Re: [COSE] Updated drafts
Francesca Palombini <francesca.palombini@ericsson.com> Sat, 16 November 2019 10:17 UTC
Return-Path: <francesca.palombini@ericsson.com>
X-Original-To: cose@ietfa.amsl.com
Delivered-To: cose@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 5370C120119 for <cose@ietfa.amsl.com>; Sat, 16 Nov 2019 02:17:22 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.002
X-Spam-Level:
X-Spam-Status: No, score=-2.002 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ericsson.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Msr_rOJUpuB7 for <cose@ietfa.amsl.com>; Sat, 16 Nov 2019 02:17:19 -0800 (PST)
Received: from EUR01-HE1-obe.outbound.protection.outlook.com (mail-eopbgr130072.outbound.protection.outlook.com [40.107.13.72]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 66393120019 for <cose@ietf.org>; Sat, 16 Nov 2019 02:17:19 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=AT56++p/BQaI3FVhCQQttPFU1xUGcGcvMlXLABUSyaljPrsGBIT3Xppz3hYcjsT/I2tZAetvFQhBsohx8CXwXzPkLK/kgFP8dCXPXmm6e6rQ8GtWrp2fnxO9MJ7SbfH0rvLsO3NT6Y0Mj4BdlXFpcOITCjFxtcAJE+hiphrrQLGCTfGeRsI035Yn8lD67E/2N0QtV5x7scXGdCb2iM64qRiYn92OJsz8QXrIWvCS9bKGjmtUxvzjwE0hlT7Ztj/M3dcDw1vM2iOk4HGhNGD2eqxoCcvtzayGNzEXL9IE6q/NeGMMNiM3um856JRDLKkT7MmYkemdkQ+NkYNk1tBNhA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=ip+H0JvuHQ349uYa0Y3N4XsoDKObXABZVysHuSzZb6E=; b=NI/c3v2xnTXHKZJ1Zqy1N4qSVu/2Loqqni1pTTQePfPOp0Dx4T2OvFlonJrBPd+dzupbheiBA2671XYlJE2ccMosYJKsM6WI9FzaXBibZGWXdcy4DoW/tJGesxZOO8wsDxqGvJj0xiOAn/CRSRf4O/fxjTvX3BgOBOY49y1aB/wo6R/QDxiFqdIfyjLDBl1dtKanmvNXsMYXatWmf0GBzzsvKzjlvVx/uALxys5ZMFlKRblAME7+wDbW4CxDn109WuawyTB6IwfhHfk4X8NCgwdpVmlWIaQ1S3h+OV+0T7SCZc5mFeDSc+ShcTs2wj9d9kKwqrp21uF1S+3R+/1JKw==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=ericsson.com; dmarc=pass action=none header.from=ericsson.com; dkim=pass header.d=ericsson.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ericsson.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=ip+H0JvuHQ349uYa0Y3N4XsoDKObXABZVysHuSzZb6E=; b=NYEwA8rGeUtgKFA8xKxieXFxiufzdfakXxxwqK5wYiVw9GiQXX+mw6E0NmXkQozLqXl0VV0aYItVkaa22L2WtC8ocypk7YhJXQSV2wQRGQuPv0/aTrBXvE8aw59sruXzJCGp2PjsJfPF95wBMX7EtJtS2HHGESFLhxe7g3rGaxs=
Received: from VI1PR07MB5469.eurprd07.prod.outlook.com (20.178.14.214) by VI1PR07MB6480.eurprd07.prod.outlook.com (10.186.160.21) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2474.10; Sat, 16 Nov 2019 10:17:14 +0000
Received: from VI1PR07MB5469.eurprd07.prod.outlook.com ([fe80::a8d5:a784:a19:5c76]) by VI1PR07MB5469.eurprd07.prod.outlook.com ([fe80::a8d5:a784:a19:5c76%6]) with mapi id 15.20.2474.012; Sat, 16 Nov 2019 10:17:07 +0000
From: Francesca Palombini <francesca.palombini@ericsson.com>
To: Jim Schaad <ietf@augustcellars.com>, "cose@ietf.org" <cose@ietf.org>
CC: 'Marco Tiloca' <marco.tiloca@ri.se>
Thread-Topic: [COSE] Updated drafts
Thread-Index: AdWYp6hZdYNgVq3XTd+TBSneg8oFBAEAmWeA
Date: Sat, 16 Nov 2019 10:17:07 +0000
Message-ID: <B8DEAE42-767B-4052-96AC-50C4E893BF23@ericsson.com>
References: <001401d598a8$05e06f60$11a14e20$@augustcellars.com>
In-Reply-To: <001401d598a8$05e06f60$11a14e20$@augustcellars.com>
Accept-Language: en-GB, en-US
Content-Language: en-GB
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: spf=none (sender IP is ) smtp.mailfrom=francesca.palombini@ericsson.com;
x-originating-ip: [2001:67c:1232:144:8dcc:1ed9:445a:7667]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 85d4434b-bdfb-4e05-d0ee-08d76a7e22b1
x-ms-traffictypediagnostic: VI1PR07MB6480:
x-microsoft-antispam-prvs: <VI1PR07MB6480378F17D2F6B74555917798730@VI1PR07MB6480.eurprd07.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:10000;
x-forefront-prvs: 02234DBFF6
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(4636009)(39860400002)(346002)(366004)(376002)(396003)(136003)(189003)(199004)(6486002)(99286004)(44832011)(486006)(186003)(14454004)(7736002)(6436002)(305945005)(66946007)(2616005)(46003)(64756008)(66556008)(66476007)(33656002)(446003)(66446008)(15650500001)(6116002)(76116006)(478600001)(476003)(966005)(2906002)(5660300002)(91956017)(86362001)(8676002)(36756003)(76176011)(81156014)(6306002)(81166006)(8936002)(6246003)(4326008)(11346002)(229853002)(110136005)(14444005)(2501003)(25786009)(256004)(6506007)(316002)(102836004)(71200400001)(71190400001)(6512007); DIR:OUT; SFP:1101; SCL:1; SRVR:VI1PR07MB6480; H:VI1PR07MB5469.eurprd07.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; MX:1; A:1;
received-spf: None (protection.outlook.com: ericsson.com does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: ygqEAPjFd1Yu+VTeQ9C/19YUNEoci4fu9gGN5Qu+H4UdEoSGtwp6qnPy67+RUzn1+q34PsGlrHINfhlZPGx340jNLTAu6cCAXt9pbinRa8L62VxIP+CC0Uzlaxzt+5IHXujL9RhaSGRtBcjxpE7ikl+8Jo6yda9tNF+PUdyvQdcQUO8DcftnXICBcY+dy43xTM2ORMbFBmHqaJ8XYtNkAT8FsgZGVMukbzAtjbsY7QUXKPiB914NVH63hGxBREZI5580RMFhdMhzTz0tCWRyt4uqcEoqFheBqTG/zhfvvF0FkNhiFsy1hVpfYZse6l0X+vcX0MpXvhPGzHNqHSFSQD7soJxkLK2nWr7XC+uAJGoFGTAzaK1wZYVUeqH4QU0SziMSV7b06wjrVkkUD5nwOJRWBb3GO3wZPxvv5HWnAlro6bDStzP+/NG+Bw2UfmBF
x-ms-exchange-transport-forked: True
Content-Type: text/plain; charset="utf-8"
Content-ID: <DCC471403B942349AF97EF21AF39D1FB@eurprd07.prod.outlook.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: ericsson.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 85d4434b-bdfb-4e05-d0ee-08d76a7e22b1
X-MS-Exchange-CrossTenant-originalarrivaltime: 16 Nov 2019 10:17:07.6077 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 92e84ceb-fbfd-47ab-be52-080c6b87953f
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: i++dCYWJSvZSc+CPRUX7RBzYStMWZhrgtSLQe5U+Brhmgc/NSHh5EBCKOFMzyHsb6eKjIPyMuuuMRce+zwRYPxVR/UAgJrfOmDU67jhR2ue/jBYGH1F8LP2NKQK2gOyh
X-MS-Exchange-Transport-CrossTenantHeadersStamped: VI1PR07MB6480
Archived-At: <https://mailarchive.ietf.org/arch/msg/cose/uFZ-cstnfhgj0n8Pb4t2WX7buz8>
Subject: Re: [COSE] Updated drafts
X-BeenThere: cose@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: CBOR Object Signing and Encryption <cose.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/cose>, <mailto:cose-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/cose/>
List-Post: <mailto:cose@ietf.org>
List-Help: <mailto:cose-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/cose>, <mailto:cose-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 16 Nov 2019 10:17:22 -0000
Hi Jim,
Thank you for this update. I have a couple of questions about the IANA registries in the algorithms draft.
* Why did you set the "Capabilities" of COSE Key Types registry to "kty, x "? In particular, I do not see why having "kty" in this column would be helpful at all. The kty value for each line in the "Capabilities" column should be the same as the value in the "Name" column, i.e. "1, crv" for Key Type 1, "2, crv" for Key Type 2, "3" for Key Type 3 etc. I suspect you did add it to match the "Parameters" column of section 9.2 of OSCORE groupcomm, but if that's the case, having only the second element of the current column would be enough. We could then define in OSCORE groupcomm the format as "kty (taken from "Name"), X taken from Capabilities for that kty".
* I would expect this document to define exactly how the fields in Capabilities are formatted, and what values they take. It is enough to have a sentence saying "crv is defined in section TBD, and can take the following values: TBD from this registry: TBD". Also, the reference column of this registry should be updated to also point to this document.
* I have a hard time understanding the update to COSE Algorithms registry. You have added a column called "Capabilities", and populated every raw for all the algorithms with the string "kty"? How does that help? Maybe you wanted to point to the COSE Key Type to use with that algorithm? That would mean adding a "Key Type" column (rather than a "Capabilities"), populated with the value from the "Name" or "Value" column of COSE Key Types registry, for each algorithm. Then we would extract the capabilities for that algorithm by looking at the Capabilities for the right key type. Another option would be to duplicate the information from "COSE Key Types" Capabilities into the Capabilities column of COSE Algorithm that you define, but I don't like duplicating things. If we cannot assume that "Capabilities" are the same for the algorithm and for the key type, I would add the "Capablities" column in the COSE Algorithm as well. Even then, I do think a "Key Type" column with the "Name" or "Value" from COSE Key Types would be useful. That is the way to link: "You use this type of key with this algorithm".
Example of what I think this should look like:
COSE Key Types registry:
Name | Value | Capabilities | Ref
1 | OKP | crv | This doc
2 | EC2 | crv | This doc
Crv field for Value OKP takes the values from Table 22 of RFC8152 for Key Type OKP
Crv field for Value EC2 takes the values from Table 22 of RFC8152 for Key Type EC2
etc
COSE Algorithms registry:
Add a "Key Type" parameter, that takes for value for example:
Name | ... | Key Type
EdDSA | ... | OKP (or 1)
etc
Hope this makes sense,
Francesca
On 11/11/2019, 23:53, "COSE on behalf of Jim Schaad" <cose-bounces@ietf.org on behalf of ietf@augustcellars.com> wrote:
I have finally gotten to the point of sending this message.
I updated three drafts before the submission deadline
* The X.509 and hash algorithm drafts were updated to address WGLC comments
* The Algorithms draft was updated with an attempt to get a more
generalized version of what was needed by the group communication algorithm
details.
I need to get feedback on the new capabilities defintions to see if I have
missed anything significant and to see if this will substitute for what was
desired by the group communication authors.
Jim
_______________________________________________
COSE mailing list
COSE@ietf.org
https://www.ietf.org/mailman/listinfo/cose
- [COSE] Updated drafts Jim Schaad
- Re: [COSE] Updated drafts Francesca Palombini