Re: [Last-Call] [DNSOP] Secdir last call review of draft-ietf-dnsop-server-cookies-04

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 


Hiya,

On 02/12/2020 18:25, Ondřej Surý wrote:

Stephen,

ad 1) the performance is crucial for DNS over UDP and PRF such as
SipHash is more efficient than HMACs. No, it wasn’t consulted with
CFRG, and I can’t speak for Willem, but I am confident enough to make
the decision. SipHash is widely used for hash tables virtually
anywhere now.


The text says that you need a MAC though. Personally, I
think it'd be wiser to (double-)check before using novel
crypto even if the only novelty is use in a standards
track RFC.



ad 2) we need a value that’s synchronized well enough and monotonic.
I honestly don’t see any value in using 64-bit value here. Using
unixtime has a value in itself, it’s a well-known and there’s a
little room for any implementor to make a mistake in an
implementation. The interoperability is more important than the
actual value of the counter. It’s write only counter, nobody is going
to interpret it after it has been generated, and it’s wide enough to
prevent brute forcing.


So what happens after 2038? That's really not v. far in the
future any more.

Cheers,
S.



Cheers, Ondřej -- Ondřej Surý — ISC (He/Him)


On 2. 12. 2020, at 18:47, Stephen Farrell via Datatracker
<noreply@xxxxxxxx> wrote:

Reviewer: Stephen Farrell Review result: Has Issues

I see two issues here worth checking:

1. I don't recall SipHash being used as a MAC in any IETF standard
before. We normally use HMAC, even if truncated. Why make this
change and was that checked with e.g. CFRG? (And the URL given in
the reference gets me a 404.)

2. Is it really a good idea to use a 32 bit seconds since
1970-01-01 in 2020? I'd have thought that e.g. a timestamp in hours
since then or seconds since some date in 2020 would be better.

Here's a couple of nits too: - section 1: what's a "strong
cookie"? - "gallimaufry" - cute! but not sure it'll help readers to
learn that word.
_______________________________________________ DNSOP mailing list DNSOP@xxxxxxxx https://www.ietf.org/mailman/listinfo/dnsop

Attachment: OpenPGP_0x5AB2FAF17B172BEA.asc
Description: application/pgp-keys

Attachment: OpenPGP_signature
Description: OpenPGP digital signature

-- 
last-call mailing list
last-call@xxxxxxxx
https://www.ietf.org/mailman/listinfo/last-call
[Index of Archives]     [IETF Annoucements]     [IETF]     [IP Storage]     [Yosemite News]     [Linux SCTP]     [Linux Newbies]     [Mhonarc]     [Fedora Users]

  Powered by Linux