IETF Logo Mail Archive

Re: [COSE] [jose] HPKE PartyU / PartyV

"lgl island-resort.com" <lgl@island-resort.com> Sun, 24 March 2024 21:10 UTC

Return-Path: <lgl@island-resort.com>
X-Original-To: cose@ietfa.amsl.com
Delivered-To: cose@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6CEE5C14F603 for <cose@ietfa.amsl.com>; Sun, 24 Mar 2024 14:10:14 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.907
X-Spam-Level:
X-Spam-Status: No, score=-1.907 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_BLOCKED=0.001, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id CKyKSaf2Eg5G for <cose@ietfa.amsl.com>; Sun, 24 Mar 2024 14:10:10 -0700 (PDT)
Received: from NAM10-MW2-obe.outbound.protection.outlook.com (mail-mw2nam10on2101.outbound.protection.outlook.com [40.107.94.101]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 7439FC14F5FA for <cose@ietf.org>; Sun, 24 Mar 2024 14:10:10 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=kNUtoMjAiWR4yQKL6S4M3kqaTgEaqAUYWhku3MgSyRcjbuk/5dfw8jRLSiOj2D6tg8J58bpfVZFBmJh0Hmg6L3K9r1+HjhOEWqZxzALFaupqBFZtinKxfNodBWFEqPvU8W381xJW/SLmyMrNODox0xdnp6I3egqv1NdvaP4iYnFIyARuGcALZM0wKHkruUHDcZQ8ZY4LyeG7Da2Kgm28RquI97Epd/6F6QSWIhoWLDSiKpzMQ82tgXBU+7jOHh3SF2Z/v1hvL+AojiW69/y+7uTHCobmUZvCA4prj5wVnlt4QOJefSias/uCb1VneWSMQfMJCVbcwwDzS0to8MldHg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=7XRNjKsLkiqoantJgkVtK6ii00sGs7BbdLPKWHfKF+8=; b=AFo780eBkHJrRnTKybR/nnJb6KQE1oXrQGV3lEdFXW4gYzIkvIiv6QmnQh1d0xDSPp0mGMn0PBNEut//h+f+n5CN0ZUc1/Kgre1C4nAq8nWLSGt3zsd3/sOK2rwu/ipqDPo9AWAwVjjgDruY/caar+2C2BgIeuBHrsSoAnqi/T8Mlz+23faKSnHbUgTgaiXlCD7hh7gPReus8UKAUkHmN1MohDVf7opDI+TAA12Lqc0toUI9xa0vnDP5S/qxYpNJTC6AYC/y+8xgYQ6Cyo39S/xEBMdmGgytqzf1OB7r/rPmpSK6cHXNwDgeusnwq+x0QZYefluF0xX5/pEsIKoobQ==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=island-resort.com; dmarc=pass action=none header.from=island-resort.com; dkim=pass header.d=island-resort.com; arc=none
Received: from PH7PR22MB3092.namprd22.prod.outlook.com (2603:10b6:510:13b::8) by LV8PR22MB5613.namprd22.prod.outlook.com (2603:10b6:408:226::19) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.7409.31; Sun, 24 Mar 2024 21:10:07 +0000
Received: from PH7PR22MB3092.namprd22.prod.outlook.com ([fe80::1cab:7344:221c:bb8e]) by PH7PR22MB3092.namprd22.prod.outlook.com ([fe80::1cab:7344:221c:bb8e%5]) with mapi id 15.20.7409.028; Sun, 24 Mar 2024 21:10:07 +0000
From: "lgl island-resort.com" <lgl@island-resort.com>
To: Ilari Liusvaara <ilariliusvaara@welho.com>
CC: cose <cose@ietf.org>
Thread-Topic: [COSE] [jose] HPKE PartyU / PartyV
Thread-Index: AQHaeLqobEXWyBU1aUaEzEnRI3t5JbE9J0eAgABRDACAAEpqAIAAVIaAgAFWWICAAGA5gIABGIwAgAA5tQCAAn1EAIAAL1iAgACK1YCAABpHAIABJ7QAgAA494CAAN3WAIAAvXmA
Date: Sun, 24 Mar 2024 21:10:07 +0000
Message-ID: <2EA56DC2-D0B4-4BCA-9149-0C348B16E4D0@island-resort.com>
References: <A1D2BF92-68FE-4E67-A420-D19D55AD6C99@island-resort.com> <CAFWvErWo11A--1Nkkv8p7JkF+xCPD66hVxJa8CTU+nO74cbCrA@mail.gmail.com> <2FC023C9-9091-4C9C-A2C7-350945C04B23@island-resort.com> <CAN8C-_KgZmFMkg_GsF0YgzgS+jCJKWAOZdytZKVwgbirrDUc_Q@mail.gmail.com> <Zf1jjGx2ZimgRqAD@LK-Perkele-VII2.locald> <CAFWvErVR6CSTd6bxRyTXWpib3jyjOWwdvDnprBOwPSed8GSDVA@mail.gmail.com> <B9B41D94-6708-491B-8551-5D504B8D8339@island-resort.com> <CAFWvErWKs0gzfvPymsOGfQXjMuAQRUJNaodvVfAbUWiwbuNMwg@mail.gmail.com> <Zf8N0hhwhhFJuFlI@LK-Perkele-VII2.locald> <AF75EFD3-F7FF-4F64-830F-E69B1C250335@island-resort.com> <Zf_3ssDYfnEh1qIW@LK-Perkele-VII2.locald>
In-Reply-To: <Zf_3ssDYfnEh1qIW@LK-Perkele-VII2.locald>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=island-resort.com;
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: PH7PR22MB3092:EE_|LV8PR22MB5613:EE_
x-ms-office365-filtering-correlation-id: 1514203e-df7e-4ff2-8a72-08dc4c46c83d
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: aq+LX6zOIJ3AYQ54sHtO19nqPBQOBHog8jF1gLkEqh/qbJhtyESjflFPsZBAUaDmnIyzt17leXUJHVfjFRd5rU+40YxrqWZF8CZYEhm3c193eYFhpUK97zEnaZzdywWUpnIErrJ8HO30SHwI5Bn75KnTFtOHRWwsBiiP3Xv4T3sRLuitbtv6itRnzGEXqyRFSUuA6cIPuni6FbmAS87M522L8Z3c+y7SvbV8ZiyEbGjzkHyypwijcSh6a9ztylekZtJRiZ96Ub51cF627UmB+5vycPuFnZ5LD3XJyHiHdjuW+lMw8Qw6B2zQG+kMpbF1N+4NC6MSBfY15O+wy778rVDRj9m4xseFgogaP0T00xuPS/qLhaUMNujjbDjLYepGfh9jPans12Byij/5E+YgEqULD+pt5VA+6eTfUD1IHNRGAjp87yfynqchKvUmEUn/CEhi+iuLup5KlF9LH7zLre/WEDOXOz3dlWYyADSTaMeBG2HkFGs7lkuHucMIEBChD4lxBgdNs0yAJ42ac5/evY/kV4iJX3yG8MOVFdyxWPWqTAiFTIi8LRdoD1CSn4Ais656tpQ5Z3B+JVXflnmn3GG6r1x3noFSLVgWWnqTeEkvcMAFC3ndKbjy6AKnEDZq/CJ5ckEDs/V2As8U+CbrQTnJr04BL08NnxhXHCyux0qMiPAvKoDe77oi5YP4Yv0kR5nBwxn10VcOG9HNt3Hlbw+DTaZuH+zEDUFQEAi7UXc=
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:PH7PR22MB3092.namprd22.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230031)(1800799015)(366007)(376005)(38070700009); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: text/plain; charset="utf-8"
Content-ID: <C7AFF3D63C4B45458C1434B5276EAEDA@namprd22.prod.outlook.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: island-resort.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: PH7PR22MB3092.namprd22.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 1514203e-df7e-4ff2-8a72-08dc4c46c83d
X-MS-Exchange-CrossTenant-originalarrivaltime: 24 Mar 2024 21:10:07.0626 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: ad4b5b91-a549-4435-8c42-a30bf94d14a8
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: VOGqXZMJ4we9ZRYAyMYrf6LVPHlTp6MCW5O6Lx0L+U7I/PyI1gqtcwYP9CNAFa8bo1glUiUIj287eQ8t5VNYwQ==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: LV8PR22MB5613
Archived-At: <https://mailarchive.ietf.org/arch/msg/cose/2nHkfOMg_gejjBsD5SFCXff3Y8o>
Subject: Re: [COSE] [jose] HPKE PartyU / PartyV
X-BeenThere: cose@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: CBOR Object Signing and Encryption <cose.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/cose>, <mailto:cose-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/cose/>
List-Post: <mailto:cose@ietf.org>
List-Help: <mailto:cose-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/cose>, <mailto:cose-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 24 Mar 2024 21:10:14 -0000

> On Mar 24, 2024, at 2:51 AM, Ilari Liusvaara <ilariliusvaara@welho.com> wrote:
> 
> On Sat, Mar 23, 2024 at 08:37:58PM +0000, lgl island-resort.com wrote:
>> 
>> On Mar 23, 2024, at 10:13 AM, Ilari Liusvaara <ilariliusvaara@welho.com> wrote:
>> 
>> _If_ key management algorithm is aad-capable, adding next_alg to aad is
>> an easy way to make decryption fail if attacker alters algorithms.
>> 
>> COSE -25 and for COSE-HPKE key management is aad-capable. With a
>> little extra work I think content_encryption_algorithm (formerly
>> next_alg) can work for COSE -29.
> 
> Sure -29 can be hacked to work. And fully-specified-encryption would
> redo it anyway. The main problem is Key Wrap and Key Transport.
> 
> And next_alg and content_encryption_algorithm are not the same thing.
> next_alg is the algorithm with what the unwrapped key will be used with,
> while content_encryption_algorithm can be something else if there is
> intermediate step (even if I do not know why anyone would do that).

My thought is that content_encryption_algorithm is the COSE algorithm ID for the next *COSE* layer.


>> I’m starting to think about a new draft to define the -29 replacement.
>> Probably not a large document. It would not use COSE_KDF_Context. It
>> would use a new Enc_structure with content_encryption_algorithm.
> 
> There should still be something close to COSE_KDF_Context, because it
> is driven by ECDH (or KEM), and thus there should be KDF step.
> 
> 
>> It could define a -25 replacement too, one without COSE_KDF_Context.
> 
> Uh, the whole purpose of -25 is to have ECDH driving a KDF.

Yes, still must have a KDF and section 5.1 applies, but the “info” or "context information” input to the KDF would be a Recipient_structure like that proposed by Ori, not the COSE_KDF_Context from section 5.2.

LL

v2.23.0 | Report a Bug | By Email