IETF Logo Mail Archive

[TLS] Curve25519 in TLS and Additional Curves in TLS

Simon Josefsson <simon@josefsson.org> Wed, 22 January 2014 16:19 UTC

Return-Path: <simon@josefsson.org>
X-Original-To: tls@ietfa.amsl.com
Delivered-To: tls@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 493B71A0483 for <tls@ietfa.amsl.com>; Wed, 22 Jan 2014 08:19:00 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.551
X-Spam-Level:
X-Spam-Status: No, score=-1.551 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HELO_EQ_SE=0.35, SPF_PASS=-0.001] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id tTGx7l1kvu9r for <tls@ietfa.amsl.com>; Wed, 22 Jan 2014 08:18:58 -0800 (PST)
Received: from duva.sjd.se (duva.sjd.se [IPv6:2001:9b0:1:1702::100]) by ietfa.amsl.com (Postfix) with ESMTP id 45EAF1A0429 for <tls@ietf.org>; Wed, 22 Jan 2014 08:18:58 -0800 (PST)
Received: from latte.josefsson.org (static-213-115-179-130.sme.bredbandsbolaget.se [213.115.179.130]) (authenticated bits=0) by duva.sjd.se (8.14.4/8.14.4/Debian-4) with ESMTP id s0MGIsc9017100 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES128-SHA bits=128 verify=NOT) for <tls@ietf.org>; Wed, 22 Jan 2014 17:18:56 +0100
X-Hashcash: 1:22:140122:tls@ietf.org::cxSBv7HYrkPIEC65:GcxW
From: Simon Josefsson <simon@josefsson.org>
To: tls@ietf.org
OpenPGP: id=B565716F; url=http://josefsson.org/key.txt
Date: Wed, 22 Jan 2014 17:18:54 +0100
Message-ID: <87ob3456s1.fsf@latte.josefsson.org>
User-Agent: Gnus/5.130008 (Ma Gnus v0.8) Emacs/24.3 (gnu/linux)
MIME-Version: 1.0
Content-Type: text/plain
X-Virus-Scanned: clamav-milter 0.97.8 at duva.sjd.se
X-Virus-Status: Clean
Subject: [TLS] Curve25519 in TLS and Additional Curves in TLS
X-BeenThere: tls@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/tls/>
List-Post: <mailto:tls@ietf.org>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 22 Jan 2014 16:19:00 -0000

All,

I have updated the Curve25519 draft.  I believe people are implementing
Curve25519 for TLS.  My idea of adding the "additional" curves to the
same draft seems like a mistake, or at least the timing of doing it was
a mistake.  Merging all curves into one draft makes it harder to
evaluate consensus and maturity around the Curve25519 part, which I
hope/believe we are approching.  Thus, I have split the draft into two
drafts:

1) Curve25519 for TLS.  This was the original scope of the draft.  The
URL is: <http://tools.ietf.org/html/draft-josefsson-tls-curve25519>.  As
far as I know, there are no outstanding issues, and it is possible to
implement and deploy Curve25519 in TLS following the draft.  Please
prove me wrong with comments or preferrably patches to the draft.

2) Additional curves for TLS.  This reflect the idea I had recently
after reading draft-ladd-safecurves.  However it seems there is still
many things to discuss and that it is not near the maturity of the
curve25519 part.  The following draft is also pending on the CFRG
discussions and maturity of draft-ladd-safecurves.
<http://tools.ietf.org/html/draft-josefsson-tls-additional-curves>.
Several people suggested to remove some curves from the list, and I'm
inclined to agree, but haven't made the change yet.  I'm not sure we
have a solid understanding of which curves makes sense and which doesn't
yet.

Eventually the drafts may be merged, if/when closure is reached on the
open issues for the second draft.  But I don't have high hopes that will
happen in the near term, and I believe there is growing interest in
moving forward with the first draft.

The drafts are on gitorious, if anyone prefers to send patches that way,
see: https://www.gitorious.org/ietf-simon/tls-curve25519/

Cheers,
/Simon

v2.23.0 | Report a Bug | By Email