Re: [COSE] [Last-Call] Last Call: <draft-ietf-cose-webauthn-algorithms-05.txt> (COSE and JOSE Registrations for WebAuthn Algorithms) to Proposed Standard
Mike Jones <Michael.Jones@microsoft.com> Wed, 03 June 2020 16:50 UTC
Return-Path: <Michael.Jones@microsoft.com>
X-Original-To: cose@ietfa.amsl.com
Delivered-To: cose@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8127A3A0956; Wed, 3 Jun 2020 09:50:02 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.1
X-Spam-Level:
X-Spam-Status: No, score=-2.1 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=microsoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id wbSPoopvWX1t; Wed, 3 Jun 2020 09:50:00 -0700 (PDT)
Received: from NAM06-DM3-obe.outbound.protection.outlook.com (mail-eopbgr640106.outbound.protection.outlook.com [40.107.64.106]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 672003A091C; Wed, 3 Jun 2020 09:50:00 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=Lt2Sl7tVuH+b9ko2JtIeaW5NfDD8pq1K8nLTtFcuh7XtyMXqeJGfKZvF6FYX9qErZdyfe2xYQU952GbW4eaXZ5u5KYWBNITju5EbRpzsUnvJKABjuFaX6v9+GsAdIYKsSW1Uyqd+uCFfvnmfJKO790Obbx+NnBmu5ItjCk4UuqS55V/rVcy+1JK2vz1HAvDWgGWqqSDy8h49fqOdgKXqIDmBhCA4xOnCjJGPtivfE+LV+/DqGriLvTjiYM60V0LcPUl853hingGPTTKZu6au7U3V0TUxg7UWv/TqnI93bJYtbNMh5weHklswEHCKbS7zj0hVbfEufYL8PVuv5PEEAg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=eAbEtqvo9B49wS7lxVV6DdkRjFsYaxA8ryJMJLgwr90=; b=isVSjWaYjXSugasHhTYfW9xFLAv0HjM3xB0hJUZ8+WvjbyeefByKODPU7xWEHNUuhtal9thyifbR7sCo4/pruvFtbzM9lLLIHzwb8SETiKx+ZzrD42rs2RyHBdRFkkGmz9TEqisUa/m7bA2zVUduJPVwcNdDzdBJQEIE31HeKk5405OdXFn+jPJ9dKO4QX04sPfHZrA1TJ4/qk8jfxQXA5DyCbNk1lGtw8uIgv9RWecB8BG6kGwSVCBywlhcqXh/39AvAnAxUoxf7xAhRGbKKtM/jdrJVlp6Wh2Bhj8faROxUH0XKTH1ygZGPSWsq+6Y91QR+noY20lHEuYc3Agq6A==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=microsoft.com; dmarc=pass action=none header.from=microsoft.com; dkim=pass header.d=microsoft.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=selector2; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=eAbEtqvo9B49wS7lxVV6DdkRjFsYaxA8ryJMJLgwr90=; b=ArYix5be+lz1fP1/AfJd8Zu9Rd/iGy7VIEJ/yAlc+BBngAu0VUNPsf5svhGtutxmlp6jLJGkcjcbalG/wGnms0Wbjvje7PEoD7B/icwA78+TLdzK7+ryhSnjlhR4XOqEK4PAym8eBiSICEY31aQJLFg/JL697IRh0qpaI9k8urY=
Received: from MN2PR00MB0688.namprd00.prod.outlook.com (2603:10b6:208:199::23) by BL0PR00MB0307.namprd00.prod.outlook.com (2603:10b6:207:1e::33) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3104.0; Wed, 3 Jun 2020 16:49:57 +0000
Received: from MN2PR00MB0688.namprd00.prod.outlook.com ([fe80::c1e4:c91b:f4de:f548]) by MN2PR00MB0688.namprd00.prod.outlook.com ([fe80::c1e4:c91b:f4de:f548%5]) with mapi id 15.20.3107.000; Wed, 3 Jun 2020 16:49:57 +0000
From: Mike Jones <Michael.Jones@microsoft.com>
To: Eric Rescorla <ekr@rtfm.com>, "rsalz@akamai.com" <rsalz@akamai.com>
CC: "last-call@ietf.org" <last-call@ietf.org>, Jim Schaad <ietf@augustcellars.com>, "cose@ietf.org" <cose@ietf.org>
Thread-Topic: [COSE] [Last-Call] Last Call: <draft-ietf-cose-webauthn-algorithms-05.txt> (COSE and JOSE Registrations for WebAuthn Algorithms) to Proposed Standard
Thread-Index: AdYxXK5oD21D1OE4Q7aiB+KOED7TnwIaeXCg
Date: Wed, 03 Jun 2020 16:49:56 +0000
Message-ID: <MN2PR00MB0688C598816D9CFDC595BFCDF5880@MN2PR00MB0688.namprd00.prod.outlook.com>
References: <DM6PR00MB068462959AADE20D1CE2BDE4F5B50@DM6PR00MB0684.namprd00.prod.outlook.com>
In-Reply-To: <DM6PR00MB068462959AADE20D1CE2BDE4F5B50@DM6PR00MB0684.namprd00.prod.outlook.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
msip_labels: MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_ActionId=6f8afca1-ed22-409e-a0ab-0000cf3991d6; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_ContentBits=0; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Enabled=true; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Method=Standard; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Name=Internal; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_SetDate=2020-05-23T23:38:37Z; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_SiteId=72f988bf-86f1-41af-91ab-2d7cd011db47;
authentication-results: rtfm.com; dkim=none (message not signed) header.d=none;rtfm.com; dmarc=none action=none header.from=microsoft.com;
x-originating-ip: [50.47.87.252]
x-ms-publictraffictype: Email
x-ms-office365-filtering-ht: Tenant
x-ms-office365-filtering-correlation-id: 6bc53cc4-f3c9-4c24-52b6-08d807de25cf
x-ms-traffictypediagnostic: BL0PR00MB0307:
x-microsoft-antispam-prvs: <BL0PR00MB03074C8E36669C78F133153EF5880@BL0PR00MB0307.namprd00.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:10000;
x-forefront-prvs: 04238CD941
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: w7lZB3mfC44GJ2T1r3afiaJnGfkJGDyYW4fM+MHR0N+njINY70uW7NTqR6Y4Nb5ekca3b8gB3Vhgpofdj7uAgoEoYy6RFQwIkrcHi4EjYABVKJ/gLUDvmltu5EHMmtU2l0qAzP24T63uGuDu6yx+mWHyW1dPcGSN1hKAWZZz7e65xnuKJR3XVjtuGZ7G++VbcPMaW+6JMUJMyzu7uE4JZwJZKbFaYBbAJteL7mWt8QDhZKADOfVZud4bGSsctSNaMcK8gwQSoJ0hElBpsnpM/OFxZyHAaTxVa5153swhcOn9xXod8Bop1lN3jal2rXv9doeq4zC6kR1CjX+DF4KUE3tKZ1rJBBmxmO1mX1YIi92A4dNwQ5wRCXWwRFrISS5rrI/5lEmBERu6+iTLKjargA==
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:MN2PR00MB0688.namprd00.prod.outlook.com; PTR:; CAT:NONE; SFTY:; SFS:(4636009)(39860400002)(136003)(346002)(396003)(376002)(366004)(2906002)(33656002)(966005)(66446008)(66556008)(76116006)(86362001)(64756008)(8936002)(10290500003)(478600001)(66946007)(8676002)(316002)(66476007)(83380400001)(166002)(110136005)(54906003)(9686003)(82950400001)(82960400001)(7696005)(52536014)(5660300002)(55016002)(186003)(71200400001)(4326008)(8990500004)(53546011)(26005)(6506007); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata: r7ktdvsjwiymmphWyc1HxN5LfRcwJXOyz3O4KKXCbycKPZ8mrdgYL2FC1rJJYCCeKMJLXp6SsFvrznpYPGU8vbmgkOncWAi2guIhjNeKSvh0t4HPdddKWrCFMqTfGFwldJZB7c5GwLeHX3BzExCYYxvnfsAAg/dOWASFrVpPJc/bhBWnBryzLP9lGKHNKsu5JIIVKrL9upc/5++KYzKQLGxR+myeVkhu5o49ZaszhR+1PVaPtjQ+x3MRjU0mPdY91KgqmSoEqGA6yJ2/ti16cRj/H553bKbvZGIfjMakiiCfPnluJdCet1XuVSMJ/mHiJUukzEtcg1ipBoRV/mA1iUZ28mb7T2CHRRJjFzHwiCgNubUd0WdeQNzdC/8ykuOgyKiRKi0FYEd17tdiqfZjmZ4Ff7k2QZ1fkhhqBpWRSDZ6oSa8cnskgGMBO9YiM8vZLn4jL7Pn1V0ERcJ8Itwe8N43wGa8SBUt5bDW7B+THA0=
x-ms-exchange-transport-forked: True
Content-Type: multipart/alternative; boundary="_000_MN2PR00MB0688C598816D9CFDC595BFCDF5880MN2PR00MB0688namp_"
MIME-Version: 1.0
X-OriginatorOrg: microsoft.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 6bc53cc4-f3c9-4c24-52b6-08d807de25cf
X-MS-Exchange-CrossTenant-originalarrivaltime: 03 Jun 2020 16:49:56.9053 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 72f988bf-86f1-41af-91ab-2d7cd011db47
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: +BPwY4uVPgsGEsEPvX8RjASWxaGOh67J3QWPFCjRSjWO4qo2xCQnRVTYtu7icJn3frQjAwkGFJ4kxWyvChfZOw==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BL0PR00MB0307
Archived-At: <https://mailarchive.ietf.org/arch/msg/cose/Y6Muq4dCOuJrY9bKuUV99WdOiic>
Subject: Re: [COSE] [Last-Call] Last Call: <draft-ietf-cose-webauthn-algorithms-05.txt> (COSE and JOSE Registrations for WebAuthn Algorithms) to Proposed Standard
X-BeenThere: cose@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: CBOR Object Signing and Encryption <cose.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/cose>, <mailto:cose-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/cose/>
List-Post: <mailto:cose@ietf.org>
List-Help: <mailto:cose-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/cose>, <mailto:cose-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 03 Jun 2020 16:50:03 -0000
https://tools.ietf.org/html/draft-ietf-cose-webauthn-algorithms-07 now registers secp256k1 and ES256K as “Recommended: No”, per your requests. -- Mike From: Mike Jones Sent: Saturday, May 23, 2020 4:49 PM To: Eric Rescorla <ekr@rtfm.com>; rsalz@akamai.com Cc: last-call@ietf.org; Jim Schaad <ietf@augustcellars.com>; cose@ietf.org Subject: Re: [COSE] [Last-Call] Last Call: <draft-ietf-cose-webauthn-algorithms-05.txt> (COSE and JOSE Registrations for WebAuthn Algorithms) to Proposed Standard I can certainly change the COSE recommendation status from Yes to No, if that’s the prevailing opinion. Those that have decided to use secp256k1 over the NIST and 25519 curves will likely continue to do so no matter what we decide in this regard. I’ll wait until the last call expires on Wednesday to see what other comments may come in and then publish an updated draft. Thanks all, -- Mike From: COSE <cose-bounces@ietf.org<mailto:cose-bounces@ietf.org>> On Behalf Of Eric Rescorla Sent: Saturday, May 23, 2020 2:36 PM To: Salz, Rich <rsalz=40akamai.com@dmarc.ietf.org<mailto:rsalz=40akamai.com@dmarc.ietf.org>> Cc: last-call@ietf.org<mailto:last-call@ietf.org>; Jim Schaad <ietf@augustcellars.com<mailto:ietf@augustcellars.com>>; cose@ietf.org<mailto:cose@ietf.org> Subject: Re: [COSE] [Last-Call] Last Call: <draft-ietf-cose-webauthn-algorithms-05.txt> (COSE and JOSE Registrations for WebAuthn Algorithms) to Proposed Standard Good catch. We definitely should not be recommending sep256k1. -Ekr On Sat, May 23, 2020 at 1:30 PM Salz, Rich <rsalz=40akamai.com@dmarc.ietf.org<mailto:40akamai.com@dmarc.ietf.org>> wrote: > I believe that the IESG needs to debate if this document should be the one which makes the secp256k1 curve a recommended IETF curve to use. A good point, albeit slightly subtle. +1. -- last-call mailing list last-call@ietf.org<mailto:last-call@ietf.org> https://www.ietf.org/mailman/listinfo/last-call
- [COSE] Last Call: <draft-ietf-cose-webauthn-algor… The IESG
- Re: [COSE] Last Call: <draft-ietf-cose-webauthn-a… Jim Schaad
- Re: [COSE] [Last-Call] Last Call: <draft-ietf-cos… Salz, Rich
- Re: [COSE] [Last-Call] Last Call: <draft-ietf-cos… Eric Rescorla
- Re: [COSE] [Last-Call] Last Call: <draft-ietf-cos… Mike Jones
- Re: [COSE] [Last-Call] Last Call: <draft-ietf-cos… Mike Jones
- Re: [COSE] [Last-Call] Last Call: <draft-ietf-cos… Salz, Rich