[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: I have a technical idea/change for the ECC draft

To: "Andrey Jivsov" <openpgp@xxxxxxxxxxxx>
Subject: Re: I have a technical idea/change for the ECC draft
From: "David Crick" <dacrick@xxxxxxxxx>
Date: Tue, 15 Apr 2008 11:29:25 +0100
Cc: "Jon Callas" <jon@xxxxxxxxxx>, OpenPGP <ietf-openpgp@xxxxxxx>
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; bh=MZOm1wAxnXeTWrju/HVh3MPki3B5qLf2brVt7pXeFzs=; b=xpL45zpMKeK1xHKUjsBU3b6T/91Tyfnfr8NHtshNf6nHM4JvdaKW4nLM9RsGbzR6VpLIAl41yzL91eziTxnl0UYeJ+x0LlpSSQVBrt0vmmMmvIygN6Q16RJpLhEEO0i0TkLlTOoZijYFeJoh7UTMAqyLw09xfnZnm9WHODk8YLI=
Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=nm9atIND4PtrOx2vxtA7uKFpUTuGX0L6lueAeb8jtwwL3rUBtgRyVbhWUNrxM5UAlsmjFy/mJ+3ga6bq/8fk53gjehMPGiM2avT2ivEK9DbaTXh3YmssVyPoarOjB6Ax2kAUzi+Kvupi4oAL0lnYjXfXvmBhcqMVWtHA2lLyX/Y=
In-reply-to: <480453D9.2060309@xxxxxxxxxxxx>
List-archive: <http://www.imc.org/ietf-openpgp/mail-archive/>
List-id: <ietf-openpgp.imc.org>
List-unsubscribe: <mailto:ietf-openpgp-request@imc.org?body=unsubscribe>
References: <117bad160804121421t49a6ed13uc1b106e37c054c95@xxxxxxxxxxxxxx> <7230A39A-46DA-41AC-9967-10D0F461E998@xxxxxxxxxx> <117bad160804141533r73bdc549kca9ad0e065118996@xxxxxxxxxxxxxx> <6CD5436E-9B1C-4A58-9AA8-410280459DA0@xxxxxxxxxx> <480453D9.2060309@xxxxxxxxxxxx>
Sender: owner-ietf-openpgp@xxxxxxxxxxxx

>  I favor this too.
>
>  One additional issue I realized that we didn't address is the mixing of
> keys for two levels of Suite-B profile. It is similar to the issue of mixing
> non-Suite-B and Suite-B keys.
>
>  TOP SECRET must use AES-256, SECRET must use AES-128 or AES-256. We cannot
> make TOP SECRET keys use AES-128, yet this is what happens with implicit
> AES-128. Making AES-256 implicit will not work either, because now SECRET
> keys will be picked as compatible with TOP SECRET keys. Finally, having no
> implicit preferences disallows TOP SECRET keys to receive SECRET
> information.
>
>  Do we now need two Suite-B flags?

My initial reaction was "no": one flag restricts ciphers for both
profiles (TS and S) - and that's absolutely correct for "Suite B."

But "OpenPGP ECC" possibly has several categories (levels):

1. Strict Suite B TS
2. Strict Suite B S
3. ECC with AESes
(3a ECC with Twofish, Camellia)
4. ECC with 3DES
(4a ECC with Twofish, Camellia if you think 3DES is higher)
5. ECC with other ciphers / non-ECC keys

but maybe this is now into the realm of cipher preferences?

I need to give this a bit more thought.

References:
- I have a technical idea/change for the ECC draft
  - From: David Crick
- Re: I have a technical idea/change for the ECC draft
  - From: Jon Callas
- Re: I have a technical idea/change for the ECC draft
  - From: David Crick
- Re: I have a technical idea/change for the ECC draft
  - From: Jon Callas
- Re: I have a technical idea/change for the ECC draft
  - From: Andrey Jivsov

Prev by Date: Re: I have a technical idea/change for the ECC draft
Previous by thread: Re: I have a technical idea/change for the ECC draft
Next by thread: Re: I have a technical idea/change for the ECC draft
Index(es):
- Date
- Thread