[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: which is our DIGEST-MD5 successor?

To: Simon Josefsson <simon@xxxxxxxxxxxxx>
Subject: Re: which is our DIGEST-MD5 successor?
From: Nicolas Williams <Nicolas.Williams@xxxxxxx>
Date: Tue, 18 Mar 2008 17:43:21 -0500
Cc: Jeffrey Hutzelman <jhutz@xxxxxxx>, Chris Newman <Chris.Newman@xxxxxxx>, Tom Yu <tlyu@xxxxxxx>, ietf-sasl@xxxxxxx
In-reply-to: <877ifz6592.fsf@xxxxxxxxxxxxxxxxxxx>
List-archive: <http://www.imc.org/ietf-sasl/mail-archive/>
List-id: <ietf-sasl.imc.org>
List-unsubscribe: <mailto:ietf-sasl-request@imc.org?body=unsubscribe>
Mail-followup-to: Simon Josefsson <simon@xxxxxxxxxxxxx>, Jeffrey Hutzelman <jhutz@xxxxxxx>, Chris Newman <Chris.Newman@xxxxxxx>, Tom Yu <tlyu@xxxxxxx>, ietf-sasl@xxxxxxx
References: <> <Pine.LNX.4.33L.0803121328180.3634-100000@xxxxxxxxxxxxxxxxxxxxx> <87r6e766x2.fsf@xxxxxxxxxxxxxxxxxxx> <20080318220545.GQ16998@xxxxxxx> <877ifz6592.fsf@xxxxxxxxxxxxxxxxxxx>
Sender: owner-ietf-sasl@xxxxxxxxxxxx
User-agent: Mutt/1.5.7i

On Tue, Mar 18, 2008 at 11:23:37PM +0100, Simon Josefsson wrote:
> 
> Nicolas Williams <Nicolas.Williams@xxxxxxx> writes:
> 
> > On Tue, Mar 18, 2008 at 10:47:37PM +0100, Simon Josefsson wrote:
> >> Jeffrey Hutzelman <jhutz@xxxxxxx> writes:
> >> > I'm seeing an awful lot of "GS2 is going to make the wire encoding more
> >> > complicated!  It's binary; binary is always complicated!" and similar FUD.
> >> > I really wish people would stop spreading that, RIGHT NOW, and go actually
> >> > read (or re-read) the documents in question.
> >> 
> >> For GS2, I think binary isn't an unreasonable choice, and I agree with
> >> you.  I also think that there is some merit to having textual protocols,
> >> and I think making our DIGEST-MD5 successor textual would be nice.
> >
> > There's very little binary anything in GS2:
> >
> >  - two 32-bit unsigned network byte order lengths
> >  - another 32-bit quantity: maxbuf for security layers
> >  - a pair of one-byte flags for security layer and channel-binding
> >    negotiation
> >  - the actual GSS-API mechanism tokens in the authentication exchanges
> >
> > Base64-encoding the GSS tokens would allow us to get rid of those two
> > lengths; the flags and the maxbuf can be expressed textually.
> 
> That is true, and getting rid of the length fields would be neat.  But
> if we are holding GS2, I suspect GS2 will be radically different when/if
> brought back from its zombie state.  I'm not sure it makes sense to
> spend time at this point to re-work the protocol for a technically small
> change like this, when we may be doing larger changes later on.

I'm not done writing up the SCRAM+GS2 ABNF and related text.  After I
post that hopefully Chris and others will agree that it's not overly
complex, or perhaps they'll insist on making the changes I mention
above and then they'll find it agreeable.  That will get GS2 "unheld."

References:
- Re: which is our DIGEST-MD5 successor?
  - From: Chris Newman
- Re: which is our DIGEST-MD5 successor?
  - From: Jeffrey Hutzelman
- Re: which is our DIGEST-MD5 successor?
  - From: Simon Josefsson
- Re: which is our DIGEST-MD5 successor?
  - From: Nicolas Williams
- Re: which is our DIGEST-MD5 successor?
  - From: Simon Josefsson

Prev by Date: Re: which is our DIGEST-MD5 successor?
Previous by thread: Re: which is our DIGEST-MD5 successor?
Next by thread: Crypto agility in SCRAM + draft-josefsson-password-auth?
Index(es):
- Date
- Thread