IETF Logo Mail Archive

Re: [Tls-reg-review] [IANA #1135278] Re: Request to register value in TLS bar registry (tls-parameters)

Benjamin Kaduk <kaduk@mit.edu> Sat, 02 February 2019 04:33 UTC

Return-Path: <kaduk@mit.edu>
X-Original-To: tls-reg-review@ietfa.amsl.com
Delivered-To: tls-reg-review@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7F8B2130EB8 for <tls-reg-review@ietfa.amsl.com>; Fri, 1 Feb 2019 20:33:08 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.001
X-Spam-Level:
X-Spam-Status: No, score=-2.001 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=mit.edu
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 6m3r4-TI47xc for <tls-reg-review@ietfa.amsl.com>; Fri, 1 Feb 2019 20:33:06 -0800 (PST)
Received: from NAM02-CY1-obe.outbound.protection.outlook.com (mail-eopbgr760113.outbound.protection.outlook.com [40.107.76.113]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C10A1124D68 for <tls-reg-review@ietf.org>; Fri, 1 Feb 2019 20:33:05 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=mit.edu; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=UqWyp9XkI4Vgt6OglwibaUCjT43vDawWZ45vZgxUXVY=; b=vI9AUnD+R++MvpFk0ZGGxfGG9Cr4vQ7u9/VTnw74/AXjNNiF1ay92rELU0ZkrElBaTIiamX8SbS3K3Ur3j+2mJin8BFbqyMVlcPsNQEv+yc8MkaVvnPMbgNlyuQ4vBlj7IVbxfCGjFxbYNH1r29gLDN8z8fSzdiy6+8IHlkOXAA=
Received: from SN6PR0102CA0019.prod.exchangelabs.com (2603:10b6:805:1::32) by SN6PR01MB3759.prod.exchangelabs.com (2603:10b6:805:17::12) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.1580.17; Sat, 2 Feb 2019 04:33:03 +0000
Received: from CO1NAM03FT060.eop-NAM03.prod.protection.outlook.com (2a01:111:f400:7e48::206) by SN6PR0102CA0019.outlook.office365.com (2603:10b6:805:1::32) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.1580.17 via Frontend Transport; Sat, 2 Feb 2019 04:33:03 +0000
Authentication-Results: spf=pass (sender IP is 18.9.28.11) smtp.mailfrom=mit.edu; cryptocom.ru; dkim=none (message not signed) header.d=none;cryptocom.ru; dmarc=bestguesspass action=none header.from=mit.edu;
Received-SPF: Pass (protection.outlook.com: domain of mit.edu designates 18.9.28.11 as permitted sender) receiver=protection.outlook.com; client-ip=18.9.28.11; helo=outgoing.mit.edu;
Received: from outgoing.mit.edu (18.9.28.11) by CO1NAM03FT060.mail.protection.outlook.com (10.152.81.16) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.1580.10 via Frontend Transport; Sat, 2 Feb 2019 04:33:01 +0000
Received: from kduck.mit.edu (24-107-191-124.dhcp.stls.mo.charter.com [24.107.191.124]) (authenticated bits=56) (User authenticated as kaduk@ATHENA.MIT.EDU) by outgoing.mit.edu (8.14.7/8.12.4) with ESMTP id x124WuL2031256 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Fri, 1 Feb 2019 23:32:58 -0500
Date: Fri, 01 Feb 2019 22:32:56 -0600
From: Benjamin Kaduk <kaduk@mit.edu>
To: Смышляев Станислав Витальевич <svs@cryptopro.ru>
CC: Yoav Nir <ynir.ietf@gmail.com>, "tls-reg-review@ietf.org" <tls-reg-review@ietf.org>, "geni-cmc@mail.ru" <geni-cmc@mail.ru>, Коллегин Максим Дмитриевич <kollegin@cryptopro.ru>, Алексеев Евгений Константинович <alekseev@cryptopro.ru>, "iana-prot-param@iana.org" <iana-prot-param@iana.org>, Смышляева Екатерина Сергеевна <ess@cryptopro.ru>, Белявский Дмитрий <beldmit@cryptocom.ru>
Message-ID: <20190202043256.GA93251@kduck.mit.edu>
References: <RT-Ticket-1135278@icann.org> <1547039768.320095625@f553.i.mail.ru> <74E19738-0B8D-47EA-A684-A5A70E9BE487@gmail.com> <061D39FF-0538-498E-8485-33B92D6893AF@cryptopro.ru> <0408EA40-18F5-46A0-A5A8-BA667BFD4490@cryptopro.ru> <d665d166418d468c8c24bc45719d7e07@cryptopro.ru> <DA944331-8E53-445A-BB3B-58D1317519DB@gmail.com> <rt-4.4.3-8683-1549049524-638.1135278-37-0@icann.org> <5821D94F-9FFB-42B4-A057-6B61CE90E4A8@gmail.com> <6740F69A-9918-478F-A509-8A61D323EFCA@cryptopro.ru>
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Disposition: inline
Content-Transfer-Encoding: 8bit
In-Reply-To: <6740F69A-9918-478F-A509-8A61D323EFCA@cryptopro.ru>
User-Agent: Mutt/1.10.1 (2018-07-13)
X-EOPAttributedMessage: 0
X-Forefront-Antispam-Report: CIP:18.9.28.11; IPV:CAL; SCL:-1; CTRY:US; EFV:NLI; SFV:NSPM; SFS:(10019020)(39860400002)(346002)(136003)(376002)(396003)(2980300002)(199004)(189003)(86362001)(1076003)(50466002)(36906005)(106466001)(305945005)(7696005)(2906002)(76176011)(6246003)(2486003)(23676004)(55016002)(6916009)(246002)(2870700001)(356004)(88552002)(39060400002)(413944005)(26826003)(478600001)(4326008)(486006)(47776003)(476003)(126002)(8676002)(956004)(11346002)(104016004)(8936002)(336012)(75432002)(446003)(426003)(229853002)(58126008)(53416004)(93886005)(106002)(316002)(54906003)(26005)(186003)(33656002)(786003)(18370500001); DIR:OUT; SFP:1102; SCL:1; SRVR:SN6PR01MB3759; H:outgoing.mit.edu; FPR:; SPF:Pass; LANG:en; PTR:outgoing-auth-1.mit.edu; A:1; MX:1;
X-Microsoft-Exchange-Diagnostics: 1; CO1NAM03FT060; 1:6qZ5ipDRrqt7J/Mq3qucquBjTigCJTgFjLqTfGuazIEKwJVoYolsNruee5n4nnCGEFQz6B7+3yBeKmtCCb3NZJsxTJeB83mFB8XFNz84ie6ZsFipOs7yI3YYuG2Q+b5z2AGl9WvB3gn1e87JCk3MHw==
X-MS-PublicTrafficType: Email
X-MS-Office365-Filtering-Correlation-Id: 7de5cbac-73c5-4f8d-ac73-08d688c78501
X-Microsoft-Antispam: BCL:0; PCL:0; RULEID:(2390118)(7020095)(4652040)(8989299)(4534185)(4627221)(201703031133081)(201702281549075)(8990200)(5600110)(711020)(4605077)(4608076)(4709027)(2017052603328)(7153060); SRVR:SN6PR01MB3759;
X-Microsoft-Exchange-Diagnostics: 1; SN6PR01MB3759; 3:qn5ZEG38YYKtNZXdfMYJ0S5xNV8OmI4FJ9o0wqh4L6WptbMKLHwrHojGpxEPRUf4vTDas7Bbew9WxYPUveFb56qVo3ejMdQN9yHjsn5xt5j+KqvFuVhhkd99nPF8uV5LX9xBAmIEeX6dQ8vYU86U+hDOIraRTklO0AGMggSJOydx9C6r7GWhEsaP2YZ44wq9srgiNsCshE9/Sbj/kviFGiHD9k6MB9liJKv7htFiNsqUa9+3E9DlyU8jXAZZPZlg5/3kMhv21E5aXh3gUvljMfgFslhZcU0BAmezDOjWi3tnxjzpCADWcj/lizN0OTpVAR0UtphsSfEqYXRFu4GYJ9K/YHv+7kGTGMdF7XGeXLPR2l2bvtDtSUfVQsja/ZNQ; 25:Yjmqrk58jsgVgqbKM36cCyKuEUKWbEYKSjZxNUuFq7b02+OKH7qkZyRs961prNJRGNGgL5+BIWlsc8YDkGraJhQQPSELdqlwlfUoULw4JzLoxLIhFTqLNp8rgFGAAlFA6cilPu96uk7r1rVsH8pRMcBEJQuDH/DEMSczN3O2NPJQexZbm7axj3vBMrzDZk8wd7rHRtM+lnsQJ/He2y77a9ESyvPUipLCGSJqli4wcZFVH1QJMilD0lNay83pNiEkqCl4WtOGlGtT3KaWcfaX2OzfnxQNRPwJhgCc3WmU9jzbF1Kq41nVNwwd4JQ4hdzkrSxW5VTuFbovD+KV9Q/U/w==
X-MS-TrafficTypeDiagnostic: SN6PR01MB3759:
X-Microsoft-Exchange-Diagnostics: 1; SN6PR01MB3759; 31:vqDNIf7IUQuHpXTA3hhzehlNOwlDmDwGYrnG0K8e1LJOpcPYvxp1i603+vJsW6FHfhNq2Ca5IBrXDIt+ub8ycE18WffEYxFWVYLqWuNySezo0TskroejERBxQf/MM9yGg4MPj1NTX1aidq4Omfz4SV6IEcaqYr0okTJTrluxp6EgOgJ5H9JiURz8LKMy9nmQLsJ7wjP0ZF8LnDV1txlnvs0CbovBMzHI1tERxJIQNYc=; 20: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
X-Microsoft-Antispam-PRVS: <SN6PR01MB37592D9FAA36C4E374A073A3A0930@SN6PR01MB3759.prod.exchangelabs.com>
X-Microsoft-Exchange-Diagnostics: 1; SN6PR01MB3759; 4:E3EdFOEXZUERrt+fuU6YldbxV4Tfcen3WvkxRRD1Y00HgEcKBAbsG2d1yHPbWVx3T99s9earjkTzydr0KgTppreISIB92o7TTnUL6TjtTvWpmTAga2lEjJ7igZN972APiRQB1S5yJdGddG1oARJM3J94VLIS2Cj06ASs6TvtnZ76f9SEoQb9v4YIZdf6PAoA6nCBm2qPWTMqm1P30mlJUL4iq3utSf5vBbI0idAy30cfkSLC3Oe/m7jMgTmfASiTb/f59MozXBhphL93q0gg6HR1nnDeDiR/dZzyNbZ55hE=
X-Forefront-PRVS: 09368DB063
X-Microsoft-Exchange-Diagnostics: 1;SN6PR01MB3759;23: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
X-MS-Exchange-SenderADCheck: 1
X-Microsoft-Antispam-Message-Info: ++r8BUxqI74rNqNqClqPFMzGFHI0FnOYfsmmvRhmUeGpalitqZiienwj+EVriz3tLAcGmU9uvfStdULMv9UcRQiqWPIyI/9eXg/5nQQQ08WiKs3txkjggaWo61dQmKo2vs1gC9w92eeXYKASw3+ZjApXxM9R4khZ9ZpVZBRmWSqL2sig5g47y1Jdh120bP9i0l2D62kKv6XA8AyxstSHguSqqwvGE9hetodPw2l7i+y8/iE5eBh87rHOcsRDH7/QKRNj9kUJn4UzTzRUlk63/ZgRtXqloE8w+YJ01DMeHVRHkbW1FxGYQa29WV1lZ7ukLqSFelQWr3faiwb+Q9V4zyQs6jJtoGprRu4jK1WVJ7yc/APCeWBd+tm6V4HIIWt5OdBGU9wLuSNr2S3uhCPPvEZreSiFxiRCEEoSYgvw2Hs=
X-Microsoft-Exchange-Diagnostics: 1; SN6PR01MB3759; 6:R67u+uHrdycOko959+fDwUgza7WTWEC5ic16p2ewH7EwKtVJkl/ro7qdSbK3V0RXvQt8Mbc72lFg7R3IucwGDfNp4aqcx8vdH1bSWfJ2HurnquNue8ti4YzQE0dV4ukRJ773sYq2bYs9aM3d+Fx7iMsoLT2DSQgz/5xm/sE2QcCtFcTo//1bJrGhY2i4mYkSCK/MWvbDWH/85RFSa5uPZddx9OxclnS5CHMoEkKZA8mG3vgVnsCDUDli7uzksTsj44pKdS10i14Wsahwt24GWAbfOOIp6Kj4b21SLmsSeAZP7JXz0/3ftEQ5dUTkwJxyboxuV74Lp82zXN1+hA8cV5qGU4tF/oyL7hg1ScQLNBWLasR+A2N5ipiEx1atretI62v2MVBIYjqWAUYsKaFqWB/mQIuNqPIRsH3CA+Sl/3GMZrDgNg3HzNp05lQFjpFPFmaNky8WwnwnM3eAiwEN7g==; 5:t7GXXWoDqgdHkzcpAPUP8XqtfT7j3WpvOxQWtMWxuh2KfJQoC1KRjD17mcK6WE0nS75R+quPSSKTq0YkPy6mjP9LW74Ku7nIsRcux7+aQ8cMvNfkuh9YpptXe/32PAZMLr/Pa48JdAlzVkIcxRR+66kibdzsS4h5DwPENdIvY/TnStOQ5y3qnxjF6/msPFbZyYwoXaseexUdUnM/clCAQA==; 7:BbIKP/jhA3DHpZA7rxsXVgMzb1XIIZaeFFzJS00TG3FRXWtvRwXK9NA9wP4n6r2yEbJQgdVgyjWMBOWhAciGHn6j04RUv1LF6U2Z6NBC1WONKG4+b5PbefryfMjI442ndqLEfXSNHHPa2F0/Px3Vgg==
X-OriginatorOrg: mit.edu
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 02 Feb 2019 04:33:01.4230 (UTC)
X-MS-Exchange-CrossTenant-Network-Message-Id: 7de5cbac-73c5-4f8d-ac73-08d688c78501
X-MS-Exchange-CrossTenant-Id: 64afd9ba-0ecf-4acf-bc36-935f6235ba8b
X-MS-Exchange-CrossTenant-OriginalAttributedTenantConnectingIp: TenantId=64afd9ba-0ecf-4acf-bc36-935f6235ba8b; Ip=[18.9.28.11]; Helo=[outgoing.mit.edu]
X-MS-Exchange-CrossTenant-FromEntityHeader: HybridOnPrem
X-MS-Exchange-Transport-CrossTenantHeadersStamped: SN6PR01MB3759
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls-reg-review/1BVa_6TrdAl70yjqU_AYkHVeOKk>
Subject: Re: [Tls-reg-review] [IANA #1135278] Re: Request to register value in TLS bar registry (tls-parameters)
X-BeenThere: tls-reg-review@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: TLS REVIEW <tls-reg-review.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tls-reg-review>, <mailto:tls-reg-review-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls-reg-review/>
List-Post: <mailto:tls-reg-review@ietf.org>
List-Help: <mailto:tls-reg-review-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls-reg-review>, <mailto:tls-reg-review-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 02 Feb 2019 04:33:08 -0000

On Fri, Feb 01, 2019 at 09:30:06PM +0000, Смышляев Станислав Витальевич wrote:
>    Dear Yoav, Dear Amanda,
>    Thank you very much for your prompt reply!
> 
>        * The others (TBD7, TBD8, TBD9) are finite field, so they should start
>          at 261.
> 
>    Let me correct you a little here, if you don't mind: these three are also
>    elliptic curve ones (they are defined in RFC 4357 along with finite field
>    ones, but these three are elliptic curves, unlike GOST R 34.10-94
>    parameters, which were finite field ones). So all TBD6-TBD12 should start
>    at 34. 
> 
>      None of these are IETF-endorsed algorithms, so the Recommended column is
>      'N'.  The numbers are fine, but I believe that no specific numbers were
>      requested, so any numbers should be OK.
> 
>      {0xFF, 0x85} for TLS_GOSTR341112_256_WITH_28147_CNT_IMIT 
> 
>    is perfect, but another one ({0xFF, 0x83} collides with a privately used
>    (by someone) old SSL_RSA_WITH_3DES_EDE_CBC_MD5. 

Do we know anything more about this private use?  It may be worth writing a
brief document noting it and marking it as such in the registry.

-Ben

>    So, if possible, it would be great if you could assign the following
>    numbers, for example:
>    {0xFF, 0x89} to TLS_GOSTR341112_256_WITH_KUZNYECHIK_CTR_OMAC, 
>    {0xFF, 0x88} to TLS_GOSTR341112_256_WITH_MAGMA_CTR_OMAC,
>    (and 
>    {0xFF, 0x85} for TLS_GOSTR341112_256_WITH_28147_CNT_IMIT, as you have
>    proposed)
>    Of course, "N" in "Recommended" column for all of them. 
>    Thank you very much!
>    Best regards,
>    Stanislav

v2.23.0 | Report a Bug | By Email