71200400001)(53546011)(7696005)(6506007)(52536014)(8676002)(8936002)(478600001)(966005)(66446008)(64756008)(66946007)(76116006)(110136005)(66476007)(66556008)(316002); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: multipart/signed; protocol="application/x-pkcs7-signature"; micalg="SHA1"; boundary="----=_NextPart_000_04B5_01DA2159.5A4CF5D0"
MIME-Version: 1.0
X-OriginatorOrg: digicert.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: SN7PR14MB6492.namprd14.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 9e7009f7-3ad8-4682-3acf-08dbef9a66fc
X-MS-Exchange-CrossTenant-originalarrivaltime: 27 Nov 2023 22:44:23.4595 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: cf813fa1-bde5-4e75-9479-f6aaa8b1f284
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: BK+mwq0Y72tKp5uf614GCDtojHJbv33o026ae/2EAJ/HjPHqeFgBynIcAaw85FL50rZ0ljvarIieRDQJuxDSVwAq0aRcbOjaSWfn9yKdRZw=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: SN7PR14MB4368
Archived-At: <https://mailarchive.ietf.org/arch/msg/spasm/cQ85jn1B3yUyM9n9rHYet4ipLF8>
Subject: Re: [lamps] Adoption call for draft-housley-lamps-cms-sha3-hash
X-BeenThere: spasm@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: This is the mail list for the LAMPS Working Group <spasm.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/spasm>, <mailto:spasm-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/spasm/>
List-Post: <mailto:spasm@ietf.org>
List-Help: <mailto:spasm-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/spasm>, <mailto:spasm-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 27 Nov 2023 22:44:33 -0000

Yes, thank you.  That’s what I thought but I didn’t want to put words in your mouth.  I’ve enjoyed the thoughtful discussion.

 

Anyway, with that, we’re officially adopting cms-sha3-hash as a WG document.  Russ, please post the WG version.

 

-Tim

 

From: Kampanakis, Panos <kpanos=40amazon.com@dmarc.ietf.org> 
Sent: Monday, November 27, 2023 4:53 PM
To: Tim Hollebeek <tim.hollebeek@digicert.com>; Michael StJohns <msj@nthpermutation.com>; spasm@ietf.org
Subject: RE: [lamps] Adoption call for draft-housley-lamps-cms-sha3-hash

 

Hi Tim,

 

I am not against adoption. I don’t think it would hurt to standardize SHA3 in CMS. 

 

I was trying to play devil’s advocate for an implementer trying to decide if they should implement draft-housley-lamps-cms-sha3-hash or RFC8702. But I am not against adoption. 

 

 

From: Tim Hollebeek <tim.hollebeek=40digicert.com@dmarc.ietf.org <mailto:tim.hollebeek=40digicert.com@dmarc.ietf.org> > 
Sent: Monday, November 27, 2023 4:01 PM
To: Kampanakis, Panos <kpanos@amazon.com <mailto:kpanos@amazon.com> >; Michael StJohns <msj@nthpermutation.com <mailto:msj@nthpermutation.com> >; spasm@ietf.org <mailto:spasm@ietf.org> 
Subject: RE: [EXTERNAL] [lamps] Adoption call for draft-housley-lamps-cms-sha3-hash

 

Panos,

 

Are you actually against adoption of this draft, or are you just making some very intelligent comments and participating in discussion on what the final contents of the document should say?  I’m trying to close out the adoption call, and if you’re not against adoption, then there’s clear consensus in favor.  If not, I’d like to dig into your objections to adoption a little further and understand them better.

 

-Tim

 

From: Spasm <spasm-bounces@ietf.org <mailto:spasm-bounces@ietf.org> > On Behalf Of Kampanakis, Panos
Sent: Sunday, October 29, 2023 10:03 PM
To: Michael StJohns <msj@nthpermutation.com <mailto:msj@nthpermutation.com> >; spasm@ietf.org <mailto:spasm@ietf.org> 
Subject: Re: [lamps] Adoption call for draft-housley-lamps-cms-sha3-hash

 

> try and practice algorithmic pluralism in the way we define things

 

Personally, I am not sure algorithmic pluralism for the sake of variety is a good idea. Integrating and using only new algorithms that make sense is a better one imo. 

I can’t think of a case where SHA-3 would be preferred over SHAKEs, but I am open to suggestions. 

 

From: Spasm <spasm-bounces@ietf.org <mailto:spasm-bounces@ietf.org> > On Behalf Of Michael StJohns
Sent: Saturday, October 28, 2023 11:50 PM
To: spasm@ietf.org <mailto:spasm@ietf.org> 
Subject: RE: [EXTERNAL] [lamps] Adoption call for draft-housley-lamps-cms-sha3-hash

 


CAUTION: This email originated from outside of the organization. Do not click links or open attachments unless you can confirm the sender and know the content is safe.

 

IMHO - These are somewhat orthogonal items.   Russ' document is useful irrespective of the Mike's KEM stuff, and I'd like to see it move forward on that basis.

 

(also, https://csrc.nist.gov/Projects/computer-security-objects-register/algorithm-registration has the OID registration for id-sha3-256, so for the use Mike as asking about, it's unclear his document actually depends on Russ' document.  That said, its usually useful to have an IETF public of the NIST allocations as RFCs tend to be a bit easier to find for our participants).

 

If you want draft-ietf-lamps-pq-composite-kem to use Shake exclusively, that's more a discussion that needs to happen on the list with respect to that draft.  Alternately, do what is more flexible and define multiple kda-??? KEY-DERIVATION ::={} constructs to support both shake and sha3.

 

So I'd suggest it may be better to avoid discussions about which is better and try and practice algorithmic pluralism in the way we define things.  In other words, allocate top level OIDs for both a shake and sha3 variant of the KDF and include those in the ASN1.

 

Later, Mike

 

 

On 10/28/2023 10:37 PM, Kampanakis, Panos wrote:

Hi Mike, 

 

> I guess this is a design choice that the WG can discuss. We could instead use id-shake-256 from RFC8702, which is usable as a digest algorithm as per section 3.1, but why? If what I actually want is a hash function, then why can’t I have a hash function?

 

I suggest to discuss this in IETF-118. SHAKEs are XOFs but can be used just fine as hashes with constant output size. Their performance is better, and generally that is the reason they have be favored and more adopted than SHA-3 (in the same family).

 

 

 

 

From: Spasm  <mailto:spasm-bounces@ietf.org> <spasm-bounces@ietf.org> On Behalf Of Mike Ounsworth
Sent: Saturday, October 28, 2023 2:08 PM
To: Russ Housley  <mailto:housley@vigilsec.com> <housley@vigilsec.com>; Kampanakis, Panos  <mailto:kpanos@amazon.com> <kpanos@amazon.com>
Cc: LAMPS  <mailto:spasm@ietf.org> <spasm@ietf.org>
Subject: RE: [EXTERNAL] [lamps] [EXTERNAL] Re: Adoption call for draft-housley-lamps-cms-sha3-hash

 


CAUTION: This email originated from outside of the organization. Do not click links or open attachments unless you can confirm the sender and know the content is safe.

 

Panos,

 

Specifically, draft-ietf-lamps-pq-composite-kem instantiates RSA-KEM (RFC5990bis) with:

keyDerivationFunction  kda-kdf3 with id-sha3-256

See:

https://datatracker.ietf.org/doc/html/draft-ietf-lamps-pq-composite-kem-02#name-rsa-kem-parameters

 

Therefore, I need an OID for id-sha3-256.

 

I guess this is a design choice that the WG can discuss. We could instead use id-shake-256 from RFC8702, which is usable as a digest algorithm as per section 3.1, but why? If what I actually want is a hash function, then why can’t I have a hash function?

 

- Mike Ounsworth

  _____  

From: Spasm <spasm-bounces@ietf.org <mailto:spasm-bounces@ietf.org> > on behalf of Russ Housley <housley@vigilsec.com <mailto:housley@vigilsec.com> >
Sent: Saturday, October 28, 2023 10:44:57 AM
To: Panos Kampanakis <kpanos@amazon.com <mailto:kpanos@amazon.com> >
Cc: LAMPS <spasm@ietf.org <mailto:spasm@ietf.org> >
Subject: [EXTERNAL] Re: [lamps] Adoption call for draft-housley-lamps-cms-sha3-hash 

 

Panos: Mike Ounsworth needs these OIDs to be available, and the easiest solution was to just publish the previously abandoned I-D. Russ On Oct 27, 2023, at 11: 00 PM, Kampanakis, Panos  <mailto:kpanos=40amazon. com@ dmarc. ietf. org> <kpanos=40amazon. com@ dmarc. ietf. org> wrote: Hi Russ, 

 

Panos: 

 

Mike Ounsworth needs these OIDs to be available, and the easiest solution was to just publish the previously abandoned I-D.

 

Russ

 

 

On Oct 27, 2023, at 11:00 PM, Kampanakis, Panos <kpanos=40amazon.com@dmarc.ietf.org <mailto:kpanos=40amazon.com@dmarc.ietf.org> > wrote:

 

Hi Russ, 

 

I was under the impression that SHAKEs for CMS and X.509 would suffice for introducing the Keccak family to these standards. SHAKEs have the same security and better performance. I thought that was the reason draft-turner-lamps-adding-sha3-to-pkix never made it.

 

Is there a reason why someone would use SHA-3 in CMS instead of SHAKE128 or SHAKE256 (RFC8702)?

 

 

 

From: Spasm < <mailto:spasm-bounces@ietf.org> spasm-bounces@ietf.org> On Behalf Of Tim Hollebeek
Sent: Friday, October 27, 2023 11:39 AM
To: SPASM < <mailto:spasm@ietf.org> spasm@ietf.org>
Subject: [EXTERNAL] [lamps] Adoption call for draft-housley-lamps-cms-sha3-hash

 


CAUTION: This email originated from outside of the organization. Do not click links or open attachments unless you can confirm the sender and know the content is safe.

 

Hello,

 

Russ has asked for an adoption call for this short document that explains how to

use SHA-3 with CMS.  Since people may be traveling to IETF 118, we’ll do a three

week adoption call.

 

 

 <https://urldefense.com/v3/__https:/datatracker.ietf.org/doc/html/draft-housley-lamps-cms-sha3-hash-00__;!!FJ-Y8qCqXTj2!btMHx3oQg1XcdsmiDk3zQn-HVGxUExFHzJp0v2bwunfFVR3P8235FQ_QH4pzRkyD49fJSywzek8dgSw-P9DqGArWDMhf$> https://datatracker.ietf.org/doc/html/draft-housley-lamps-cms-sha3-hash-00

 

Abstract

 

   This document describes the conventions for using the four one-way

   hash functions in the SHA3 family with the Cryptographic Message

   Syntax (CMS).

 

Please indicate whether you support adoption, and optionally indicate why, on

the list by 17 November 2023.

 

For the chairs,

 

-Tim

 

_______________________________________________
Spasm mailing list
 <mailto:Spasm@ietf.org> Spasm@ietf.org
 <https://urldefense.com/v3/__https:/www.ietf.org/mailman/listinfo/spasm__;!!FJ-Y8qCqXTj2!btMHx3oQg1XcdsmiDk3zQn-HVGxUExFHzJp0v2bwunfFVR3P8235FQ_QH4pzRkyD49fJSywzek8dgSw-P9DqGMDI1k9b$> https://www.ietf.org/mailman/listinfo/spasm

 

Any email and files/attachments transmitted with it are intended solely for the use of the individual or entity to whom they are addressed. If this message has been sent to you in error, you must not copy, distribute or disclose of the information it contains. Please notify Entrust immediately and delete the message from your system. 

 

_______________________________________________
Spasm mailing list
Spasm@ietf.org <mailto:Spasm@ietf.org> 
https://www.ietf.org/mailman/listinfo/spasm

v2.23.0 | Report a Bug | By Email