Re: [Cfrg] draft-mcgrew-hash-sigs question on the definition of one time
Dan Brown <danibrown@blackberry.com> Sun, 29 April 2018 21:52 UTC
Return-Path: <danibrown@blackberry.com>
X-Original-To: cfrg@ietfa.amsl.com
Delivered-To: cfrg@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 76E1E1275AB; Sun, 29 Apr 2018 14:52:18 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.601
X-Spam-Level:
X-Spam-Status: No, score=-2.601 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id vY6wvDPWYeoI; Sun, 29 Apr 2018 14:52:15 -0700 (PDT)
Received: from smtp-p02.blackberry.com (smtp-p02.blackberry.com [208.65.78.89]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 7A63D127522; Sun, 29 Apr 2018 14:52:14 -0700 (PDT)
X-Spoof:
Received: from smtp-pop.rim.net (HELO XCT104CNC.rim.net) ([10.65.161.204]) by mhs213cnc.rim.net with ESMTP/TLS/DHE-RSA-AES256-SHA; 29 Apr 2018 17:52:13 -0400
Received: from XCT116CNC.rim.net (10.65.161.216) by XCT104CNC.rim.net (10.65.161.204) with Microsoft SMTP Server (TLS) id 14.3.319.2; Sun, 29 Apr 2018 17:52:13 -0400
Received: from XMB116CNC.rim.net ([fe80::45d:f4fe:6277:5d1b]) by XCT116CNC.rim.net ([::1]) with mapi id 14.03.0319.002; Sun, 29 Apr 2018 17:52:12 -0400
From: Dan Brown <danibrown@blackberry.com>
To: Jim Schaad <ietf@augustcellars.com>, "draft-mcgrew-hash-sigs@ietf.org" <draft-mcgrew-hash-sigs@ietf.org>
CC: "cfrg@ietf.org" <cfrg@ietf.org>
Thread-Topic: [Cfrg] draft-mcgrew-hash-sigs question on the definition of one time
Thread-Index: AdPf9oq2d9UbSZxURF+KYGP08GlNEgADcliZ
Date: Sun, 29 Apr 2018 21:52:11 +0000
Message-ID: <20180429215209.36057178.40976.24735@blackberry.com>
References: <03b701d3dff7$03f9b910$0bed2b30$@augustcellars.com>
In-Reply-To: <03b701d3dff7$03f9b910$0bed2b30$@augustcellars.com>
Accept-Language: en-US, en-CA
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
Archived-At: <https://mailarchive.ietf.org/arch/msg/cfrg/mHY4eifuHoY_5lYQcm8uSpdHtsQ>
Subject: Re: [Cfrg] draft-mcgrew-hash-sigs question on the definition of one time
X-BeenThere: cfrg@irtf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: Crypto Forum Research Group <cfrg.irtf.org>
List-Unsubscribe: <https://www.irtf.org/mailman/options/cfrg>, <mailto:cfrg-request@irtf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/cfrg/>
List-Post: <mailto:cfrg@irtf.org>
List-Help: <mailto:cfrg-request@irtf.org?subject=help>
List-Subscribe: <https://www.irtf.org/mailman/listinfo/cfrg>, <mailto:cfrg-request@irtf.org?subject=subscribe>
X-List-Received-Date: Sun, 29 Apr 2018 21:52:18 -0000
Two different signatures (of same or different message) with one public key make forgery feasible against that public key. Sent from my BlackBerry 10 smartphone on the Rogers network. Original Message From: Jim Schaad Sent: Sunday, April 29, 2018 4:17 PM To: draft-mcgrew-hash-sigs@ietf.org Cc: cfrg@ietf.org Subject: [Cfrg] draft-mcgrew-hash-sigs question on the definition of one time I am doing a quick review of a draft dealing with LM-OTS One-Time signatures and I have run into a problem. Either my definition of one time is wrong or there appears to be an error in the draft. Before trying to do a deep read of this document I would like to get a clarification. The last sentence of paragraph 1 of section 4 says These are one-time signatures; each private key MUST be used at most one time to sign any given message. Is this "at most one time to sign" or "at most one time to sign a given message". That is don't re-sign the same message but a new message (for some definition of new) is ok. Jim _______________________________________________ Cfrg mailing list Cfrg@irtf.org https://www.irtf.org/mailman/listinfo/cfrg