Re: [TLS] WGLC for draft-ietf-tls-hybrid-design

2022-04-27 Thread Martin Thomson 
I found the introduction of KeyGen, Encaps, and Decaps to be underutilized.  It 
would require a little work, but I think that it would be better to describe a 
method whereby you produce each of these functions by taking an ordered 
collection of these functions (KeyGen[i], Encaps[i], and Decaps[i]) and 
constants (Npk[i], Nek[i], etc...).

With something like this, I'd like to see the implication that the TLS key 
schedule is changed by this draft can be removed (in Section 3.3 specifically).

In essence, you are describing a known-good process for composing key exchange 
methods.  (Not existing TLS 1.3 key exchange methods, as implied by this:

> For a hybrid key exchange, the key_exchange field of a KeyShareEntry is the 
> concatenation of the key_exchange field for each of the constituent 
> algorithms. 

I think that this text is a mistake as it implies that the component key 
exchange algorithm has a defined key_exchange format.  What you want is a 
definition in the form above, or as HPKE has it.

I'd prefer to see this work done before publication, but as I'm not able to 
volunteer to do it, I can't really insist on it.  This is useful work and the 
document, despite these niggles, is pretty clear and well-reasoned.

On Thu, Apr 28, 2022, at 01:27, Christopher Wood wrote:
> This email commences a two week WGLC for draft-ietf-tls-hybrid-design, 
> located here:
>
>https://datatracker.ietf.org/doc/draft-ietf-tls-hybrid-design/
>
> We do not intend to allocate any code points at this time and will park 
> the document after the call is complete. Once CFRG produces suitable 
> algorithms for consideration, we will then add them to the NamedGroup 
> registry through the normal process [1] and move the document forward.
>
> Please review the draft and send your comments to the list. This WGLC 
> will conclude on May 13.
>
> Best,
> Chris, for the chairs
>
> [1] 
> https://www.iana.org/assignments/tls-parameters/tls-parameters.xhtml#tls-parameters-8
> ___
> TLS mailing list
> TLS@ietf.org
> https://www.ietf.org/mailman/listinfo/tls

___
TLS mailing list
TLS@ietf.org
https://www.ietf.org/mailman/listinfo/tls

[TLS] WGLC for draft-ietf-tls-hybrid-design

2022-04-27 Thread Christopher Wood 
This email commences a two week WGLC for draft-ietf-tls-hybrid-design, located 
here:

   https://datatracker.ietf.org/doc/draft-ietf-tls-hybrid-design/

We do not intend to allocate any code points at this time and will park the 
document after the call is complete. Once CFRG produces suitable algorithms for 
consideration, we will then add them to the NamedGroup registry through the 
normal process [1] and move the document forward.

Please review the draft and send your comments to the list. This WGLC will 
conclude on May 13.

Best,
Chris, for the chairs

[1] 
https://www.iana.org/assignments/tls-parameters/tls-parameters.xhtml#tls-parameters-8
___
TLS mailing list
TLS@ietf.org
https://www.ietf.org/mailman/listinfo/tls