IETF Logo Mail Archive

Re: [Uta] [art] Artart last call review of draft-ietf-uta-rfc7525bis-09

Peter Saint-Andre <stpeter@stpeter.im> Mon, 01 August 2022 22:18 UTC

Return-Path: <stpeter@stpeter.im>
X-Original-To: uta@ietfa.amsl.com
Delivered-To: uta@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id CEEE2C13CCE9; Mon, 1 Aug 2022 15:18:37 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.812
X-Spam-Level:
X-Spam-Status: No, score=-2.812 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, NICE_REPLY_A=-0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=stpeter.im header.b=I3zWHQJT; dkim=pass (2048-bit key) header.d=messagingengine.com header.b=iYCL/BQ7
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id MMKtgikqwgXb; Mon, 1 Aug 2022 15:18:33 -0700 (PDT)
Received: from wout5-smtp.messagingengine.com (wout5-smtp.messagingengine.com [64.147.123.21]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 51ED8C13CCE7; Mon, 1 Aug 2022 15:18:33 -0700 (PDT)
Received: from compute2.internal (compute2.nyi.internal [10.202.2.46]) by mailout.west.internal (Postfix) with ESMTP id A2D88320095F; Mon, 1 Aug 2022 18:18:31 -0400 (EDT)
Received: from mailfrontend2 ([10.202.2.163]) by compute2.internal (MEProxy); Mon, 01 Aug 2022 18:18:32 -0400
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=stpeter.im; h=cc :cc:content-transfer-encoding:content-type:date:date:from:from :in-reply-to:in-reply-to:message-id:mime-version:references :reply-to:sender:subject:subject:to:to; s=fm1; t=1659392311; x= 1659478711; bh=19XBxECkLzOBHY9k8CH/EFelUybwchSM9eXq5jZ+rl4=; b=I 3zWHQJT4okrlOfbTY/cuark8tP2XtiNS0Y3bzj3/1OoM+YiLFRT6crbXgGbqWPL/ xoOicj8/oNe2MrL/zf9YD9Cfwkx+EJ1+H1t30gAct0jkoTVoUxzG5FA6HUSfoHEe 0hJP2uluGrG1A7W4du6sqMbHFI8l3wfI1mHJNk/jcS+Ys38Np0vbjFTYHwWcDBa5 1vjOEvFoDykWwyTSypJnyWgLA9l+FyL4tw5B9lJTOclYXgZeVBbv0EPLpsO6rj+p K3z1DQVyHvCa4uMBQmjOzrRBIXaweMu6DJGEe7wICoSPN+3w7Ri1fuO4jRAouOAG qfnaRrl0cQBD8r7rAkaZg==
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d= messagingengine.com; h=cc:cc:content-transfer-encoding :content-type:date:date:feedback-id:feedback-id:from:from :in-reply-to:in-reply-to:message-id:mime-version:references :reply-to:sender:subject:subject:to:to:x-me-proxy:x-me-proxy :x-me-sender:x-me-sender:x-sasl-enc; s=fm3; t=1659392311; x= 1659478711; bh=19XBxECkLzOBHY9k8CH/EFelUybwchSM9eXq5jZ+rl4=; b=i YCL/BQ7BMqsFXmOF3DqGP1LjIXDJJ2poTDACmaScFLWsLkYQPwSfYVC6RgvtmSS0 8djCK/S/7jSGsXRUQBafrbeM5SdMuT0hKelG1TZrlXLr6SR8h/Rq36LrQX+BSgc+ 6n02Zh//8a/+SGqWzePumVxFAhjB8yIWTIHQ7g+JyQ5Xr1rtKJqcVZdFc8a3Id5T 8aY/IpQLLBtzhYenbEyFFIlE34pKwPGWfO8MvbfZJXqh2R22jpZrTBVPoRFnwoK2 tBTdTnTvBDWbCf++saV333LxHL/3C7N+0EsnLrDpEnEmhar6sx8yN8biUUcL2Rwp J0x/KdL6vFQ2PMzxAE5hQ==
X-ME-Sender: <xms:NlHoYnOQolXISB8kCyEMnznwqdPMFr6zx1JuCjwoIVpbudS_15TpyA> <xme:NlHoYh_v-K9uehM6i0l4x67yDAzDFT_eoW-YwUf0Ct6KN4rvlzqxuKBuvYuc5DXtv f17OlVPyeql9r0NiQ>
X-ME-Received: <xmr:NlHoYmQCyN2MMPxmiJ8E2ak10wC77WH_SVjwEuAZr8r4Qhu9_BoFsx-yOPwwfIQD>
X-ME-Proxy-Cause: gggruggvucftvghtrhhoucdtuddrgedvfedrvddvgedgtdekucetufdoteggodetrfdotf fvucfrrhhofhhilhgvmecuhfgrshhtofgrihhlpdfqfgfvpdfurfetoffkrfgpnffqhgen uceurghilhhouhhtmecufedttdenucenucfjughrpefkffggfgfuvfevfhfhjggtgfesth ekredttdefjeenucfhrhhomheprfgvthgvrhcuufgrihhnthdqtehnughrvgcuoehsthhp vghtvghrsehsthhpvghtvghrrdhimheqnecuggftrfgrthhtvghrnhepieduffevjeehve eflefhtdfgvdefheffheevledvhfduieelteevvddthfffieejnecuvehluhhsthgvrhfu ihiivgeptdenucfrrghrrghmpehmrghilhhfrhhomhepshhtphgvthgvrhesshhtphgvth gvrhdrihhm
X-ME-Proxy: <xmx:NlHoYrtIYlEQOKfL0OUZpCNU-hZDBQ6O3MuV2gn4ccgXEsAqKUAZqw> <xmx:NlHoYve92GaGmAflWYozwK59USAMFIffNIXW1SSoVDbAlnfPXTY0Aw> <xmx:NlHoYn1oj1fq014rWCz858dPI6xH-f3KrWxgMxT01wTPTtJ5cgTWJw> <xmx:N1HoYm4kHDOSzXMGiGDwRSFA0v7PebgFIlXtOHiQjoHw8UulMih_5A>
Feedback-ID: i24394279:Fastmail
Received: by mail.messagingengine.com (Postfix) with ESMTPA; Mon, 1 Aug 2022 18:18:30 -0400 (EDT)
Message-ID: <e36b7842-9ebc-2fbd-54be-9a8a1fe05771@stpeter.im>
Date: Mon, 01 Aug 2022 16:18:29 -0600
MIME-Version: 1.0
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:91.0) Gecko/20100101 Thunderbird/91.11.0
Content-Language: en-US
To: Cullen Jennings <fluffy@iii.ca>
Cc: draft-ietf-uta-rfc7525bis.all@ietf.org, "art@ietf.org" <art@ietf.org>, last-call@ietf.org, uta@ietf.org
References: <165728991008.45773.10659091812976572509@ietfa.amsl.com> <4c7fcbfe-5055-d33d-e1d1-27e85592551a@stpeter.im> <A0DD6035-C9D1-4FEC-A5E7-7D95FFC55602@iii.ca> <9c9922a8-93b5-611f-6433-dbac122dcc4f@stpeter.im> <e7b17bbe-0b6b-2a54-2100-b220a9afa92e@stpeter.im> <B186BFAC-6584-4395-837E-C8F09FE6AEC7@iii.ca>
From: Peter Saint-Andre <stpeter@stpeter.im>
In-Reply-To: <B186BFAC-6584-4395-837E-C8F09FE6AEC7@iii.ca>
Content-Type: text/plain; charset="UTF-8"; format="flowed"
Content-Transfer-Encoding: 8bit
Archived-At: <https://mailarchive.ietf.org/arch/msg/uta/Dc52IMRz1fjPXGnhVyrdrSXsGSY>
Subject: Re: [Uta] [art] Artart last call review of draft-ietf-uta-rfc7525bis-09
X-BeenThere: uta@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: UTA working group mailing list <uta.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/uta>, <mailto:uta-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/uta/>
List-Post: <mailto:uta@ietf.org>
List-Help: <mailto:uta-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/uta>, <mailto:uta-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 01 Aug 2022 22:18:37 -0000

On 8/1/22 2:58 PM, Cullen Jennings wrote:
> 
> 
>> On Jul 30, 2022, at 1:40 PM, Peter Saint-Andre <stpeter@stpeter.im> wrote:
>>
>> Hi again,
>>
>> The authors have conferred on this and at this time we don't think that we can recommend anything other than EC ciphers, for several reasons:
>>
>> 1. DHE negotiation is broken.
> 
> Perhaps a bit more explanation in the draft about the issues with DHE-RSA (in context of 7919) would help. 

For sure. We weren't crafting text yet, merely pointing out the basic 
rationale behind exclusing non-EC ciphersuites. We can definitely 
explain each of these three reasons more fully in text to follow.

> I was under the perhaps mistaken perception that the RFC 7919 was not subject to the Raccoon attack and that there were mitigation for the Racoon timing attacks. Given the reliance on a single class of algorithms, I think it would be worth highlighting the risks and provide good info on why alternatives don’t work.

Agreed.

>> 2. Static RSA is out of the question.
> 
> I agree but would prefer that was phrased as things don’t provide PFS are out of the question, not that RSA is not usable. 

That makes sense.

> I see lots of confusion of those two. I will note that, if EC was broken by quantum or optical computers but RSA was not, I’m pretty sure I would be switching to something with no PFS vs something that was broken.

Very likely. :-)

>> 3. Post-quantum (PQ) methods aren't ready yet.
> 
> agree (thought I think they are getting surprising close and probably plan to ship them well ahead of any schedule I imagine the IETF getting around to agreeing on )
> 
>>
>> Our forecast is that a few years from now the PQ methods will be ready for recommending in 7525ter, but for now EC is the best we can do.

I suspect that 7525ter will be published after the PQ methods have been 
standardized at the IETF, but as we know it's never smart to make 
specific forecasts about standardization schedules. ;-)

Peter

v2.23.0 | Report a Bug | By Email