Re: [Suit] MTI algorithm change: eddsa with chacha/poly

Laurence Lundblade <lgl@island-resort.com> Mon, 21 November 2022 18:00 UTC

Return-Path: <lgl@island-resort.com>
X-Original-To: suit@ietfa.amsl.com
Delivered-To: suit@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2726EC14F693 for <suit@ietfa.amsl.com>; Mon, 21 Nov 2022 10:00:31 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.897
X-Spam-Level:
X-Spam-Status: No, score=-6.897 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_HI=-5, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id lgGnbeghcX_g for <suit@ietfa.amsl.com>; Mon, 21 Nov 2022 10:00:27 -0800 (PST)
Received: from NAM10-DM6-obe.outbound.protection.outlook.com (mail-dm6nam10on20704.outbound.protection.outlook.com [IPv6:2a01:111:f400:7e88::704]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 57D44C14CF17 for <suit@ietf.org>; Mon, 21 Nov 2022 10:00:26 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=Y2IyPk6oxczSAmtBZey1GPWFWE/h1AhzOTaJBdDwrTalk0ABIlK9vo7+oFjiIKTjXP2bFtH3k6747SmnaAxtxpJ3fv/4GfrBOFUOX6g/9wxlgbmwnSRzf6JHwsdvtvi8ApV3UbdYblvtCq0hbYfmMBo/lQ6KaJYNMIxmbyAZNX0W/zONvrIjiuYItkmny0uEyYMSK0SmKayNwQWa4h79RoZv0FAH+Rje9iPi1mfpm5QjkvVSh9DlPuTN/cirbrjv+cK7/M6q7uFDfiaepdtMH9m5Cq0Gj78FuxhFgHEDI0qyzr78wh8RB1lpRA5H3ExWAX4EvC5gLLkd5p5PIJ8AvQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=CdVK03p3ZpeRswEYhaw8VFrnpzCfFcqGVXq0sSg2jOo=; b=gLHXp+jNv31bpZcBxAJWs8Bv7pJFsiWeLFYQjMLVcbDEmBuXWwbJUlZmgmKiuu5cJyOisu/tofUQXhYsH8tFLb6pzuLq8e5Rg1c8XmhzJDkS09B00raYmXVCNPZ6VYmdAnpTZdYEfFEe3AqMaH4c95RiWVXd1/dtmcjPMfT4qT/n6wnajR8MSbG3Ume/4PMuWFZFCiFgUIYvasW9ctgXLsh2O1cA4xXpjkFcEekSZnje0Ojh+DFO1lJnTB6Ld1iF+6mea9MszjRj7lz7rr4jEoZbBvdUm1SuP0JvDV6D5mBA+CbrXOU4f7lu9JGWONrvTfTZbDnaf7+Sc+/ZF14/tQ==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=island-resort.com; dmarc=pass action=none header.from=island-resort.com; dkim=pass header.d=island-resort.com; arc=none
Authentication-Results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=island-resort.com;
Received: from PH7PR22MB3092.namprd22.prod.outlook.com (2603:10b6:510:13b::8) by BL1PR22MB3682.namprd22.prod.outlook.com (2603:10b6:208:395::11) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.5834.15; Mon, 21 Nov 2022 18:00:22 +0000
Received: from PH7PR22MB3092.namprd22.prod.outlook.com ([fe80::5f84:56c7:9b77:1bf]) by PH7PR22MB3092.namprd22.prod.outlook.com ([fe80::5f84:56c7:9b77:1bf%3]) with mapi id 15.20.5834.015; Mon, 21 Nov 2022 18:00:21 +0000
Content-Type: text/plain; charset="us-ascii"
From: Laurence Lundblade <lgl@island-resort.com>
In-Reply-To: <CAPmVn1PBx=95=XP4qOzzpnowZQhD4XvzkUUFXCEVAvSd_GR51Q@mail.gmail.com>
Date: Mon, 21 Nov 2022 10:00:19 -0800
Cc: suit <suit@ietf.org>
Content-Transfer-Encoding: quoted-printable
Message-Id: <14D881D9-F5B2-482D-B121-F9118F2CD6EA@island-resort.com>
References: <CAPmVn1PBx=95=XP4qOzzpnowZQhD4XvzkUUFXCEVAvSd_GR51Q@mail.gmail.com>
To: Brendan Moran <brendan.moran.ietf@gmail.com>
X-Mailer: Apple Mail (2.3608.120.23.2.4)
X-ClientProxiedBy: SJ0PR13CA0043.namprd13.prod.outlook.com (2603:10b6:a03:2c2::18) To PH7PR22MB3092.namprd22.prod.outlook.com (2603:10b6:510:13b::8)
MIME-Version: 1.0
X-MS-PublicTrafficType: Email
X-MS-TrafficTypeDiagnostic: PH7PR22MB3092:EE_|BL1PR22MB3682:EE_
X-MS-Office365-Filtering-Correlation-Id: afb56b3e-a48f-4b49-1001-08dacbea4211
X-MS-Exchange-SenderADCheck: 1
X-MS-Exchange-AntiSpam-Relay: 0
X-Microsoft-Antispam: BCL:0;
X-Microsoft-Antispam-Message-Info: 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
X-Forefront-Antispam-Report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:PH7PR22MB3092.namprd22.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230022)(39830400003)(376002)(346002)(136003)(396003)(366004)(451199015)(41300700001)(8936002)(4744005)(5660300002)(4326008)(316002)(6916009)(66946007)(66476007)(66556008)(8676002)(478600001)(2616005)(36756003)(2906002)(52116002)(53546011)(6486002)(6512007)(966005)(6506007)(186003)(26005)(33656002)(38350700002)(38100700002)(83380400001)(86362001)(45980500001); DIR:OUT; SFP:1102;
X-MS-Exchange-AntiSpam-MessageData-ChunkCount: 1
X-MS-Exchange-AntiSpam-MessageData-0: 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
X-OriginatorOrg: island-resort.com
X-MS-Exchange-CrossTenant-Network-Message-Id: afb56b3e-a48f-4b49-1001-08dacbea4211
X-MS-Exchange-CrossTenant-AuthSource: PH7PR22MB3092.namprd22.prod.outlook.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 21 Nov 2022 18:00:21.8796 (UTC)
X-MS-Exchange-CrossTenant-FromEntityHeader: Hosted
X-MS-Exchange-CrossTenant-Id: ad4b5b91-a549-4435-8c42-a30bf94d14a8
X-MS-Exchange-CrossTenant-MailboxType: HOSTED
X-MS-Exchange-CrossTenant-UserPrincipalName: NGaRjmmMD8RCLkSYyGUceo22mq9kgOs7E8bqsHR8bZnnc6zCazC46AVuiYf0rSPwzD5LUK8PMeGiJONr2/d1iw==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BL1PR22MB3682
Archived-At: <https://mailarchive.ietf.org/arch/msg/suit/UZzQXYv5Q0MKi7iF1M8gUK_ISSk>
Subject: Re: [Suit] MTI algorithm change: eddsa with chacha/poly
X-BeenThere: suit@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Software Updates for Internet of Things <suit.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/suit>, <mailto:suit-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/suit/>
List-Post: <mailto:suit@ietf.org>
List-Help: <mailto:suit-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/suit>, <mailto:suit-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 21 Nov 2022 18:00:31 -0000

Maybe this is hair-splitting, but it seems there is a difference between a ciphersuite and a profile.

A ciphersuite is some pre-registered universal combo. Some protocols might only allow registration of ciphersuites because they have no ability to carry a vector of algorithms.

A profile can apply to protocols that use ciphersuites or that use vectors or combos.

I think MTI is profiles.

LL




> On Nov 21, 2022, at 3:21 AM, Brendan Moran <brendan.moran.ietf@gmail.com> wrote:
> 
> At ietf115, I asked about changing one of the cipher suites:
> 
> The current draft has:
> sha256-eddsa-hpke-aes-gcm
> 
> Should this be replaced with:
> sha256-eddsa-hpke-chacha20-poly1305
> 
> There were no objections in the room, and one confirmation. Please let
> me know if there are objections to (or support for) this change.
> 
> Best Regards,
> Brendan
> 
> _______________________________________________
> Suit mailing list
> Suit@ietf.org
> https://www.ietf.org/mailman/listinfo/suit