Re: [TLS] Another INRIA bug in TLS

Santiago Zanella-Beguelin <santiago@microsoft.com> Sat, 23 May 2015 13:13 UTC

Return-Path: <santiago@microsoft.com>
X-Original-To: tls@ietfa.amsl.com
Delivered-To: tls@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 0E65F1A7014 for <tls@ietfa.amsl.com>; Sat, 23 May 2015 06:13:05 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.902
X-Spam-Level:
X-Spam-Status: No, score=-1.902 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id N89ARJ7I0Vnx for <tls@ietfa.amsl.com>; Sat, 23 May 2015 06:13:01 -0700 (PDT)
Received: from na01-by2-obe.outbound.protection.outlook.com (mail-by2on0105.outbound.protection.outlook.com [207.46.100.105]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id DB7C91ACDFB for <tls@ietf.org>; Sat, 23 May 2015 06:13:00 -0700 (PDT)
Received: from DM2PR03CA0041.namprd03.prod.outlook.com (10.141.96.40) by BL2PR03MB356.namprd03.prod.outlook.com (10.141.89.27) with Microsoft SMTP Server (TLS) id 15.1.172.17; Sat, 23 May 2015 13:12:58 +0000
Received: from BN1AFFO11FD052.protection.gbl (2a01:111:f400:7c10::189) by DM2PR03CA0041.outlook.office365.com (2a01:111:e400:2428::40) with Microsoft SMTP Server (TLS) id 15.1.172.22 via Frontend Transport; Sat, 23 May 2015 13:12:58 +0000
Authentication-Results: spf=pass (sender IP is 206.191.250.196) smtp.mailfrom=microsoft.com; ietf.org; dkim=none (message not signed) header.d=none;
Received-SPF: Pass (protection.outlook.com: domain of microsoft.com designates 206.191.250.196 as permitted sender) receiver=protection.outlook.com; client-ip=206.191.250.196; helo=064-smtp-out.microsoft.com;
Received: from 064-smtp-out.microsoft.com (206.191.250.196) by BN1AFFO11FD052.mail.protection.outlook.com (10.58.53.67) with Microsoft SMTP Server (TLS) id 15.1.172.14 via Frontend Transport; Sat, 23 May 2015 13:12:56 +0000
Received: from DB4PR30MB032.064d.mgd.msft.net (141.251.50.216) by DB4PR30MB030.064d.mgd.msft.net (141.251.50.210) with Microsoft SMTP Server (TLS) id 15.1.112.16; Sat, 23 May 2015 13:12:54 +0000
Received: from DB4PR30MB032.064d.mgd.msft.net ([141.251.50.216]) by DB4PR30MB032.064d.mgd.msft.net ([141.251.50.216]) with mapi id 15.01.0112.000; Sat, 23 May 2015 13:12:53 +0000
From: Santiago Zanella-Beguelin <santiago@microsoft.com>
To: Stephen Farrell <stephen.farrell@cs.tcd.ie>, Karthikeyan Bhargavan <karthikeyan.bhargavan@inria.fr>, Martin Thomson <martin.thomson@gmail.com>
Thread-Topic: [TLS] Another INRIA bug in TLS
Thread-Index: AQHQlNG8iqjabwu2AE6CYL35dnd4IZ2IfYcAgAAA/oCAAJlgAIAAZtCAgAALe4M=
Date: Sat, 23 May 2015 13:12:53 +0000
Message-ID: <1432386773128.94453@microsoft.com>
References: <9A043F3CF02CD34C8E74AC1594475C73AB029727@uxcn10-tdc05.UoA.auckland.ac.nz> <1432317148442.5357@microsoft.com> <87pp5snxha.fsf@alice.fifthhorseman.net> <BLUPR03MB13963BE37177243E5B89262B8CC00@BLUPR03MB1396.namprd03.prod.outlook.com> <CABkgnnXUfmuhfudKT9K+TpPOzq0Bg1aoGDDAbLW+erktWzRUEA@mail.gmail.com> <578DE2AF-A139-4CDC-B71C-C67C28267FCB@inria.fr>,<556072C3.9010808@cs.tcd.ie>
In-Reply-To: <556072C3.9010808@cs.tcd.ie>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [109.216.4.228]
Content-Type: text/plain; charset="Windows-1252"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-EOPAttributedMessage: 0
X-Microsoft-Exchange-Diagnostics: 1; BN1AFFO11FD052; 1:7m6GCCDXfRlpotEr9vVgX0q9pSvUZG+sIY7XRGFzoaKf84iXJ5+QEZqxhlrZg7KTIhKIO2z0qoOIv2/3KzvBJwIlqeBNtEtC9Q48plb5Bl96YXSajPON6qLYAc6iQZbdvsmOt2zR+puEeNXKybsY8SWa1AOzck/9NfoZeXXWR3lJSINoVw3S6o4/KNfEB4fYtJes0XLIBW9/gZvcNZxDnYRPecldXWsLss7kfXm3CA4p6Nm4kB1noL/RuDJkq7ALGp685SkuyuWeCg/904IBQCA60tx+Wm2H29QyLkMUx6kG6QSVlLn8hS5Li08q09b4QDnGGv+scAOBIny6mNf1Og==
X-Forefront-Antispam-Report: CIP:206.191.250.196; CTRY:US; IPV:NLI; EFV:NLI; SFV:NSPM; SFS:(10019020)(6009001)(438002)(377454003)(24454002)(189002)(479174004)(199003)(19580405001)(69596002)(19580395003)(47776003)(86362001)(62966003)(92566002)(81156007)(93886004)(50466002)(117636001)(97736004)(189998001)(5001830100001)(2950100001)(5001960100002)(4001540100001)(86146001)(106116001)(77156002)(102836002)(106466001)(5001860100001)(5001770100001)(68736005)(2900100001)(6806004)(50986999)(46102003)(2656002)(87936001)(16796002)(76176999)(66066001)(54356999)(86612001)(64706001)(36756003)(23746002); DIR:OUT; SFP:1102; SCL:1; SRVR:BL2PR03MB356; H:064-smtp-out.microsoft.com; FPR:; SPF:Pass; PTR:ErrorRetry; MX:1; A:1; LANG:en;
X-Microsoft-Exchange-Diagnostics: 1; BL2PR03MB356; 2:8XzzuXxMkCuJN0W2N0+318XVFCS+KrIC7mWVbahGWytZ21Mjj7ZXYRnWJGSruFpi; 2:rUP4/MKu2bZfPe8ML6FLX4VG4fdsV3zwYCzpY82JPXY07ZYk1QxWA83tBIa5HMvuqCejZW9/49vWySJeuYvEZhDTgYgocodB2FvG8KW8EGHXQEPd+EQZTTs74glg8+AD7CAJFIXJfp4VrPJNFWDrlxMFrihcT32vMhzUchMW9TDTE9ttw2UCWTb84yrV2fqDwjg9cgyA+Ev4/IYtz+9ZGPhOmmkAnLQEWFEX8UaBeJ8sc1DSOU0RHqaVArTp8X/Y; 6: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
X-Microsoft-Antispam: UriScan:;BCL:0;PCL:0;RULEID:;SRVR:BL2PR03MB356;
X-Microsoft-Antispam-PRVS: <BL2PR03MB356EE729D3565A1C0AFB639C9CF0@BL2PR03MB356.namprd03.prod.outlook.com>
X-Exchange-Antispam-Report-Test: UriScan:;
X-Exchange-Antispam-Report-CFA-Test: BCL:0; PCL:0; RULEID:(601004)(2401001)(5005006)(520002)(3002001); SRVR:BL2PR03MB356; BCL:0; PCL:0; RULEID:; SRVR:BL2PR03MB356;
X-Microsoft-Exchange-Diagnostics: 1; BL2PR03MB356; 3:O1MY/dNwAAGlC4QTwsvL30dG2y/kMHGCuJ2tlO/qfS6yYSS7xNXlvkUGeUIIBSsd0n1bzSV1LrRpro8oF/Ojou195ObLiWFtDaaPfWkxdqc3KXPBPp0nkfl/cJw72MSRCregoKajhV04vLny5PztvKdK5Nn1j7rHFghbbProoiKbLYiNiwcTy6Eth8ALEQ4SWOAt4qoWvzPBsbbwa4Flos+q1xLwYptzI31pbNBAFYKvtLrmlMxgCL3S2odeY0I05slA4e7mX8w+a2toM16VXTJJknebCXssPoEq37rcP5UPoFcDEMszWUdHHV7fIVEwkSxWlGyR2UIkbETwQfsheg==
X-Forefront-PRVS: 0585417D7B
X-Microsoft-Exchange-Diagnostics: 1; BL2PR03MB356; 9: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
X-Microsoft-Exchange-Diagnostics: 1; BL2PR03MB356; 3:ixhn8n+84ZQcmPi5tzkvCjYKrKGmShw7klErOPAwF6b70W5facNZJD6n3sp8fBP1pnZxluRZhPx/a4WpPCtEzLtDALLJKtzw+HG76eb3F+regNvJNvqxKgC+/TbBo3h5sI0KeVHvpi3ZcV+QcnY2Mw==; 10:RSrCNUrlg2gJmiM4N5/QXXjKfAWHxVgyttssvCxiLaaZ2o75AwvcOzOxn+rqSEl9fNm4ZLCR8B77i5zVhDD96oCmF/EdoCtQrWJumDHDn4E=; 6:3D7OZM0IX4ymRRehs+Js9VGtFz2rXWqlEwTQJLiZgKOSuxIloWQC4lJKuzlV6b/Q
X-OriginatorOrg: microsoft.com
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 23 May 2015 13:12:56.5126 (UTC)
X-MS-Exchange-CrossTenant-Id: 72f988bf-86f1-41af-91ab-2d7cd011db47
X-MS-Exchange-CrossTenant-OriginalAttributedTenantConnectingIp: TenantId=72f988bf-86f1-41af-91ab-2d7cd011db47; Ip=[206.191.250.196]; Helo=[064-smtp-out.microsoft.com]
X-MS-Exchange-CrossTenant-FromEntityHeader: HybridOnPrem
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BL2PR03MB356
Archived-At: <http://mailarchive.ietf.org/arch/msg/tls/7sYyoVAVhXZAv7HGaRc8FPuIP2Y>
Cc: "tls@ietf.org" <tls@ietf.org>
Subject: Re: [TLS] Another INRIA bug in TLS
X-BeenThere: tls@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/tls/>
List-Post: <mailto:tls@ietf.org>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 23 May 2015 13:13:05 -0000

Hi Stephen,

> It's a really good paper, but if you have the chance I 
> think adding the above clarification would be very good.

Thanks! 
We're working on that.

________________________________________
From: TLS <tls-bounces@ietf.org> on behalf of Stephen Farrell <stephen.farrell@cs.tcd.ie>
Sent: Saturday, May 23, 2015 1:29 PM
To: Karthikeyan Bhargavan; Martin Thomson
Cc: tls@ietf.org
Subject: Re: [TLS] Another INRIA bug in TLS

Hiya,

On 23/05/15 07:21, Karthikeyan Bhargavan wrote:
> The “avoid fixed groups” recommendation applies to 1024 bits (and any
> other group-size for which precomputation becomes feasible.)

It's a really good paper, but if you have the chance I
think adding the above clarification would be very good.

Cheers,
S.