Re: Curve25519/448 key agreement for SSH

To: Niels Möller <nisse%lysator.liu.se@localhost>, Simon Josefsson <simon%josefsson.org@localhost>, djm%mindrot.org@localhost
Subject: Re: Curve25519/448 key agreement for SSH
From: denis bider <ietf-ssh3%denisbider.com@localhost>
Date: Tue, 17 Nov 2015 13:15:48 +0000

Yes, but:

- Other kex methods use mpint, so you need to support K as mpint anyway. You've described that in your implementation K encoding is method specific. But maybe in another implementation K encoding is common between methods, and it now needs to have a special case for when K is string. This adds complexity to that implementation.

- If libssh and OpenSSH have to implement two subtly different versions of the same algorithm, that's implementation complexity for no technical benefit also.

Overall, though, it seems to be a bikeshed issue - it doesn't really matter either way.

----- Original Message -----
From: Niels "Möller"
Sent: Monday, November 16, 2015 23:46
To: denis bider
Cc: Simon Josefsson ; djm%mindrot.org@localhost ; ietf-ssh%netbsd.org@localhost
Subject: Re: Curve25519/448 key agreement for SSH

denis bider <ietf-ssh3%denisbider.com@localhost> writes:

> In a new algorithm, yes. But in this case, I am inclined to be against
> changing the K encoding, simply because:
>
> - I consider the encoding to be a non-issue, as long as it's unambiguously specified; and

Do you agree that it adds a little implementation complexity, for no
technical benefit?

Regards,
/Niels

--
Niels Möller. PGP-encrypted email is preferred. Keyid C0B98E26.
Internet email is subject to wholesale government surveillance.

Follow-Ups:
- Re: Curve25519/448 key agreement for SSH
  - From: Niels Möller

Prev by Date: Re: Curve25519/448 key agreement for SSH
Next by Date: Re: Curve25519/448 key agreement for SSH
Previous by Thread: Re: Curve25519/448 key agreement for SSH
Next by Thread: Re: Curve25519/448 key agreement for SSH
Indexes:

Home | Main Index | Thread Index | Old Index