[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: scrypt Internet Draft

To: Nick Galbreath <nickg@client9.com>
Subject: Re: scrypt Internet Draft
From: Simon Josefsson <simon@josefsson.org>
Date: Tue, 18 Sep 2012 08:51:06 +0200
Cc: Colin Percival <cperciva@tarsnap.com>, scrypt users <scrypt@tarsnap.com>
In-reply-to: <CAFDLgLmQHmTt9N5j23_NzWdNC5BgeKFcnVgK7cG4DXntnfZDzQ@mail.gmail.com> (Nick Galbreath's message of "Tue, 18 Sep 2012 00:29:22 -0400")
Openpgp: id=B565716F; url=http://josefsson.org/key.txt
References: <5057BDEF.9040708@tarsnap.com> <CAFDLgLmQHmTt9N5j23_NzWdNC5BgeKFcnVgK7cG4DXntnfZDzQ@mail.gmail.com>

Nick Galbreath <nickg@client9.com> writes:

> Hi team-scrypt!
>
> I'll read  the spec more carefully once I'm back home, but quickly...
>
> Is there a spec for the crypt function/command line format?  Oddly the
> best spec I've seen is the PHP function by the same name.
>
> http://php.net/manual/en/function.crypt.php
>
> FreeBSD has some details as well
> http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/crypt.html
>
> and Ulrich Drepper's crypt sha-256/sha-512 impl:
> http://www.akkadia.org/drepper/SHA-crypt.txt
>
> Ideally I'd like a crypt-like format e.g. such as $7$... that
> represents scrypt with related parameters.  Given that Ulrich Drepper
> just wrote a txt file, and didn't appear to submit to an official
> standards body, I suspect that there is no standard.

That is right, I don't think there is any standard, just well
established practice.

> Any tips here, or possibility of adding an appendix to this spec
> documenting a crypt-style format?  Or is this done, and I'm just not
> seeing it?

I agree it should be done, but I'm not convinced it should be done in
this document -- a scrypt-based crypt is not implemented today and would
be experimental, and that will set back the review process of the draft.
Granted, the ASN.1 parts or not implemented either, but I suspect that
more easily will fly under the radar.

We could start it as a parallel effort though.  Would you like to help
work on this?  I started a document here:

https://www.gitorious.org/scrypt/scrypt/blobs/master/unix-scrypt.txt

I think we need implementation experience to move forward, I don't see
much more that is needed in a crypt spec for scrypt.  Maybe some default
parameter suggestions.

/Simon

> thanks
>
> Nick Galbreath
> nickg
>
>
>
>
>
>
>
>
>
> On Mon, Sep 17, 2012 at 8:18 PM, Colin Percival <cperciva@tarsnap.com> wrote:
>> Hi all,
>>
>> In case anyone here is interested in standards processes, you should be
>> aware that Simon Josefsson has written up scrypt as an Internet Draft
>> which will hopefully end up turning into an RFC:
>>   http://tools.ietf.org/html/draft-josefsson-scrypt-kdf-00
>>
>> --
>> Colin Percival
>> Security Officer Emeritus, FreeBSD | The power to serve
>> Founder, Tarsnap | www.tarsnap.com | Online backups for the truly paranoid

Follow-Ups:
- Re: scrypt Internet Draft
  - From: Solar Designer <solar@openwall.com>

References:
- scrypt Internet Draft
  - From: Colin Percival <cperciva@tarsnap.com>
- Re: scrypt Internet Draft
  - From: Nick Galbreath <nickg@client9.com>

Prev by Date: Re: scrypt Internet Draft
Next by Date: Re: scrypt Internet Draft
Previous by thread: Re: scrypt Internet Draft
Next by thread: Re: scrypt Internet Draft
Index(es):
- Date
- Thread