IETF Logo Mail Archive

Re: [COSE] [Last-Call] Last Call: <draft-ietf-cose-webauthn-algorithms-05.txt> (COSE and JOSE Registrations for WebAuthn Algorithms) to Proposed Standard

Eric Rescorla <ekr@rtfm.com> Sat, 23 May 2020 21:36 UTC

Return-Path: <ekr@rtfm.com>
X-Original-To: cose@ietfa.amsl.com
Delivered-To: cose@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6EAD33A0D9E for <cose@ietfa.amsl.com>; Sat, 23 May 2020 14:36:41 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.896
X-Spam-Level:
X-Spam-Status: No, score=-1.896 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_NONE=0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=rtfm-com.20150623.gappssmtp.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id h0xpF3cP0tz8 for <cose@ietfa.amsl.com>; Sat, 23 May 2020 14:36:39 -0700 (PDT)
Received: from mail-lj1-x229.google.com (mail-lj1-x229.google.com [IPv6:2a00:1450:4864:20::229]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 05A6D3A0B65 for <cose@ietf.org>; Sat, 23 May 2020 14:36:39 -0700 (PDT)
Received: by mail-lj1-x229.google.com with SMTP id q2so16741061ljm.10 for <cose@ietf.org>; Sat, 23 May 2020 14:36:38 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=rtfm-com.20150623.gappssmtp.com; s=20150623; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=ewCaXmCJGmtUpUjo0YBBNrsWDTeVYKqguxMavqqaNR0=; b=cyCEtw8PDzrrjC7XcNoe38nWALPVcT3Dusq3p8r3+VUpaY/jo50vADkol9cQo9Z40p U36IMucPGgUVhWtp0VL6P0S/4pcEU84rx3Pam074gww4Ihc7rFsxJiN4m7yfQbqh5wKx hKKXVI8eAzPyTcQzu2UJX1x33+G3hG8t98IZbhVJhFNuwZ/3Y1UeuEPZ29zJB8N502lZ TeGY7ScG8X60xNXNhlZdSPwNr77KWvzDPqRCJ/esJdqHI+It0Ams7vOQhUpIINM0MXxt XdckXTEU4bqvLtRd1zde7aKIwi0ngztUCGKRokBLLOVRsityLAA2heBw7qXjntNAhP6y TzYA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=ewCaXmCJGmtUpUjo0YBBNrsWDTeVYKqguxMavqqaNR0=; b=tENLKGNY0DUW3ClVGmbxVf8XsS4mRaOGIuVjsyTWZKejE/ot/oacqC0QsYybOr5OhN /cCdRp4gCOWwmS5AzFKS1tMlw9+lqlLh5ayxtGaFJtHp7V5AY03527ute0W6vucFn9SG v5HNFMhaeIGjmXOVvMuQghGY910fvtA1QhixBGar8boD15etha2yJ3Z8ZjAYrsZLFNl3 172XF8nt2KT4tzNgx3CyLZUvMXlJ+35Dbt5cZAbrQirvPlowKrJrL2/xdbip560vjRyH uFCsuj+b+hU44Ac+mLPEO4rYlSqXPPAcXBqobeskywUvM0yaq0zNxB0PSi5VVa9lhPWt byWQ==
X-Gm-Message-State: AOAM531kF4a/qR5EOWF4ue0efbm3X8HNX07NvEdjT6yOZpqwm1H5AJIU CJ1MmsWRypup1YesVwql3ASpY+rjfyXkapUM6dIZ8JF2pac=
X-Google-Smtp-Source: ABdhPJzOnRvsvvTZ4lwp4WyDXAxw31exV306PHSCR6DxcFPhhsp9Q66clzUsUgzpOBmnKWq4Zy4buJ/0peUJcZ1hx+s=
X-Received: by 2002:a2e:8053:: with SMTP id p19mr10574913ljg.199.1590269797257; Sat, 23 May 2020 14:36:37 -0700 (PDT)
MIME-Version: 1.0
References: <158937361695.30811.14534799425984840549@ietfa.amsl.com> <027401d630a9$12fa2d00$38ee8700$@augustcellars.com> <C22C1334-F8C1-4F19-9381-2C5585F9E41A@akamai.com>
In-Reply-To: <C22C1334-F8C1-4F19-9381-2C5585F9E41A@akamai.com>
From: Eric Rescorla <ekr@rtfm.com>
Date: Sat, 23 May 2020 14:36:01 -0700
Message-ID: <CABcZeBPHQkUf8M6BKeKVeVX=d5TJbPjxK_4RuD_cyuenPUOTDw@mail.gmail.com>
To: "Salz, Rich" <rsalz=40akamai.com@dmarc.ietf.org>
Cc: Jim Schaad <ietf@augustcellars.com>, "last-call@ietf.org" <last-call@ietf.org>, "cose@ietf.org" <cose@ietf.org>
Content-Type: multipart/alternative; boundary="0000000000005ce6e405a6578a58"
Archived-At: <https://mailarchive.ietf.org/arch/msg/cose/6rqx3rLMPmY6HK332QgIDEA8Ju0>
Subject: Re: [COSE] [Last-Call] Last Call: <draft-ietf-cose-webauthn-algorithms-05.txt> (COSE and JOSE Registrations for WebAuthn Algorithms) to Proposed Standard
X-BeenThere: cose@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: CBOR Object Signing and Encryption <cose.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/cose>, <mailto:cose-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/cose/>
List-Post: <mailto:cose@ietf.org>
List-Help: <mailto:cose-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/cose>, <mailto:cose-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 23 May 2020 21:36:42 -0000

Good catch. We definitely should not be recommending sep256k1.

-Ekr


On Sat, May 23, 2020 at 1:30 PM Salz, Rich <rsalz=
40akamai.com@dmarc.ietf.org> wrote:

> >    I believe that the IESG needs to debate if this document should be
> the one
>     which makes the secp256k1 curve a recommended IETF curve to use.
>
> A good point, albeit slightly subtle.  +1.
>
>
>
> --
> last-call mailing list
> last-call@ietf.org
> https://www.ietf.org/mailman/listinfo/last-call
>

v2.23.0 | Report a Bug | By Email