From tim.polk@nist.gov Sun May 3 17:52:08 2009 Return-Path: X-Original-To: saag@core3.amsl.com Delivered-To: saag@core3.amsl.com Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 4CF2928C12C; Sun, 3 May 2009 17:52:08 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -6.516 X-Spam-Level: X-Spam-Status: No, score=-6.516 tagged_above=-999 required=5 tests=[AWL=0.083, BAYES_00=-2.599, RCVD_IN_DNSWL_MED=-4] Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id geBZKPuRL+nC; Sun, 3 May 2009 17:52:07 -0700 (PDT) Received: from smtp.nist.gov (rimp1.nist.gov [129.6.16.226]) by core3.amsl.com (Postfix) with ESMTP id B8FF73A63D3; Sun, 3 May 2009 17:50:39 -0700 (PDT) Received: from h222208.nist.gov (h222208.nist.gov [129.6.222.208]) by smtp.nist.gov (8.13.1/8.13.1) with ESMTP id n440px6F017457; Sun, 3 May 2009 20:52:00 -0400 Message-Id: <8DE8F3AC-23D9-4B14-BCD2-6A7E9DB9ECC0@nist.gov> From: Tim Polk To: saag@ietf.org, secdir@ietf.org Content-Type: text/plain; charset=US-ASCII; format=flowed; delsp=yes Content-Transfer-Encoding: 7bit Mime-Version: 1.0 (Apple Message framework v930.3) Date: Sun, 3 May 2009 20:51:59 -0400 X-Mailer: Apple Mail (2.930.3) X-NIST-MailScanner: Found to be clean X-NIST-MailScanner-From: tim.polk@nist.gov Subject: [saag] Recruiting Co-Chairs for msec and hokey X-BeenThere: saag@ietf.org X-Mailman-Version: 2.1.9 Precedence: list List-Id: Security Area Advisory Group List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 04 May 2009 00:52:08 -0000 Pasi and I would appreciate nominations for co-chair positions for two working groups within the Security Area. The positions are co-chair for msec and hokey. The msec working group has been chaired by Brian Weis for the last year. While he has performed commendably, a co-chair is needed since Brian is also author of some wg documents. The hokey working group has been chaired by Glen Zorn and Charles Clancy since its inception. Charles has accepted new responsibilities that preclude active participation as chair in the future. If you would like to be considered for one of these position, or wish to nominate someone else, please contact Pasi or me directly. From tim.polk@nist.gov Mon May 4 04:13:47 2009 Return-Path: X-Original-To: saag@core3.amsl.com Delivered-To: saag@core3.amsl.com Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 8E5153A6B88 for ; Mon, 4 May 2009 04:13:47 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -6.518 X-Spam-Level: X-Spam-Status: No, score=-6.518 tagged_above=-999 required=5 tests=[AWL=0.081, BAYES_00=-2.599, RCVD_IN_DNSWL_MED=-4] Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id caaI2FbzXyxX for ; Mon, 4 May 2009 04:13:46 -0700 (PDT) Received: from smtp.nist.gov (rimp1.nist.gov [129.6.16.226]) by core3.amsl.com (Postfix) with ESMTP id 152113A6BD5 for ; Mon, 4 May 2009 04:13:45 -0700 (PDT) Received: from h222251.nist.gov (h222251.nist.gov [129.6.222.251]) by smtp.nist.gov (8.13.1/8.13.1) with ESMTP id n44BF13s032603; Mon, 4 May 2009 07:15:05 -0400 Message-Id: <88C8F369-0781-4C25-8886-382430637285@nist.gov> From: Tim Polk To: saag@ietf.org Content-Type: text/plain; charset=US-ASCII; format=flowed; delsp=yes Content-Transfer-Encoding: 7bit Mime-Version: 1.0 (Apple Message framework v930.3) Date: Mon, 4 May 2009 07:15:05 -0400 X-Mailer: Apple Mail (2.930.3) X-NIST-MailScanner: Found to be clean X-NIST-MailScanner-From: tim.polk@nist.gov Subject: [saag] request for security advisor for roll X-BeenThere: saag@ietf.org X-Mailman-Version: 2.1.9 Precedence: list List-Id: Security Area Advisory Group List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 04 May 2009 11:13:47 -0000 Folks, We have received a request for a security advisor from the Routing Over Low power and Lossy networks (roll) working group. They feel that they have quite a lot of security issues that are going to come up, and they really need some help. Their main expertise is in routing protocols and in the infrastructure of the low-powered (mainly) wireless networks with which they work. The working group is beginning to get some focus on a security framework (not yet a WG I- D), and is just starting protocol work. The time is right for a security advisor to have a real impact. Pasi and I believe that they will need an involved security advisor - someone that will stay current on the mailing list, participate in any security relevant discussions, and assist with the security framework draft. We were wondering if anyone was already planning to participate in roll; assigning an advisor with significant personal interest is a recipe for success! If you hadn't considered it previously, you might want to review the charter to get a sense of the group: http://www.ietf.org/html.charters/roll-charter.html Anyway, please let us know if you are willing to act as security advisor for roll. Thanks, Tim & Pasi From sshen@huawei.com Tue May 5 18:56:58 2009 Return-Path: X-Original-To: saag@core3.amsl.com Delivered-To: saag@core3.amsl.com Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 42BA23A698B for ; Tue, 5 May 2009 18:56:58 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -0.221 X-Spam-Level: X-Spam-Status: No, score=-0.221 tagged_above=-999 required=5 tests=[AWL=0.273, BAYES_00=-2.599, FH_RELAY_NODNS=1.451, HELO_MISMATCH_COM=0.553, HTML_MESSAGE=0.001, RDNS_NONE=0.1] Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id NWFTaggrnA2Y for ; Tue, 5 May 2009 18:56:57 -0700 (PDT) Received: from szxga04-in.huawei.com (unknown [119.145.14.67]) by core3.amsl.com (Postfix) with ESMTP id 3651B3A68F2 for ; Tue, 5 May 2009 18:56:57 -0700 (PDT) Received: from huawei.com (szxga04-in [172.24.2.12]) by szxga04-in.huawei.com (iPlanet Messaging Server 5.2 HotFix 2.14 (built Aug 8 2006)) with ESMTP id <0KJ700BQZ9H09H@szxga04-in.huawei.com> for saag@ietf.org; Wed, 06 May 2009 09:58:12 +0800 (CST) Received: from huawei.com ([172.24.1.24]) by szxga04-in.huawei.com (iPlanet Messaging Server 5.2 HotFix 2.14 (built Aug 8 2006)) with ESMTP id <0KJ700I419H05U@szxga04-in.huawei.com> for saag@ietf.org; Wed, 06 May 2009 09:58:12 +0800 (CST) Received: from s00102542 ([10.111.12.128]) by szxml04-in.huawei.com (iPlanet Messaging Server 5.2 HotFix 2.14 (built Aug 8 2006)) with ESMTPA id <0KJ7008H39GXJC@szxml04-in.huawei.com> for saag@ietf.org; Wed, 06 May 2009 09:58:12 +0800 (CST) Date: Wed, 06 May 2009 09:58:09 +0800 From: shenshuo To: saag@ietf.org Message-id: <008401c9cdee$1ae31510$800c6f0a@china.huawei.com> MIME-version: 1.0 X-MIMEOLE: Produced By Microsoft MimeOLE V6.00.2900.3350 X-Mailer: Microsoft Office Outlook 11 Content-type: multipart/alternative; boundary="Boundary_(ID_f3OO4sJKjHoIofHRjJyOQA)" Thread-index: AcnN7hqWnsjYu7KhQZiUQHX/SLIXsw== Subject: [saag] improvement on finding SHA-1 collissions X-BeenThere: saag@ietf.org X-Mailman-Version: 2.1.9 Precedence: list List-Id: Security Area Advisory Group List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 06 May 2009 01:56:58 -0000 This is a multi-part message in MIME format. --Boundary_(ID_f3OO4sJKjHoIofHRjJyOQA) Content-type: text/plain; charset=us-ascii Content-transfer-encoding: 7BIT I believe someone already know this but just for the general audience: It has just been anounced on rump session of Eurocrypt2009 that complexity of finding SHA-1 collision has been reduced to 2^52. http://eurocrypt2009rump.cr.yp.to/837a0a8086fa6ca714249409ddfae43d.pdf Detailed paper hopefully will appear soon on eprint. --Boundary_(ID_f3OO4sJKjHoIofHRjJyOQA) Content-type: text/html; charset=us-ascii Content-transfer-encoding: 7BIT
I believe someone already know this but just for the general audience:
It has just been anounced on rump session of Eurocrypt2009 that complexity of finding SHA-1 collision has been reduced to 2^52.
Detailed paper hopefully will appear soon on eprint. 
 
--Boundary_(ID_f3OO4sJKjHoIofHRjJyOQA)-- From Pasi.Eronen@nokia.com Fri May 29 04:18:06 2009 Return-Path: X-Original-To: saag@core3.amsl.com Delivered-To: saag@core3.amsl.com Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 4C2453A6B61; Fri, 29 May 2009 04:18:06 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -6.493 X-Spam-Level: X-Spam-Status: No, score=-6.493 tagged_above=-999 required=5 tests=[AWL=0.106, BAYES_00=-2.599, RCVD_IN_DNSWL_MED=-4] Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id OjS9Zw07Chg6; Fri, 29 May 2009 04:18:05 -0700 (PDT) Received: from mgw-mx09.nokia.com (smtp.nokia.com [192.100.105.134]) by core3.amsl.com (Postfix) with ESMTP id E65B73A6A6A; Fri, 29 May 2009 04:18:04 -0700 (PDT) Received: from esebh105.NOE.Nokia.com (esebh105.ntc.nokia.com [172.21.138.211]) by mgw-mx09.nokia.com (Switch-3.2.6/Switch-3.2.6) with ESMTP id n4TBITVr007441; Fri, 29 May 2009 06:18:58 -0500 Received: from esebh102.NOE.Nokia.com ([172.21.138.183]) by esebh105.NOE.Nokia.com with Microsoft SMTPSVC(6.0.3790.3959); Fri, 29 May 2009 14:18:11 +0300 Received: from smtp.mgd.nokia.com ([65.54.30.8]) by esebh102.NOE.Nokia.com over TLS secured channel with Microsoft SMTPSVC(6.0.3790.3959); Fri, 29 May 2009 14:18:10 +0300 Received: from NOK-EUMSG-01.mgdnok.nokia.com ([65.54.30.86]) by nok-am1mhub-04.mgdnok.nokia.com ([65.54.30.8]) with mapi; Fri, 29 May 2009 13:18:10 +0200 From: To: , Date: Fri, 29 May 2009 13:18:09 +0200 Thread-Topic: Pasi's AD Notes for May 2009 Thread-Index: AcngTyVYS6BtzClcQh2uUvzy/Nh8AA== Message-ID: <808FD6E27AD4884E94820BC333B2DB773A6AE7A037@NOK-EUMSG-01.mgdnok.nokia.com> Accept-Language: en-US Content-Language: en-US X-MS-Has-Attach: X-MS-TNEF-Correlator: acceptlanguage: en-US Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: quoted-printable MIME-Version: 1.0 X-OriginalArrivalTime: 29 May 2009 11:18:10.0857 (UTC) FILETIME=[266E4990:01C9E04F] X-Nokia-AV: Clean Subject: [saag] Pasi's AD Notes for May 2009 X-BeenThere: saag@ietf.org X-Mailman-Version: 2.1.9 Precedence: list List-Id: Security Area Advisory Group List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 29 May 2009 11:18:06 -0000 Here's again a short status update about what things are going on from my point-of-view. If you notice anything that doesn't look right, let me know -- miscommunication and mix-ups do happen. Best regards, Pasi MISC NOTES - I will be on parental leave/vacation (and off-line) from June 19=20 to July 19; the next AD notes will be posted before that - IESG had a face-to-face meeting on May 11-12 - Deployed new code for datatracker.ietf.org for IESG testing (if you're interested in testing "new tracker", drop me an email) - Replied to liaison statement from ITU-T SG 17 - IETF 75 preparation: SAAG agenda (if you have any topics, please=20 email Tim and me); requested slot for SAAG; requested room for=20 Security Directorate lunch - Updated security area part of the "requirements for open IESG=20 positions" text (for NomCom) with Tim - Processed errata for PKIX (RFC 5280), SSH (RFC 4335), KINK (RFC 4430) - Helping IANA to fix missing registries for KeyNote (RFC 2704/2792) and Diffie-Hellman DNS KEY records (RFC 2539) - Certicom posted updated IPR disclosures (1153, 1154) - Looking into appointing security advisor for ROLL WG with Tim (currently waiting for Tim to reply to emails) - (not wearing AD hat): Errata #1628 (for RFC 4742): waiting for NETCONF WG chairs/Dan to confirm this [since 2009-02-26] (some=20 emails in May, but not done yet) WORKING GROUPS DKIM - draft-ietf-dkim-overview: waiting for the authors to do the final=20 clarifications to address IESG discussion [since 2009-05-28] - draft-ietf-dkim-rfc4871-errata: went through IETF Last Call, on=20 agenda of 2009-06-04 IESG telechat - draft-ietf-dkim-ssp: waiting for WG chairs to confirm that the WG=20 is happy with the changes in version -10; on agenda of 2009-06-04 IESG telechat - Marked bunch of RFC 4871 errata as Verified or Held for Document Update.=20 - I still need to review what to do about errata 1385, 1532, and 1596 EMU - Quiet month IPSECME - draft-ietf-ipsecme-ikev2-redirect: publication requested; Tim will be the responsible AD for this draft - Virtual interim meeting held on 2009-05-05 - Working on fixing the IANA registrations of RFC 4543 - (not wearing AD hat) draft-ietf-ipsecme-ikev2-ipv6-config: I promised to update the draft (clean it, address TBDs) so it would be ready=20 for WGLC (as Experimental) if this path is chosen by WG. ISMS - draft-ietf-isms-secshell, draft-ietf-isms-tmsm, and draft-ietf-isms-transport-security-model: were approved by IESG, now in RFC Editor queue - draft-ietf-isms-radius-usage: waiting for authors to submit a revised draft to address the DISCUSSes [since 2009-05-14] - I need to follow up on rechartering [since 2009-05-25] KEYPROV - I need to catch up with the latest emails... PKIX - draft-ietf-pkix-rfc4055-update: in RFC Editor queue, waiting for 3281update draft (not a normative reference, but authors preferred it this way). SASL - Some discussions about channel bindings, change control, and getting IETF standards track channel bindings for TLS SYSLOG - draft-ietf-syslog-sign: I need to check the updated version -26 =20 [since 2009-05-27] - Some discussions about rechartering TLS - draft-ietf-tls-extractor: in AD evaluation, waiting for Eric to=20 submit a revised draft [since 2009-05-27] - draft-ietf-tls-rfc4366-bis: went through WGLC; waiting for authors to submit a revised draft, and WG chairs to send=20 a publication request soon... - Looking into errata #117 (for RFC 4346) - (not WG item yet) I need to talk with the chairs and Michael about what to do with Mobi-D OTHER DOCUMENTS - draft-lebovitz-kmart-roadmap: I need to read this and=20 comment/contribute. - "Applicability guidance for security protocols": Tim and I have promised to write something that would help in determining which security mechanism (e.g. TLS, IPsec, SASL, GSS-API, ..) to use for a new higher-layer protocol. DISCUSSES (active -- something happened within last month) - draft-igoe-secsh-aes-gcm: version -02 addressed my largest concern; waiting for authors to reply about the remaining ones=20 [since 2009-05-27] DISCUSSES (stalled -- I haven't heard anything from the authors or document shepherd for over one month) - draft-atlas-icmp-unnumbered: waiting for authors to reply to my comments [since 2009-04-21] - draft-ietf-bfd-base: text agreed, waiting for authors to submit=20 a revised ID [since 2009-03-19] (pinged again on 2009-04-30) - draft-ietf-ipfix-file: waiting for authors to reply to my comments [since 2009-04-23] - draft-ietf-ntp-ntpv4-proto: waiting for authors to reply to my email or submit a revised ID [since 2009-04-16] - draft-ietf-ospf-lls: version -07 did not address my comments; waiting for a revised ID or RFC Editor Notes [since 2009-03-19] - draft-ietf-radext-management-authorization: changes agreed, waiting for authors to submit a revised ID [since 2009-04-20]=20 (pinged again 2009-05-28) DISCUSSES (presumed dead -- I haven't heard anything from the authors or document shepherd for over three months) - draft-cain-post-inch-phishingextns: authors have promised a new version some time in February [since 2009-01-29] - draft-cheshire-dnsext-nbp: waiting for authors to reply to my comments [since 2008-12-03] (pinged again on 2009-04-30) - draft-ietf-vrrp-unified-spec: waiting for authors to propose text [since 2008-11-07] (but talked briefly with Radia at IETF74) - draft-ietf-sipping-policy-package: waiting for draft-ietf-sipping- media-policy-dataset to progress (or more information from Robert) [since 2008-10-28] --end--