[tcpinc] tcpcrypt MTI key exchange (speak now or forever hold your peace...)

David Mazieres <dm-list-tcpcrypt@scs.stanford.edu> Mon, 23 October 2017 20:25 UTC

Return-Path: <dm-list-tcpcrypt@scs.stanford.edu>
X-Original-To: tcpinc@ietfa.amsl.com
Delivered-To: tcpinc@ietfa.amsl.com
Received: from localhost (localhost []) by ietfa.amsl.com (Postfix) with ESMTP id 93CCF13A1F4 for <tcpinc@ietfa.amsl.com>; Mon, 23 Oct 2017 13:25:42 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: 0
X-Spam-Status: No, score=0 tagged_above=-999 required=5 tests=[BAYES_40=-0.001, HK_RANDOM_ENVFROM=0.001, HK_RANDOM_FROM=0.001, SPF_PASS=-0.001] autolearn=no autolearn_force=no
Received: from mail.ietf.org ([]) by localhost (ietfa.amsl.com []) (amavisd-new, port 10024) with ESMTP id isM2vbNJF3cy for <tcpinc@ietfa.amsl.com>; Mon, 23 Oct 2017 13:25:41 -0700 (PDT)
Received: from market.scs.stanford.edu (www.scs.stanford.edu [IPv6:2001:470:806d:1::9]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E2B83138467 for <tcpinc@ietf.org>; Mon, 23 Oct 2017 13:25:41 -0700 (PDT)
Received: from market.scs.stanford.edu (localhost []) by market.scs.stanford.edu (8.15.2/8.15.2) with ESMTP id v9NKPdQs022097; Mon, 23 Oct 2017 13:25:39 -0700 (PDT)
Received: (from dm@localhost) by market.scs.stanford.edu (8.15.2/8.15.2/Submit) id v9NKPbfq064502; Mon, 23 Oct 2017 13:25:37 -0700 (PDT)
From: David Mazieres <dm-list-tcpcrypt@scs.stanford.edu>
To: iang <iang@iang.org>, Gregorio Guidi <greg_g@posteo.net>, tcpinc@ietf.org
In-Reply-To: <87h8uylfgk.fsf@ta.scs.stanford.edu>
References: <D38E22E9-FBB6-40D1-BF85-D5A77F5C2365@kuehlewind.net> <20170830223758.GA73969@scs.stanford.edu> <3a8ac0e0-cd41-57c8-85a4-79c5f179385f@kuehlewind.net> <20170929203434.GA73214@scs.stanford.edu> <D78092B0-4C01-47D6-9B5D-9DB1DA5EFA83@kuehlewind.net> <877ewgrtp8.fsf@ta.scs.stanford.edu> <20171004233140.GB84701@scs.stanford.edu> <BDB8460A-E193-4C9C-BCBA-99B805F93D0A@kuehlewind.net> <e2ae6028-6ed2-c547-2a1f-f3c170b0fb89@posteo.net> <3879588f-d5ef-43c9-9d2c-7fe9c2657709@iang.org> <87h8uylfgk.fsf@ta.scs.stanford.edu>
Reply-To: David Mazieres expires 2018-01-21 PST <mazieres-m3w8362yb4cc5hherzqjdkknf6@temporary-address.scs.stanford.edu>
Date: Mon, 23 Oct 2017 13:25:37 -0700
Message-ID: <87h8upk3we.fsf@ta.scs.stanford.edu>
MIME-Version: 1.0
Content-Type: text/plain
Archived-At: <https://mailarchive.ietf.org/arch/msg/tcpinc/sKV43GjxLT8QovwzLRa6FCBB2UI>
Subject: [tcpinc] tcpcrypt MTI key exchange (speak now or forever hold your peace...)
X-BeenThere: tcpinc@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "Working group mailing list for TCP Increased Security \(tcpinc\)" <tcpinc.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tcpinc>, <mailto:tcpinc-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tcpinc/>
List-Post: <mailto:tcpinc@ietf.org>
List-Help: <mailto:tcpinc-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tcpinc>, <mailto:tcpinc-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 23 Oct 2017 20:25:42 -0000

We are considering the following proposal for MTI key exchange protocols
in tcpcrypt:

  1. Implementations MUST support Curve25519.

  2. Implementations SHOULD support Curve448 to the extent that suitable
     implementations are available.

  3. Implementations MAY support P256 and P521 (particularly since
     hardware implementations are widely available for the former).

(Obviously whatever algorithms are supported can always be disabled by
configuration--this is just about what the software MUST support, not
what everyone must use.)

The security ADs have not 100% signed off on this approach yet, but seem
receptive to it.  However, given the timeline, we would like to
parallelize things and find out *now* if there are any objections to the
proposal.  Based on the working group discussion, I think everyone will
be happy, so please speak up now if you object.