Re: [Curdle] eddsa25519 & eddsa448 for use with SSH

To: "Mark D. Baushke" <mdb%juniper.net@localhost>

Subject: Re: [Curdle] eddsa25519 & eddsa448 for use with SSH

From: denis bider <denisbider.ietf%gmail.com@localhost>

Date: Mon, 24 Apr 2017 23:19:57 -0600

I believe the spec for ssh-ed25519 is already an active draft under the purview of Curdle:

https://tools.ietf.org/html/draft-ietf-curdle-ssh-ed25519-00

On Mon, Apr 24, 2017 at 10:39 PM, Mark D. Baushke <mdb%juniper.net@localhost> wrote:

Hi Folks,

Looking at

RFC 8032 - Edwards-Curve Digital Signature Algorithm (EdDSA)

I am curious to know if there is a desire to create public key algorithm
names for SSH using it?

http://ssh-comparison.quendi.de/comparison/hostkey.html
shows 11 implementations of ssh-ed25519 and 3 implementations of
ssh-ed25519-cert-v01@openssh.com.

I have not yet compared the RFC against the SSH implementations of
ssh-ed25519.

I do know that the use of the SHAKE256 as a hash function for Ed448
would be the first SHA-3 family function used in the SSH protocol.

If they are the same, then it would be good to writeup something
to add ssh-ed25519 to the IANA
https://www.iana.org/assignments/ssh-parameters/ssh-parameters.xhtml#ssh-parameters-19

-- Mark

_______________________________________________
Curdle mailing list
Curdle%ietf.org@localhost
https://www.ietf.org/mailman/listinfo/curdle