Re: [TLS] WG adoption + early code point assignment: draft-mavrogiannopoulos-chacha-tls

Yoav Nir <ynir.ietf@gmail.com> Wed, 20 May 2015 13:10 UTC

Return-Path: <ynir.ietf@gmail.com>
X-Original-To: tls@ietfa.amsl.com
Delivered-To: tls@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 460561A1A07 for <tls@ietfa.amsl.com>; Wed, 20 May 2015 06:10:46 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2
X-Spam-Level:
X-Spam-Status: No, score=-2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 8r59VAln15qZ for <tls@ietfa.amsl.com>; Wed, 20 May 2015 06:10:41 -0700 (PDT)
Received: from mail-wi0-x233.google.com (mail-wi0-x233.google.com [IPv6:2a00:1450:400c:c05::233]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id CE99C1A19EF for <tls@ietf.org>; Wed, 20 May 2015 06:10:40 -0700 (PDT)
Received: by wicmx19 with SMTP id mx19so149216972wic.0 for <tls@ietf.org>; Wed, 20 May 2015 06:10:39 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=content-type:mime-version:subject:from:in-reply-to:date:cc :content-transfer-encoding:message-id:references:to; bh=9sdnf0tG2Pjw0bZ+QXgc/x+974aynyyPNUHVUcN8/Wg=; b=0wsYlWN6/0UdebW4Agh/LRfV2JNF5o2l8MfxZkI/2NQ7wpneUjZeONwnzVF9UBQN3U sjtULYpaD7u4WAmUAMJm7A4s07OIgRRio1q36NOPdwf8eH9KbIAW2A1puATyD9NUmgq4 ow8SyYXh0+3hRAUAd08H/P0lr+xR8YPSE1Ttcn+xzs3BzIYNWZ3OdiKKxXEb9FYequHu FaIGcIVbaHApYgWCZYO8tabWtkic09cCQgu3bIznb+Fk//vGCLiQz4wKBo9agtX5zqk9 iy+pVcHr0ppZF4qpwkNDzwTeRAt9xU4M+bC7BSHLxkKlzW7tVPptzXm+i71fE9SZgDJp pk8A==
X-Received: by 10.180.103.231 with SMTP id fz7mr41394792wib.35.1432127439580; Wed, 20 May 2015 06:10:39 -0700 (PDT)
Received: from [172.24.251.137] (dyn32-131.checkpoint.com. [194.29.32.131]) by mx.google.com with ESMTPSA id t17sm3442268wij.1.2015.05.20.06.10.37 (version=TLSv1 cipher=ECDHE-RSA-RC4-SHA bits=128/128); Wed, 20 May 2015 06:10:38 -0700 (PDT)
Content-Type: text/plain; charset=us-ascii
Mime-Version: 1.0 (Mac OS X Mail 8.2 \(2098\))
From: Yoav Nir <ynir.ietf@gmail.com>
In-Reply-To: <1432120843.2926.0.camel@redhat.com>
Date: Wed, 20 May 2015 16:10:36 +0300
Content-Transfer-Encoding: quoted-printable
Message-Id: <9F02C316-AA7E-4440-8727-3A62F7F83D9C@gmail.com>
References: <FD8B7C3F-C3DD-4367-B84D-26B9907F1B9D@ieca.com> <3FCBCBD5-9295-4A8D-BD27-71377B6B8E7C@gmail.com> <CABkgnnUYZFb5zAVUgQ4LHBBt0cECHoQS4dEofmmH1M5Bn8HZDQ@mail.gmail.com> <567925460.1076064.1432105081320.JavaMail.zimbra@redhat.com> <555C33F6.4020402@cs.tcd.ie> <555C6B9D.2060302@gmail.com> <1432120843.2926.0.camel@redhat.com>
To: Nikos Mavrogiannopoulos <nmav@redhat.com>
X-Mailer: Apple Mail (2.2098)
Archived-At: <http://mailarchive.ietf.org/arch/msg/tls/nUFv0ERfw1dQ9wh16SNQwoKfIvo>
Cc: IETF TLS Working Group <tls@ietf.org>
Subject: Re: [TLS] WG adoption + early code point assignment: draft-mavrogiannopoulos-chacha-tls
X-BeenThere: tls@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/tls/>
List-Post: <mailto:tls@ietf.org>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 20 May 2015 13:10:46 -0000

> On May 20, 2015, at 2:20 PM, Nikos Mavrogiannopoulos <nmav@redhat.com>; wrote:
> 
> On Wed, 2015-05-20 at 14:10 +0300, Yaron Sheffer wrote:
>> At ipsecme, we had a few incompatible changes between WG adoption of our 
>> own chacha draft, and WGLC. So I would recommend against early 
>> registration altogether.
> 
> Could you summarize the changes done for ipsecme in case they are
> relevant for this draft as well?

Not much. The changes were mostly clarifications, examples, and fixing the construction of AAD for Poly1305 input for both IPsec and IKE.

We did have some TBDs in the draft over whether we would set the 32-bit salt to zero or derive it from keying material (as for GCM). We decided on the latter. That question is also open in this working group, at least for TLS 1.2.

Yoav