[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Cfrg] DNSSEC considering adopting GOST R 34.10-2001 and GOST R 34.11-94

To: 'Ólafur Guðmundsson /DNSEXT chair' <ogud at ogud.com>, <cfrg at irtf.org>
Subject: Re: [Cfrg] DNSSEC considering adopting GOST R 34.10-2001 and GOST R 34.11-94
From: "Jim Schaad" <ietf at augustcellars.com>
Date: Wed, 22 Apr 2009 13:13:52 -0700
Delivered-to: cfrg at core3.amsl.com
In-reply-to: <200904221514.n3MFE413047502 at stora.ogud.com>
List-archive: <http://www.irtf.org/mail-archive/web/cfrg>
List-help: <mailto:cfrg-request@irtf.org?subject=help>
List-id: Crypto Forum Research Group <cfrg.irtf.org>
List-post: <mailto:cfrg@irtf.org>
List-subscribe: <http://www.irtf.org/mailman/listinfo/cfrg>, <mailto:cfrg-request@irtf.org?subject=subscribe>
List-unsubscribe: <http://www.irtf.org/mailman/listinfo/cfrg>, <mailto:cfrg-request@irtf.org?subject=unsubscribe>
References: <200904221514.n3MFE413047502 at stora.ogud.com>
Thread-index: AcnDXSNlslKslhQ2T0GqgETO1ja+RgAKaHjQ

I would like to note that we added this without having actually seen the
details of the algorithm itself.

Jim Schaad

> -----Original Message-----
> From: cfrg-bounces at irtf.org [mailto:cfrg-bounces at irtf.org] On Behalf Of
> Ólafur Guðmundsson /DNSEXT chair
> Sent: Wednesday, April 22, 2009 8:14 AM
> To: cfrg at irtf.org
> Subject: [Cfrg] DNSSEC considering adopting GOST R 34.10-2001 and GOST
> R 34.11-94
> 
> 
> This message is a request for information.
> In an old CFRG thread
> http://www.ietf.org/mail-archive/web/cfrg/current/msg01170.html
> I asked for some guidance on defining ECC algorithms for DNSSEC.
> 
> We now have the first concrete proposal for an ECC algorithm,
>          GOST R 34.10-2001 a ECC public key algorithm
>          GOST R 34.11-94  a hash algorithm
> preliminary ID: (more politics than technical)
> http://www.ietf.org/internet-drafts/draft-dolmatov-dnsext-dnssec-gost-
> 00.txt
> 
> 
> Both algorithms have been added to at least one IETF protocol
> (RFC4490).
> The DNS community is inclined to seriously consider the adoption of
> these
> algorithms, but we are not crypto experts.
> 
> Question #1: Is there a cryptographic reason why GOST R 34.10-2001
> should NOT be considered for adoption by DNS?
> 
> Previously I have received suggestions for following ECC curves:
>          P-256, P-384 and Curve25519.
> 
> Question #2: Is there a cryptographic reason why GOST R 34.11-94
> should NOT be considered for adoption by DNS?
> 
>          thanks
>          Olafur
> 
> _______________________________________________
> Cfrg mailing list
> Cfrg at irtf.org
> http://www.irtf.org/mailman/listinfo/cfrg

Follow-Ups:
- Re: [Cfrg] DNSSEC considering adopting GOST R 34.10-2001 and GOST R 34.11-94
  - From: Paul Hoffman

References:
- [Cfrg] DNSSEC considering adopting GOST R 34.10-2001 and GOST R 34.11-94
  - From: Ólafur Guðmundsson /DNSEXT chair

Prev by Date: [Cfrg] DNSSEC considering adopting GOST R 34.10-2001 and GOST R 34.11-94
Next by Date: Re: [Cfrg] DNSSEC considering adopting GOST R 34.10-2001 and GOST R 34.11-94
Previous by thread: [Cfrg] DNSSEC considering adopting GOST R 34.10-2001 and GOST R 34.11-94
Next by thread: Re: [Cfrg] DNSSEC considering adopting GOST R 34.10-2001 and GOST R 34.11-94
Index(es):
- Date
- Thread