Re: [Tls-reg-review] Request to register value in TLS bar registry
Смышляев Станислав Витальевич <svs@cryptopro.ru> Wed, 09 January 2019 20:26 UTC
Return-Path: <svs@cryptopro.ru>
X-Original-To: tls-reg-review@ietfa.amsl.com
Delivered-To: tls-reg-review@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id F081B130FD3 for <tls-reg-review@ietfa.amsl.com>; Wed, 9 Jan 2019 12:26:10 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.92
X-Spam-Level:
X-Spam-Status: No, score=-0.92 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, FROM_EXCESS_BASE64=0.979, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001] autolearn=no autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 77_bf-6IJ0vQ for <tls-reg-review@ietfa.amsl.com>; Wed, 9 Jan 2019 12:26:08 -0800 (PST)
Received: from mx.cryptopro.ru (mx.cryptopro.ru [193.37.157.34]) (using TLSv1 with cipher ECDHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 58D85130FD0 for <tls-reg-review@ietf.org>; Wed, 9 Jan 2019 12:26:06 -0800 (PST)
Received: from leo.cp.ru (192.168.68.222) by pegas.cp.ru (192.168.68.231) with Microsoft SMTP Server (TLS) id 14.3.399.0; Wed, 9 Jan 2019 23:26:03 +0300
Received: from orion.cp.ru (192.168.69.205) by leo.cp.ru (192.168.68.222) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256) id 15.1.1415.2; Wed, 9 Jan 2019 23:26:02 +0300
Received: from orion.cp.ru ([::1]) by orion.cp.ru ([::1]) with mapi id 15.00.1210.000; Wed, 9 Jan 2019 23:26:02 +0300
From: Смышляев Станислав Витальевич <svs@cryptopro.ru>
To: Yoav Nir <ynir.ietf@gmail.com>
CC: Евгений Алексеев <geni-cmc@mail.ru>, "tls-reg-review@ietf.org" <tls-reg-review@ietf.org>, Смышляева Екатерина Сергеевна <ess@cryptopro.ru>, Коллегин Максим Дмитриевич <kollegin@cryptopro.ru>, Алексеев Евгений Константинович <alekseev@cryptopro.ru>, Белявский Дмитрий <beldmit@cryptocom.ru>
Thread-Topic: [Tls-reg-review] Request to register value in TLS bar registry
Thread-Index: AQHUqB1+hGzG2Vny/kOqHxsDsj7j46WnEs8AgABGlPCAAAl2rg==
Date: Wed, 09 Jan 2019 20:26:02 +0000
Message-ID: <0408EA40-18F5-46A0-A5A8-BA667BFD4490@cryptopro.ru>
References: <1547039768.320095625@f553.i.mail.ru>, <74E19738-0B8D-47EA-A684-A5A70E9BE487@gmail.com>, <061D39FF-0538-498E-8485-33B92D6893AF@cryptopro.ru>
In-Reply-To: <061D39FF-0538-498E-8485-33B92D6893AF@cryptopro.ru>
Accept-Language: ru-RU, en-US
Content-Language: ru-RU
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-ms-exchange-transport-fromentityheader: Hosted
Content-Type: multipart/alternative; boundary="_000_0408EA4018F546A0A5A8BA667BFD4490cryptoproru_"
MIME-Version: 1.0
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls-reg-review/D8s_7mva8OYAqbUN26Kpe2fTpuQ>
Subject: Re: [Tls-reg-review] Request to register value in TLS bar registry
X-BeenThere: tls-reg-review@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: TLS REVIEW <tls-reg-review.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tls-reg-review>, <mailto:tls-reg-review-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls-reg-review/>
List-Post: <mailto:tls-reg-review@ietf.org>
List-Help: <mailto:tls-reg-review-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls-reg-review>, <mailto:tls-reg-review-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 09 Jan 2019 20:26:11 -0000
CC'ing Dmitry Belyavsky (in case he would like to add some other clarifications), who we discussed the IANA request for the GOST cipher suites with (in Bangkok). Best regards, Stanislav Smyshlyaev 9 янв. 2019 г., в 22:52, Смышляев Станислав Витальевич <svs@cryptopro.ru<mailto:svs@cryptopro.ru>> написал(а): Dear Yoav, Thank you very much for your comments! If you don't mind, I'll reply: 1) Yes, Kuznyechik is the new Russian cipher. It is defined in RFC 7801. 2) There's still work in progress on an AEAD mode to be standardized in Russia - and we can't have a TLS 1.3 cipher suite without an AEAD mode. Currently the MGM mode (see https://tools.ietf.org/html/draft-smyshlyaev-mgm-09) is being carefully studied and tends to be the one. Valery Smyslov waits for it also - to be able to work on IKEv2 and ESP with GOSTs. That's why the current request (and the draft it refers to) is only about TLS 1.2 so far. 3) Unfortunately, there is a misleading statement in the current version of the draft (thank you for pointing to it, Yoav!): actually, {0x00, 0x81} is used for the older cipher suite from https://tools.ietf.org/html/draft-chudov-cryptopro-cptls-04#section-5. The existing implementations of TLS_GOSTR341112_256_WITH_28147_CNT_IMIT use the number {0xFF, 0x85} Best regards, Stanislav Smyshlyaev 9 янв. 2019 г., в 21:39, Yoav Nir <ynir.ietf@gmail.com<mailto:ynir.ietf@gmail.com>> написал(а): Hi, Evgeny. We'll give the answer in a few days. First, I'd like to ask a few clarifying questions: * If I understand correctly, the Kuznyechik ciphers in this document is the new GOST algorithms, right? * I have noticed that this is only for TLS 1.2. Why not TLS 1.3? * Section 10 mentions that there are existing implementations that use the value {0x00,0x81} for TLS_GOSTR341112_256_WITH_28147_CNT_IMIT. I see in the IANA registry<https://www.iana.org/assignments/tls-parameters/tls-parameters.xml#tls-parameters-4> that this value is free. Do you want to re-use it? Thanks Yoav On 9 Jan 2019, at 15:16, Евгений Алексеев <geni-cmc=40mail.ru@dmarc.ietf.org<mailto:geni-cmc=40mail.ru@dmarc.ietf.org>> wrote: Hello! We would like to ask IANA to assign numbers in accordance with the IANA Considerations section of the "GOST Cipher Suites for Transport Layer Security (TLS) Protocol Version 1.2" document (https://tools.ietf.org/html/draft-smyshlyaev-tls12-gost-suites-04#section-9). -- Best regards, Evgeny Alekseev _______________________________________________ tls-reg-review mailing list tls-reg-review@ietf.org<mailto:tls-reg-review@ietf.org> https://www.ietf.org/mailman/listinfo/tls-reg-review
- [Tls-reg-review] Request to register value in TLS… Евгений Алексеев
- Re: [Tls-reg-review] Request to register value in… Yoav Nir
- Re: [Tls-reg-review] Request to register value in… Смышляев Станислав Витальевич
- Re: [Tls-reg-review] Request to register value in… Смышляев Станислав Витальевич
- Re: [Tls-reg-review] Request to register value in… Смышляев Станислав Витальевич
- Re: [Tls-reg-review] Request to register value in… Yoav Nir
- Re: [Tls-reg-review] [IANA #1135278] Re: Request … Yoav Nir
- Re: [Tls-reg-review] [IANA #1135278] Re: Request … Смышляев Станислав Витальевич
- Re: [Tls-reg-review] [IANA #1135278] Re: Request … Benjamin Kaduk
- Re: [Tls-reg-review] [IANA #1135278] Re: Request … Смышляев Станислав Витальевич
- Re: [Tls-reg-review] [IANA #1135278] Re: Request … Смышляев Станислав Витальевич
- Re: [Tls-reg-review] [IANA #1135278] Re: Request … Benjamin Kaduk
- Re: [Tls-reg-review] [IANA #1135278] Re: Request … Смышляев Станислав Витальевич
- [Tls-reg-review] [IANA #1206536] Re: Re: Request … Michelle Cotton via RT
- Re: [Tls-reg-review] [IANA #1206536] Re: Re: Requ… Смышляев Станислав Вита льевич
- Re: [Tls-reg-review] [IANA #1135278] Re: Request … Benjamin Kaduk
- Re: [Tls-reg-review] [IANA #1206536] Re: Re: Requ… Benjamin Kaduk
- Re: [Tls-reg-review] [IANA #1135278] Re: Request … Смышляев Станислав Вита льевич