Re: [tcpinc] Resumption safety (was "Eric Rescorla's Discuss on draft-ietf-tcpinc-tcpcrypt-09: (with DISCUSS and COMMENT)")

Kyle Rose <krose@krose.org> Tue, 12 December 2017 17:33 UTC

Return-Path: <krose@krose.org>
X-Original-To: tcpinc@ietfa.amsl.com
Delivered-To: tcpinc@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 19CA21294D3 for <tcpinc@ietfa.amsl.com>; Tue, 12 Dec 2017 09:33:07 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.001
X-Spam-Level:
X-Spam-Status: No, score=-2.001 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=krose.org
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Zu-GUcvJiDwj for <tcpinc@ietfa.amsl.com>; Tue, 12 Dec 2017 09:33:05 -0800 (PST)
Received: from mail-qt0-x22f.google.com (mail-qt0-x22f.google.com [IPv6:2607:f8b0:400d:c0d::22f]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 59F391294D2 for <tcpinc@ietf.org>; Tue, 12 Dec 2017 09:33:05 -0800 (PST)
Received: by mail-qt0-x22f.google.com with SMTP id m59so49185608qte.11 for <tcpinc@ietf.org>; Tue, 12 Dec 2017 09:33:05 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=krose.org; s=google; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=cyt/E7x4PlOQ4Uxvpafj+whOTQV3Z7Bw1Mi5xBFqBKI=; b=EEosmFKEmM4DceM22SijpqTQl3Wio0K8w4Q8CZ8hLYRH/PTmcpnnsSyDjnfW9E/rzC nq2itbH602Art0agh2SeS+w/b8zUsi55ZzZhrZjB1Ausi+wjCpdchnr2jSn0EHvx0wtx /tZj9qIpzd9W/s6hdRa3d7X9NJ4zOLsG5z4kI=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc; bh=cyt/E7x4PlOQ4Uxvpafj+whOTQV3Z7Bw1Mi5xBFqBKI=; b=av5jQiaO4wQfG4gSB/oPGLOGi8HIuZyCLzML+M3i76ZQoHqPSHk3C2HJ0PvxVYvocz 2oMjIJkdVLiT/GDR4a1+ibcgQAs8UbSZ/yNoUPCBKaw8Um9+190yXMVnnSTFZfk1bq8/ VpzIF7FaoQvS9mbLED1QAJthmRwKqPwZj7imn+sx8uj2Q8Y60jAysnwDXIQhW8wqt4bn XUKdfvHPn02s5smCqTaRDRYJJFVUwQ7ut77t4dtwJ2Y72XCS9S3TSRYRbk6wH/UmDR6Z Tm20R6Wo98nVNXP2qy42y6xw7Xd8+1stgg/sDQHLwg7NClnU+Zz9dI5/X0MSjVr6Y47p xz9Q==
X-Gm-Message-State: AKGB3mJ0y95ao/cz87JhM58HWXn+HojiPVt6YE9A8gOeKuxjk5Wh0yHW ZkiQFDp4qZ8h2v/GuODnOvTiqKw/BdG5aNa251BDyQ==
X-Google-Smtp-Source: ACJfBouG/+lKf4Q4/0UvDgjqtRMzJWRIs/RkVIdJtsmlJfYpyZFlr8It8v6zbzQmlqrXkC0SoKNKbkJr6U24zUMEkkc=
X-Received: by 10.233.244.72 with SMTP id z8mr6602125qkl.107.1513099984353; Tue, 12 Dec 2017 09:33:04 -0800 (PST)
MIME-Version: 1.0
Received: by 10.12.195.1 with HTTP; Tue, 12 Dec 2017 09:33:03 -0800 (PST)
X-Originating-IP: [2001:4878:a000:3000:e1a8:45c8:91a2:8224]
In-Reply-To: <073801d37315$90c89bd0$b259d370$@gmail.com>
References: <CAJU8_nUUHbmFcPA2obo6q3dLqL1MGE2iKen-0EQ82re=+gtTfw@mail.gmail.com> <CE03DB3D7B45C245BCA0D243277949362FD96B0D@MX307CL04.corp.emc.com> <23072.32691.892725.97892@fireball.acr.fi> <01bc01d36a71$45957db0$d0c07910$@gmail.com> <CABcZeBPN_XQc8np3CWi_-AtDUafW4ZPc8EnRje8yj57Rv-vxyw@mail.gmail.com> <B0FB25D40E23475C9259A4C204B327D2@chichi> <CE03DB3D7B45C245BCA0D243277949362FDD6E73@MX307CL04.corp.emc.com> <CAJU8_nW9fkn9E=NbKFZ3zy5uSY36WFqRcQpBYdyYuLwzAbqFHA@mail.gmail.com> <CAJU8_nX7NOSG8hkUYqG_GeqSyPzmhwsyA30Z0riqRmwK8SozpQ@mail.gmail.com> <073801d37315$90c89bd0$b259d370$@gmail.com>
From: Kyle Rose <krose@krose.org>
Date: Tue, 12 Dec 2017 12:33:03 -0500
Message-ID: <CAJU8_nV+hc_ZHfwT99c7SrxCBb83UR9S8Odm+DSmtDnm6+4h3Q@mail.gmail.com>
To: Valery Smyslov <svanru@gmail.com>
Cc: "Black, David" <David.Black@dell.com>, Eric Rescorla <ekr@rtfm.com>, tcpinc <tcpinc@ietf.org>, "Mirja Kuehlewind (IETF)" <ietf@kuehlewind.net>
Content-Type: text/plain; charset="UTF-8"
Archived-At: <https://mailarchive.ietf.org/arch/msg/tcpinc/II8x4hoByi3I66Xzwh1CI15QunE>
Subject: Re: [tcpinc] Resumption safety (was "Eric Rescorla's Discuss on draft-ietf-tcpinc-tcpcrypt-09: (with DISCUSS and COMMENT)")
X-BeenThere: tcpinc@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "Working group mailing list for TCP Increased Security \(tcpinc\)" <tcpinc.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tcpinc>, <mailto:tcpinc-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tcpinc/>
List-Post: <mailto:tcpinc@ietf.org>
List-Help: <mailto:tcpinc-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tcpinc>, <mailto:tcpinc-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 12 Dec 2017 17:33:07 -0000

On Tue, Dec 12, 2017 at 1:50 AM, Valery Smyslov <svanru@gmail.com>; wrote:
> That's why I agree that we shouldn't take any steps now (in a hurry and for
> tcpcrypt only).

Just to clarify, (speaking as member, not chair) I am in favor of
adding nonces on each connection, but (as chair) not in favor of
changing MTI TEPs to SIV.

> The problem should be recognized and addressed
> in a more generic way.

Agreed.

Kyle