Re: [lamps] Proposed addition of hash-based signature algorithms for certificates to the LAMPS charter
Stephen Farrell <stephen.farrell@cs.tcd.ie> Mon, 12 November 2018 16:24 UTC
Return-Path: <stephen.farrell@cs.tcd.ie>
X-Original-To: spasm@ietfa.amsl.com
Delivered-To: spasm@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 230CD130E1D for <spasm@ietfa.amsl.com>; Mon, 12 Nov 2018 08:24:05 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.3
X-Spam-Level:
X-Spam-Status: No, score=-4.3 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_MED=-2.3, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cs.tcd.ie
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id zFkuO3jwzTSB for <spasm@ietfa.amsl.com>; Mon, 12 Nov 2018 08:24:02 -0800 (PST)
Received: from mercury.scss.tcd.ie (mercury.scss.tcd.ie [134.226.56.6]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 5A8F512F1AC for <spasm@ietf.org>; Mon, 12 Nov 2018 08:24:02 -0800 (PST)
Received: from localhost (localhost [127.0.0.1]) by mercury.scss.tcd.ie (Postfix) with ESMTP id 39D85BE24; Mon, 12 Nov 2018 16:24:00 +0000 (GMT)
Received: from mercury.scss.tcd.ie ([127.0.0.1]) by localhost (mercury.scss.tcd.ie [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 5LGiXiLuIiXl; Mon, 12 Nov 2018 16:24:00 +0000 (GMT)
Received: from [134.226.36.93] (bilbo.dsg.cs.tcd.ie [134.226.36.93]) by mercury.scss.tcd.ie (Postfix) with ESMTPSA id 006E5BE1D; Mon, 12 Nov 2018 16:23:59 +0000 (GMT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cs.tcd.ie; s=mail; t=1542039840; bh=hqw+h4phTxrteTeSuooY63yAFRNmc4cFrzgD86I13+Q=; h=To:References:From:Subject:Date:In-Reply-To:From; b=vHcmLxh6MeHukiuwXHDGLItBCswqTS4L54/GGoz9M8K1I0CPP2HTi+/nvxKXw6kjD 0nXS6t27n4szlTQPSSTVs6S5qBIXy3ga0k9rKrnbdhJqbJVPT8eojGgRNu7iCrFn/e mwNNCWBLwHU/IuACSPnsUO3FnoOWXr9X2UG3ZavA=
To: Russ Housley <housley@vigilsec.com>, SPASM <spasm@ietf.org>
References: <3653FE62-CD11-47D1-A9DB-5C6FF4AD8498@vigilsec.com>
From: Stephen Farrell <stephen.farrell@cs.tcd.ie>
Openpgp: id=5BB5A6EA5765D2C5863CAE275AB2FAF17B172BEA; url=
Autocrypt: addr=stephen.farrell@cs.tcd.ie; prefer-encrypt=mutual; keydata= xsFNBFo9UDIBEADUH4ZPcUnX5WWRWO4kEkHea5Y5eEvZjSwe/YA+G0nrTuOU9nemCP5PMvmh 5Cg8gBTyWyN4Z2+O25p9Tja5zUb+vPMWYvOtokRrp46yhFZOmiS5b6kTq0IqYzsEv5HI58S+ QtaFq978CRa4xH9Gi9u4yzUmT03QNIGDXE37honcAM4MOEtEgvw4fVhVWJuyy3w//0F2tzKr EMjmL5VGuD/Q9+G/7abuXiYNNd9ZFjv4625AUWwy+pAh4EKzS1FE7BOZp9daMu9MUQmDqtZU bUv0Q+DnQAB/4tNncejJPz0p2z3MWCp5iSwHiQvytYgatMp34a50l6CWqa13n6vY8VcPlIqO Vz+7L+WiVfxLbeVqBwV+4uL9to9zLF9IyUvl94lCxpscR2kgRgpM6A5LylRDkR6E0oudFnJg b097ZaNyuY1ETghVB5Uir1GCYChs8NUNumTHXiOkuzk+Gs4DAHx/a78YxBolKHi+esLH8r2k 4LyM2lp5FmBKjG7cGcpBGmWavACYEa7rwAadg4uBx9SHMV5i33vDXQUZcmW0vslQ2Is02NMK 7uB7E7HlVE1IM1zNkVTYYGkKreU8DVQu8qNOtPVE/CdaCJ/pbXoYeHz2B1Nvbl9tlyWxn5Xi HzFPJleXc0ksb9SkJokAfwTSZzTxeQPER8la5lsEEPbU/cDTcwARAQABzTJTdGVwaGVuIEZh cnJlbGwgKDIwMTcpIDxzdGVwaGVuLmZhcnJlbGxAY3MudGNkLmllPsLBgAQTAQgAKgIbAwUJ CZQmAAULCQgHAgYVCAkKCwIEFgIDAQIeAQIXgAUCWj6jdwIZAQAKCRBasvrxexcr6o7QD/9m x9DPJetmW794RXmNTrbTJ44zc/tJbcLdRBh0KBn9OW/EaAqjDmgNJeCMyJTKr1ywaps8HGUN hLEVkc14NUpgi4/Zkrbi3DmTp25OHj6wXBS5qVMyVynTMEIjOfeFFyxG+48od+Xn7qg6LT7G rHeNf+z/r0v9+8eZ1Ip63kshQDGhhpmRMKu4Ws9ZvTW2ACXkkTFaSGYJj3yIP4R6IgwBYGMz DXFX6nS4LA1s3pcPNxOgrvCyb60AiJZTLcOk/rRrpZtXB1XQc23ZZmrlTkl2HaThL6w3YKdi Ti1NbuMeOxZqtXcUshII45sANm4HuWNTiRh93Bn5bN6ddjgsaXEZBKUBuUaPBl7gQiQJcAlS 3MmGgVS4ZoX8+VaPGpXdQVFyBMRFlOKOC5XJESt7wY0RE2C8PFm+5eywSO/P1fkl9whkMgml 3OEuIQiP2ehRt/HVLMHkoM9CPQ7t6UwdrXrvX+vBZykav8x9U9M6KTgfsXytxUl6Vx5lPMLi 2/Jrsz6Mzh/IVZa3xjhq1OLFSI/tT2ji4FkJDQbO+yYUDhcuqfakDmtWLMxecZsY6O58A/95 8Qni6Xeq+Nh7zJ7wNcQOMoDGj+24di2TX1cKLzdDMWFaWzlNP5dB5VMwS9Wqj1Z6TzKjGjru q8soqohwb2CK9B3wzFg0Bs1iBI+2RuFnxM7BTQRaPVAyARAA+g3R0HzGr/Dl34Y07XqGqzq5 SU0nXIu9u8Ynsxj7gR5qb3HgUWYEWrHW2jHOByXnvkffucf5yzwrsvw8Q8iI8CFHiTYHPpey 4yPVn6R0w/FOMcY70eTIu/k6EEFDlDbs09DtKcrsT9bmN0XoRxITlXwWTufYqUnmS+YkAuk+ TLCtUin7OdaS2uU6Ata3PLQSeM2ZsUQMmYmHPwB9rmf+q2I005AJ9Q1SPQ2KNg/8xOGxo13S VuaSqYRQdpV93RuCOzg4vuXtR+gP0KQrus/P2ZCEPvU9cXF/2MIhXgOz207lv3iE2zGyNXld /n8spvWk+0bH5Zqd9Wcba/rGcBhmX9NKKDARZqjkv/zVEP1X97w1HsNYeUFNcg2lk9zQKb4v l1jx/Uz8ukzH2QNhU4R39dbF/4AwWuSVkGW6bTxHJqGs6YimbfdQqxTzmqFwz3JP0OtXX5q/ 6D4pHwcmJwEiDNzsBLl6skPSQ0Xyq3pua/qAP8MVm+YxCxJQITqZ8qjDLzoe7s9X6FLLC/DA L9kxl5saVSfDbuI3usH/emdtn0NA9/M7nfgih92zD92sl1yQXHT6BDa8xW1j+RU4P+E0wyd7 zgB2UeYgrp2IIcfG+xX2uFG5MJQ/nYfBoiALb0+dQHNHDtFnNGY3Oe8z1M9c5aDG3/s29QbJ +w7hEKKo9YMAEQEAAcLBZQQYAQgADwUCWj1QMgIbDAUJCZQmAAAKCRBasvrxexcr6qwvD/9b Rek3kfN8Q+jGrKl8qwY8HC5s4mhdDJZI/JP2FImf5J2+d5/e8UJ4fcsT79E0/FqX3Z9wZr6h sofPqLh1/YzDsYkZDHTYSGrlWGP/I5kXwUmFnBZHzM3WGrL3S7ZmCYMdudhykxXXjq7M6Do1 oxM8JofrXGtwBTLv5wfvvygJouVCVe87Ge7mCeY5vey1eUi4zSSF1zPpR6gg64w2g4TXM5qt SwkZVOv1g475LsGlYWRuJV8TA67yp1zJI7HkNqCo8KyHX0DPOh9c+Sd9ZX4aqKfqH9HIpnCL AYEgj7vofeix7gM3kQQmwynqq32bQGQBrKJEYp2vfeO30VsVx4dzuuiC5lyjUccVmw5D72J0 FlGrfEm0kw6D1qwyBg0SAMqamKN6XDdjhNAtXIaoA2UMZK/vZGGUKbqTgDdk0fnzOyb2zvXK CiPFKqIPAqKaDHg0JHdGI3KpQdRNLLzgx083EqEc6IAwWA6jSz+6lZDV6XDgF0lYqAYIkg3+ 6OUXUv6plMlwSHquiOc/MQXHfgUP5//Ra5JuiuyCj954FD+MBKIj8eWROfnzyEnBplVHGSDI ZLzL3pvV14dcsoajdeIH45i8DxnVm64BvEFHtLNlnliMrLOrk4shfmWyUqNlzilXN2BTFVFH 4MrnagFdcFnWYp1JPh96ZKjiqBwMv/H0kw==
Message-ID: <901d485b-ffed-b2c9-70c2-191e5d0e08ac@cs.tcd.ie>
Date: Mon, 12 Nov 2018 16:23:58 +0000
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:60.0) Gecko/20100101 Thunderbird/60.2.1
MIME-Version: 1.0
In-Reply-To: <3653FE62-CD11-47D1-A9DB-5C6FF4AD8498@vigilsec.com>
Content-Type: multipart/signed; micalg="pgp-sha512"; protocol="application/pgp-signature"; boundary="f99PWqr1PHZT66ZF6DrfNt7MSjj8gnLTX"
Archived-At: <https://mailarchive.ietf.org/arch/msg/spasm/ihUsGYUCpdOdfwpzefWMediL5rg>
Subject: Re: [lamps] Proposed addition of hash-based signature algorithms for certificates to the LAMPS charter
X-BeenThere: spasm@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "This is a venue for discussion of doing Some Pkix And SMime \(spasm\) work." <spasm.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/spasm>, <mailto:spasm-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/spasm/>
List-Post: <mailto:spasm@ietf.org>
List-Help: <mailto:spasm-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/spasm>, <mailto:spasm-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 12 Nov 2018 16:24:05 -0000
Hiya, On 07/11/2018 03:50, Russ Housley wrote: > The SECDISPATCH WG met on Tuesday afternoon, and they made this recommendation: > >> draft-vangeest-x509-hash-sigs-01 -- re-charter LAMPS WG to accept this draft > > Three questions: > > 1) Do you support the addition of this work to the LAMPS charter? Not sure. (Sorry for being on the fence;-) I believe that the hash based signature schemes are sufficiently secure, if implemented and used properly, so I don't have concerns about the basic crypto, though we've ~zero experience in implementing and using these schemes afaik. I do think there will be applications for those schemes but am concerned that it may be a bad plan to define how to use those schemes for X.509. I'd much prefer if there were interest in trying to see how to move beyond X.509 entirely as we consider attempts to be secure in a post-quantum sense. If there were sufficient interest in that (moving beyond X.509) then the valid concerns that Adam raised (about e.g. APIs and recovery) could, I think, be better handled. (Sadly, I'm unaware of any credible proposal to move beyong X.509, much as I'd like to see one;-) I don't think LAMPS would be the right venue for such work, were there to be interest in that. If, OTOH, it is inevitable that X.509 CAs want to start signing certificates using these schemes, then I guess just defining OIDs in LAMPS would be reasonable, but I figure that's the wrong direction to take, and I'm not sure what relying parties would really be using them, so defining those OIDs may be premature. > 2) If it is added, would you review the document? Maybe. > 3) If it results in an RFC, would you implement? Not I. Cheers, S. > > Russ & Tim > _______________________________________________ > Spasm mailing list > Spasm@ietf.org > https://www.ietf.org/mailman/listinfo/spasm >
- [lamps] Proposed addition of hash-based signature… Russ Housley
- Re: [lamps] Proposed addition of hash-based signa… Salz, Rich
- Re: [lamps] Proposed addition of hash-based signa… Yoav Nir
- Re: [lamps] Proposed addition of hash-based signa… Tim Hollebeek
- Re: [lamps] Proposed addition of hash-based signa… Panos Kampanakis (pkampana)
- Re: [lamps] Proposed addition of hash-based signa… Daniel Van Geest
- Re: [lamps] Proposed addition of hash-based signa… Dr. Pala
- Re: [lamps] Proposed addition of hash-based signa… Adam Langley
- Re: [lamps] Proposed addition of hash-based signa… Dr. Pala
- Re: [lamps] Proposed addition of hash-based signa… Adam Langley
- Re: [lamps] Proposed addition of hash-based signa… Tim Hollebeek
- Re: [lamps] Proposed addition of hash-based signa… Ryan Sleevi
- Re: [lamps] Proposed addition of hash-based signa… Tim Hollebeek
- Re: [lamps] Proposed addition of hash-based signa… Ryan Sleevi
- Re: [lamps] Proposed addition of hash-based signa… Stephen Farrell
- Re: [lamps] Proposed addition of hash-based signa… Daniel Van Geest
- Re: [lamps] Proposed addition of hash-based signa… Adam Langley
- Re: [lamps] Proposed addition of hash-based signa… Benjamin Kaduk
- Re: [lamps] Proposed addition of hash-based signa… Adam Langley