Re: [TLS] Adoption call for Deprecating FFDH(E) Ciphersuites in TLS

Carrick Bartle <cbartle891@icloud.com> Fri, 30 July 2021 18:56 UTC

Return-Path: <cbartle891@icloud.com>
X-Original-To: tls@ietfa.amsl.com
Delivered-To: tls@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 815F13A0AE8 for <tls@ietfa.amsl.com>; Fri, 30 Jul 2021 11:56:13 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.847
X-Spam-Level:
X-Spam-Status: No, score=-1.847 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_ENVFROM_END_DIGIT=0.25, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=icloud.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id rzt7amfTpdIx for <tls@ietfa.amsl.com>; Fri, 30 Jul 2021 11:56:08 -0700 (PDT)
Received: from mr85p00im-ztdg06021201.me.com (mr85p00im-ztdg06021201.me.com [17.58.23.189]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id AFDB43A0AB3 for <tls@ietf.org>; Fri, 30 Jul 2021 11:56:08 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=icloud.com; s=1a1hai; t=1627671368; bh=NIL3tR/hLU5aDkEWD8Q4gqg6klsSUT3YE3ItS8mfXSg=; h=From:Message-Id:Content-Type:Mime-Version:Subject:Date:To; b=C+n+jWOF/T29DIsB9XdxmoZg+auiTEqpi57LEb9EpQkQLCK4BStQuoa1F0hik2iIC vCkduT14XrI2VJ4soAULnTH8+0F6tz+2/bV3Q2gwuj1CZO/WbsGozyXbbuHUX9mk6a GI0FG64llLQcVZrY7RLNQ+FntMBJhHD+AOO3G/WztBirf28fSD/2FjVCMu3bn1rvjL d0nPzlKc2GF/XHiI1EwdbA19WDrhuJPDX03Lj+DAAz37hPAfjIWCOP/CycHH31ie+M VtWyqmK52ByIRXmmL8ktDP4/CY80Vq5/RGkhahselISjyE2hn10vhGu7Hepa71OiHT qDwGQ2mL+NFOg==
Received: from smtpclient.apple (unknown [17.11.172.221]) by mr85p00im-ztdg06021201.me.com (Postfix) with ESMTPSA id 1ADB9120A30; Fri, 30 Jul 2021 18:56:08 +0000 (UTC)
From: Carrick Bartle <cbartle891@icloud.com>
Message-Id: <1BBD0390-515C-4F52-B860-8580097AB8E8@icloud.com>
Content-Type: multipart/alternative; boundary="Apple-Mail=_7EB13C2A-32BD-40F2-8CD2-E786C5CAD10C"
Mime-Version: 1.0 (Mac OS X Mail 14.0 \(3654.80.0.2.43\))
Date: Fri, 30 Jul 2021 11:56:07 -0700
In-Reply-To: <1f86d146-92a1-4175-985f-92705d077d7c@www.fastmail.com>
Cc: tls@ietf.org
To: Martin Thomson <mt@lowentropy.net>
References: <CAOgPGoC4C0bWz0h0iyzGzMPEoDKAPv4euoOkmS+6Uuxncux4Zg@mail.gmail.com> <1f86d146-92a1-4175-985f-92705d077d7c@www.fastmail.com>
X-Mailer: Apple Mail (2.3654.80.0.2.43)
X-Proofpoint-Virus-Version: =?UTF-8?Q?vendor=3Dfsecure_engine=3D1.1.170-22c6f66c430a71ce266a39bfe25bc?= =?UTF-8?Q?2903e8d5c8f:6.0.391,18.0.790,17.0.607.475.0000000_definitions?= =?UTF-8?Q?=3D2021-07-30=5F08:2021-07-30=5F01,2021-07-30=5F08,2020-04-07?= =?UTF-8?Q?=5F01_signatures=3D0?=
X-Proofpoint-Spam-Details: rule=notspam policy=default score=0 bulkscore=0 clxscore=1015 adultscore=0 mlxlogscore=999 suspectscore=0 malwarescore=0 mlxscore=0 phishscore=0 spamscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.12.0-2009150000 definitions=main-2107300128
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls/zKYR4XiCeuJzGnnberDOaJ_R4qA>
Subject: Re: [TLS] Adoption call for Deprecating FFDH(E) Ciphersuites in TLS
X-BeenThere: tls@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls/>
List-Post: <mailto:tls@ietf.org>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 30 Jul 2021 18:56:22 -0000

Sorry, the title will be changed in the next version, which I'll be posting as soon as possible. You are correct about the scope of the work.


> On Jul 29, 2021, at 5:41 PM, Martin Thomson <mt@lowentropy.net> wrote:
> 
> I support the *contents* of this document.  The title, however, I can't agree to.  So I want to be clear about the scope of the work, namely deprecating semi-static FFDH and ECDH suites and any use of FFDHE ephemeral suites with reused keys.
> 
> The draft limits the ban on ephemeral key reuse to FFDHE, which is right; I could tolerate a prohibition on reuse for ECDH, but I know that we rely on that for HPKE and other things, so it can't really be bad enough to ban.
> 
> Cheers,
> Martin
> 
> On Fri, Jul 30, 2021, at 07:50, Joseph Salowey wrote:
>> This is a working group call for adoption for Deprecating FFDH(E) 
>> Ciphersuites in TLS (draft-bartle-tls-deprecate-ffdhe-00 
>> <https://datatracker.ietf.org/doc/draft-bartle-tls-deprecate-ffdhe/ <https://datatracker.ietf.org/doc/draft-bartle-tls-deprecate-ffdhe/>>). 
>> We had a presentation for this draft at the IETF 110 meeting and since 
>> it is a similar topic to the key exchange deprecation draft the chairs 
>> want to get a sense if the working group wants to adopt this draft 
>> (perhaps the drafts could be merged if both move forward).  Please 
>> review the draft and post your comments to the list by Friday, August 
>> 13, 2021.  
>> 
>> Thanks,
>> 
>> The TLS chairs
>> _______________________________________________
>> TLS mailing list
>> TLS@ietf.org
>> https://www.ietf.org/mailman/listinfo/tls
>> 
> 
> _______________________________________________
> TLS mailing list
> TLS@ietf.org <mailto:TLS@ietf.org>
> https://www.ietf.org/mailman/listinfo/tls <https://www.ietf.org/mailman/listinfo/tls>