[Emu] Removal of key strength table in RFC 2716bis

To: emu at ietf.org
Subject: [Emu] Removal of key strength table in RFC 2716bis
From: "Bernard Aboba" <bernard_aboba at hotmail.com>
Date: Thu, 18 Jan 2007 23:02:09 -0800
Bcc:
In-reply-to: <AC1CFD94F59A264488DC2BEC3E890DE50314D1CE@xmb-sjc-225.amer.cisco.com>
List-archive: <http://www1.ietf.org/pipermail/emu>
List-help: <mailto:emu-request@ietf.org?subject=help>
List-id: "EAP Methods Update \(EMU\)" <emu.ietf.org>
List-post: <mailto:emu@ietf.org>
List-subscribe: <https://www1.ietf.org/mailman/listinfo/emu>, <mailto:emu-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www1.ietf.org/mailman/listinfo/emu>, <mailto:emu-request@ietf.org?subject=unsubscribe>

On the EAP WG list, Lakshminath Dondeti has pointed out the problems with including a copy of the RFC 3766 Key Strength table in another document:

"Section 3.7 has a copy of the attack resistance table from RFC 3766.  It
is sufficient to provide a reference to that RFC.  There is no need to
reproduce the table in the eap-keying document.  In fact, if 3766 is
updated, the eap keying draft also needs to be updated; if 3766 is
simply referenced, the problem goes away."

This same argument can be made to remove the key strength table from RFC 2716bis. My recommendation is to change Note [3] in Section 5.1 to the following, removing the table:

[3] BCP 86 [RFC3766] Section 5 offers advice on the required RSA or DH module and DSA subgroup size in bits, for a given level of attack resistance in bits. For example, a 2048-bit RSA key is recommended to provide 128-bit equivalent key strength. The National Institute for Standards and Technology (NIST) also offers advice on appropriate key sizes in [SP800-57].

_______________________________________________
Emu mailing list
Emu at ietf.org
https://www1.ietf.org/mailman/listinfo/emu

References:
- [Emu] Open issues with draft-simon-emu-rfc2716bis-06.txt
  - From: Joseph Salowey \(jsalowey\)

Prev by Date: [Emu] Questions on draft-ietf-emu-eap-gpsk-02.txt
Next by Date: RE: [Emu] Open issues with draft-simon-emu-rfc2716bis-06.txt
Previous by thread: RE: [Emu] Open issues with draft-simon-emu-rfc2716bis-06.txt
Next by thread: [Emu] Questions on draft-ietf-emu-eap-gpsk-02.txt
Index(es):
- Date
- Thread

[Emu] Removal of key strength table in RFC 2716bis

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.