IETF Logo Mail Archive

[COSE] Security consideration -- signing recommened in addition to encryption

Laurence Lundblade <lgl@island-resort.com> Fri, 03 March 2023 20:22 UTC

Return-Path: <lgl@island-resort.com>
X-Original-To: cose@ietfa.amsl.com
Delivered-To: cose@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4B34CC14F724 for <cose@ietfa.amsl.com>; Fri, 3 Mar 2023 12:22:43 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id prnKV6Gmp0NO for <cose@ietfa.amsl.com>; Fri, 3 Mar 2023 12:22:42 -0800 (PST)
Received: from NAM10-DM6-obe.outbound.protection.outlook.com (mail-dm6nam10on2109.outbound.protection.outlook.com [40.107.93.109]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C7B11C14F726 for <cose@ietf.org>; Fri, 3 Mar 2023 12:22:42 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=ek2IPyN0OCx04EoHJKCECdqyvfeJ80xsIVkNCBsZzJeLs8CAYvdrznOy2YydzVUVymzT/eS5xo8S9tDjRmdjY7gSb2pZZlJNiKkEAvgWld2TeiLPrUtJQsFGEhuJxX93yZkAovUPGcFUExn+lUB3UgUG3BO/8FWXMdxKToISSgK2LkrlPiQA7ZMYS8G7IilWRoYRAC1pCEbQYWtufiudxtk83P98Q5U+DbNLhTBLZZB0RzIJV5e54063ALSElwDSrAETbDZLY59jqye3U3SF/7ldkda9bxP57SSosBITE92wYWuANdgCNVodfZxqlU8eyq6TNiNwn7VsQsHWYCIh7A==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=3QPRDu5u+k07OSaBuwh+IotSchR6woD0qJER0dDYYaY=; b=chKVPh4uqgi6LvcfxbRTdVqU2HzXrBHQ/Izb6gKs529vcly8+P6z8bUl5rBbVM6CkuYhVFpqVGOED5nwXdAvRGeOWV/OLY/uxCXAqIIvBJxWaXodfmkcR72cyHhQVcv3+pKgK0eff6sXOCaPgNOAbiC0bHu6dXgYLJ1P/zuCa4Wl+RVEsSgelX3Uz7RuXpLjSKGaRDbGBjHA5dM+IkqS1dtA9MTX42TjZkZv6RD3IJdcj/IyYykmpBbuhX39ugDoZGzHcD9m9IJwZLudjhaY4VHLS6lRbSM+svRLBJLF2VjYaufRXRCqpMuZJ7Y5OJB9GBFJvCJccaYUNTqS6rLMJA==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=island-resort.com; dmarc=pass action=none header.from=island-resort.com; dkim=pass header.d=island-resort.com; arc=none
Authentication-Results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=island-resort.com;
Received: from PH7PR22MB3092.namprd22.prod.outlook.com (2603:10b6:510:13b::8) by PH0PR22MB3257.namprd22.prod.outlook.com (2603:10b6:510:118::14) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.6156.19; Fri, 3 Mar 2023 20:22:35 +0000
Received: from PH7PR22MB3092.namprd22.prod.outlook.com ([fe80::1aae:283a:d7b:3d58]) by PH7PR22MB3092.namprd22.prod.outlook.com ([fe80::1aae:283a:d7b:3d58%3]) with mapi id 15.20.6156.019; Fri, 3 Mar 2023 20:22:35 +0000
From: Laurence Lundblade <lgl@island-resort.com>
Content-Type: multipart/alternative; boundary="Apple-Mail=_CE03C9EE-B360-48BA-98AD-A9811DD8214A"
Message-Id: <FBE8F6FB-5951-4864-8F69-359067A0ED56@island-resort.com>
Date: Fri, 03 Mar 2023 13:22:31 -0700
To: cose <cose@ietf.org>
X-Mailer: Apple Mail (2.3608.120.23.2.4)
X-ClientProxiedBy: SJ0PR03CA0073.namprd03.prod.outlook.com (2603:10b6:a03:331::18) To PH7PR22MB3092.namprd22.prod.outlook.com (2603:10b6:510:13b::8)
MIME-Version: 1.0
X-MS-PublicTrafficType: Email
X-MS-TrafficTypeDiagnostic: PH7PR22MB3092:EE_|PH0PR22MB3257:EE_
X-MS-Office365-Filtering-Correlation-Id: 5d2df6e9-f5bf-44b7-1e7c-08db1c25068d
X-MS-Exchange-SenderADCheck: 1
X-MS-Exchange-AntiSpam-Relay: 0
X-Microsoft-Antispam: BCL:0;
X-Microsoft-Antispam-Message-Info: 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
X-Forefront-Antispam-Report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:PH7PR22MB3092.namprd22.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230025)(39830400003)(346002)(376002)(136003)(366004)(396003)(451199018)(33656002)(86362001)(2616005)(36756003)(66946007)(186003)(6916009)(66556008)(33964004)(66476007)(2906002)(41300700001)(8936002)(6506007)(6486002)(478600001)(6512007)(8676002)(6666004)(26005)(52116002)(316002)(38100700002)(38350700002)(5660300002)(15650500001)(83380400001)(45980500001); DIR:OUT; SFP:1102;
X-MS-Exchange-AntiSpam-MessageData-ChunkCount: 1
X-MS-Exchange-AntiSpam-MessageData-0: aoVYAzd7orMJP504E81uQ/N7VXA1aXP1b0FIR2qfEcrMXm0G4Cy3VUFcqMq/4jBD2YGHw0h3WevrdG04Fc5LgnifC6BoRoXobBxOw+dq118FBo9HwgoDx4FDS+4V77y879UeRl99pKIDR+p2EF9CYizL94P6yh5cOgtvkQam2uhwYc8lUOLZTEM6y1hKn21pNdd8yJ/xBnbaKTfHlmEMmG+qWFUpv+xVhdsRoRnTlvtMl48WXtSbfYXDzB4FSd41BjiYYbIiAj46sInry9Srti1aN0cFiQu7oL5+xmUl9MiuqHPXbraSZJmy+vIMSngA2SJCsohjIyGh7cctXxkylVYU2krvCHBnkx4jGX6HAg6Bv+YXP+af1P4MAVG62XBwKSAwxFviO61yG0AvTMs70TNfifOMWuwFAtJWpc0qYL+V2OFNvuFGc02Y1/EB3Ya6wu94D/5nI7MdivbPoENAKOSERftmExR2dSCkYl7e+Cd+hMtSSs2s1aca0r5gWdx1gCFOWcXYQ/TrvEgvjb32/IKlnpEvfv/2pc/v8JWYGztgWkm4fQrZ7b9lc5Uc4YU3DsAk4JxxvoBHaDzX29ambdkmd/qcnuYvY561I+Z+Bih3dijVhGg4TDgM6tXoV7MUkWqGGxXR6FVsegvd5o0XwE+cAHqsSu9pwx8CGbbRvTnaeDaaSkuLi3cHdWkhQ0RVGIxJp4TuYs1SX6tfNq9N/aDi3GGxktcwNqDCa1ooG4SY94EA3dv0DcI6yqeMswT7ygHKUY9hWzZOy6PrC2nn16WK0uI+biz5nVXZSnXGof+lzaPsO3qLXuhP64ubAbolRKlmwoSXIyBpP7q7QxqEEV/SUuRGJoDBZlAGFXKMr0LqgG4wjrIJ0I9KIx/3XsPIskUwuK6L3FI0B76qK6g8Hmv7ARsUqVXFCcrzE4U00WiqwY0/bYYTPQWXdmd6N4iNisaBgQZJeqkqBnDJYw5+FWWt66qhhBCaxhXkix/m2X1XqPcs8rjcankoq7mPnLEkHsUkH1uIUnSBoMPDLtUnuUBKPPmK2gG7EoN+mcuHcb91MGBvgZvKzL+f3xGr8OYTIC8PggN0iz2UvTmY8+EihB6wK3mSLtIDsqxN1gxewreDnX+AL6XL5bwIG9ZI11dluHIvEHRYf5lrs1RJ81kqcvpba9P3p9fNepKSrzntHICODQqhUaCchnue+G35DF71HehurMGL+ZxCdl+5mBcRxMR0GAowi27lyagng9bDOC/xuluUOYmG25wv28AMJiLZYtpovA6LbuJs7fjXDtzaNTO+YfUFh7Bzc2UkL0wNz8z9Ckm8R5whfLIF/zDfuVnytKJ3C+9hxHlN2p5Ze8jReOJmA/GVVYbo2Flh3RTpHR6dhpY40OCjQyfPNeT5i+201MqD9w16EWMj0gY/IrQPzPd2LhTncDXGvZ+ZmTSu/n+49Xne0Itt+perY1Wy324VR0zfimoOseTZ04O10Z/HNp34bygav/KXckt0GfCfUbpaziYxhrDpD8fV7Znj7jJ/XcrQ2mMLN/scDyryeLAf+JgTqUQ4poHwc1R+J/7lHC/PyPwNH3+WHtGQoGpnFxGJ49rEE/OYFoOKwd6a3DGciQ==
X-OriginatorOrg: island-resort.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 5d2df6e9-f5bf-44b7-1e7c-08db1c25068d
X-MS-Exchange-CrossTenant-AuthSource: PH7PR22MB3092.namprd22.prod.outlook.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 03 Mar 2023 20:22:35.3598 (UTC)
X-MS-Exchange-CrossTenant-FromEntityHeader: Hosted
X-MS-Exchange-CrossTenant-Id: ad4b5b91-a549-4435-8c42-a30bf94d14a8
X-MS-Exchange-CrossTenant-MailboxType: HOSTED
X-MS-Exchange-CrossTenant-UserPrincipalName: HmD2stzPGBB5pmHQ/Mlv/W4OH/qZlQmSq2HSgMgIi7vvwj0ghgtYzPjuL1b+TRq6JMXy0EGm4cdPFbfMQBhvNg==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: PH0PR22MB3257
Archived-At: <https://mailarchive.ietf.org/arch/msg/cose/txUfiqt0Ynb7fpdP8raWjngo_wM>
Subject: [COSE] Security consideration -- signing recommened in addition to encryption
X-BeenThere: cose@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: CBOR Object Signing and Encryption <cose.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/cose>, <mailto:cose-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/cose/>
List-Post: <mailto:cose@ietf.org>
List-Help: <mailto:cose-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/cose>, <mailto:cose-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 03 Mar 2023 20:22:43 -0000

The COSE HPKE draft has this security consideration:

   The COSE_Encrypt structure MUST be authenticated using COSE
   constructs like COSE_Sign, COSE_Sign1, COSE_MAC, or COSE_MAC0.

It is really good this text is there, but I’d like to tweak it a bit:

Change MUST to SHOULD because there are (theoretically) cases where authenticity is not needed.  Perhaps some comment that most use cases will need authenticity to defend against forgery attacks — the attacker is likely to have access to the recipients public key. (Also prefer to avoid 2119 terms belong in security considerations).
Say that the AEAD in HPKE base_mode is not a substitute for the authenticity provided by COSE_Sign and such.

LL

v2.46.0 | Report a Bug | By Email | System Status