Re: [COSE] Adoption of RSA and alternative algorithms
Jim Schaad <ietf@augustcellars.com> Mon, 01 August 2016 01:21 UTC
Return-Path: <ietf@augustcellars.com>
X-Original-To: cose@ietfa.amsl.com
Delivered-To: cose@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 17DB912B057 for <cose@ietfa.amsl.com>; Sun, 31 Jul 2016 18:21:40 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.187
X-Spam-Level:
X-Spam-Status: No, score=-3.187 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, RP_MATCHES_RCVD=-1.287, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id YV8YHs1-853Z for <cose@ietfa.amsl.com>; Sun, 31 Jul 2016 18:21:37 -0700 (PDT)
Received: from mail2.augustcellars.com (augustcellars.com [50.45.239.150]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 856DB128874 for <cose@ietf.org>; Sun, 31 Jul 2016 18:21:36 -0700 (PDT)
Received: from hebrews (24.21.96.37) by mail2.augustcellars.com (192.168.0.56) with Microsoft SMTP Server (TLS) id 15.0.1178.4; Sun, 31 Jul 2016 18:27:24 -0700
From: Jim Schaad <ietf@augustcellars.com>
To: 'Mike Jones' <Michael.Jones@microsoft.com>, 'Justin Richer' <jricher@mit.edu>, 'cose' <cose@ietf.org>
References: <D2BD06DF-12B1-4C65-AD76-6E43ACCE19C3@mit.edu> <SN1PR0301MB1645C0E1B5C350AA2E606185F5030@SN1PR0301MB1645.namprd03.prod.outlook.com> <00aa01d1eb5d$7e5ee850$7b1cb8f0$@augustcellars.com> <SN1PR0301MB16453F6E8BFBE3E09B905A43F5030@SN1PR0301MB1645.namprd03.prod.outlook.com> <00b601d1eb61$f4657560$dd306020$@augustcellars.com> <SN1PR0301MB164597203D370BEE2583D1ACF5030@SN1PR0301MB1645.namprd03.prod.outlook.com> <00c801d1eb6a$de328a90$9a979fb0$@augustcellars.com> <SN1PR0301MB164539E43BEB32FA456CC251F5030@SN1PR0301MB1645.namprd03.prod.outlook.com>
In-Reply-To: <SN1PR0301MB164539E43BEB32FA456CC251F5030@SN1PR0301MB1645.namprd03.prod.outlook.com>
Date: Sun, 31 Jul 2016 18:21:10 -0700
Message-ID: <00ea01d1eb92$fe41e920$fac5bb60$@augustcellars.com>
MIME-Version: 1.0
Content-Type: multipart/alternative; boundary="----=_NextPart_000_00EB_01D1EB58.51E69390"
X-Mailer: Microsoft Outlook 16.0
Thread-Index: AQGiSpBLC8nUUGinATiuQKjdphKgtwJIhm3VAaQM0vICNz+vCwLMounIAMGU13ABndILeQH4XY2HoChN1SA=
Content-Language: en-us
X-Originating-IP: [24.21.96.37]
Archived-At: <https://mailarchive.ietf.org/arch/msg/cose/ui4mdA12XmW87S5UlAWd2nm4GTI>
Subject: Re: [COSE] Adoption of RSA and alternative algorithms
X-BeenThere: cose@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: CBOR Object Signing and Encryption <cose.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/cose>, <mailto:cose-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/cose/>
List-Post: <mailto:cose@ietf.org>
List-Help: <mailto:cose-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/cose>, <mailto:cose-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 01 Aug 2016 01:21:40 -0000
An in that case you can request specific values or other such things in the registration template. One generally also provides a rationalization for that specific value or range as part of the request. This is similar to what I have done for the CBOR content-type registry requests in the COSE document. The general idea is to discourage point squatting so that there is not a problem with having the same value in the registry used for two different things both of which are in the wild and then you need to figure out how to deal with it. One can also, if there is justification, request an early code point assignment in cases where it is known that implementations are waiting for the assignment to be made and need to get to market. I don’t know that any such need exists at this point, but the case might be made in the future for doing this. The point is, if you let IANA do its job then things will generally work more smoothly. From: COSE [mailto:cose-bounces@ietf.org] On Behalf Of Mike Jones Sent: Sunday, July 31, 2016 2:37 PM To: Jim Schaad <ietf@augustcellars.com>; 'Justin Richer' <jricher@mit.edu>; 'cose' <cose@ietf.org> Subject: Re: [COSE] Adoption of RSA and alternative algorithms Even so, given that we want specific identifiers to be allocated in specific numeric ranges, it seems less error-prone to include the suggested values to register in the specification. If there are actual conflicts at registration time, these suggested values would obviously be changed anyway. In my experience, both IANA and the RFC Editors are happiest when as much as possible is in final form when they begin to process the documents. Obviously either way would work. -- Mike From: COSE [mailto:cose-bounces@ietf.org] On Behalf Of Jim Schaad Sent: Sunday, July 31, 2016 1:34 PM To: Mike Jones <Michael.Jones@microsoft.com <mailto:Michael.Jones@microsoft.com> >; 'Justin Richer' <jricher@mit.edu <mailto:jricher@mit.edu> >; 'cose' <cose@ietf.org <mailto:cose@ietf.org> > Subject: Re: [COSE] Adoption of RSA and alternative algorithms You misunderstand the process. The RFC editor replaces the TBDs with the IANA assigned values just before Auth48 From: COSE [mailto:cose-bounces@ietf.org] On Behalf Of Mike Jones Sent: Sunday, July 31, 2016 12:34 PM To: Jim Schaad <ietf@augustcellars.com <mailto:ietf@augustcellars.com> >; 'Justin Richer' <jricher@mit.edu <mailto:jricher@mit.edu> >; 'cose' <cose@ietf.org <mailto:cose@ietf.org> > Subject: Re: [COSE] Adoption of RSA and alternative algorithms The problem with this, unless I misunderstand the process, is that it will result in an RFC containing TBD# for the assignments, rather the actual numbers, which is less useful to developers. I think it would be better for the RFC to contain the assigned numbers. From: COSE [mailto:cose-bounces@ietf.org] On Behalf Of Jim Schaad Sent: Sunday, July 31, 2016 12:30 PM To: Mike Jones <Michael.Jones@microsoft.com <mailto:Michael.Jones@microsoft.com> >; 'Justin Richer' <jricher@mit.edu <mailto:jricher@mit.edu> >; 'cose' <cose@ietf.org <mailto:cose@ietf.org> > Subject: Re: [COSE] Adoption of RSA and alternative algorithms Or better, go through the normal IANA registration process to get them From: Mike Jones [mailto:Michael.Jones@microsoft.com] Sent: Sunday, July 31, 2016 12:02 PM To: Jim Schaad <ietf@augustcellars.com <mailto:ietf@augustcellars.com> >; 'Justin Richer' <jricher@mit.edu <mailto:jricher@mit.edu> >; 'cose' <cose@ietf.org <mailto:cose@ietf.org> > Subject: RE: [COSE] Adoption of RSA and alternative algorithms Thanks for the info, Jim. Since the numeric assignments are wrong, the first thing to do for either draft would be to incorporate correct ones. -- Mike From: COSE [mailto:cose-bounces@ietf.org] On Behalf Of Jim Schaad Sent: Sunday, July 31, 2016 11:58 AM To: Mike Jones <Michael.Jones@microsoft.com <mailto:Michael.Jones@microsoft.com> >; 'Justin Richer' <jricher@mit.edu <mailto:jricher@mit.edu> >; 'cose' <cose@ietf.org <mailto:cose@ietf.org> > Subject: Re: [COSE] Adoption of RSA and alternative algorithms From: COSE [mailto:cose-bounces@ietf.org] On Behalf Of Mike Jones Sent: Sunday, July 31, 2016 11:27 AM To: Justin Richer <jricher@mit.edu <mailto:jricher@mit.edu> >; cose <cose@ietf.org <mailto:cose@ietf.org> > Subject: Re: [COSE] Adoption of RSA and alternative algorithms Responses inline… From: COSE [mailto:cose-bounces@ietf.org] On Behalf Of Justin Richer Sent: Friday, July 29, 2016 7:04 AM To: cose <cose@ietf.org <mailto:cose@ietf.org> > Subject: [COSE] Adoption of RSA and alternative algorithms Hi all, hope that everyone is recovering from Berlin. As discussed in the meeting last week, the working group is considering additional work on RSA and other algorithms in the COSE messages framework. These would be published in a document separate from the core draft that is now on its journey to RFC-land. The chairs would like to gauge the sentiment of the working group on a number of items related to this proposed work. Please respond with your answers to the list. 1) Do you think it’s necessary or worthwhile to define RSA and other additional algorithms in the COSE messages framework? A) Yes, we should do an RSA/other-algs document B) No, we shouldn’t do an RSA/other-algs document C) Yes, but not right now D) I need more information (please ask what you want to know) E) I don’t give a flying rat whether this gets done or not A) Yes, we should do an RSA document now. These are needed now. Other algorithms can come later and be registered then. 2) If the work is adopted, where should it be done? A) Here in COSE (we’ll keep the group open for this item) B) In other working group (please specify where; note that ACE is a possible option) C) I need more information (ask what you want to know) D) I don’t give a flying rat where this happens A) Here in COSE (we’ll keep the group open for this item) 3) If the work is adopted, which draft is a good starting point? A) Jim’s draft: https://tools.ietf.org/html/draft-schaad-cose-alg-01 B) Mike’s draft: https://tools.ietf.org/html/draft-jones-cose-rsa-00 C) Some other draft (please tell us which one it is or offer to write it yourself) D) I need more information (ask what you want to know) E) I don’t give a flying rat which document we start with B) Mike’s draft: https://tools.ietf.org/html/draft-jones-cose-rsa-00 because it already has the numeric assignments in place and doesn’t have any other algorithms besides the RSA algorithms The numeric assignments are wrong as I have reordered the set of algorithms after the fork occurred. Jim We’re going to keep this thread open for two weeks at the AD’s request, and the chairs will try to make a consensus call at the end of that time period. Thank you, — Justin & Kepeng, your COSE chairs \. - - . ' _ , -`. ' _,' _,' ' ,-' _/ ' ,-' \ _/ ' ,' \ _' ' ' _\' ' , _,-' \ _________ \,_,--' \ \\_______\ <smb://_______/> \ \\+=+=+=+\ <smb://+=+=+=+/> \ \\=+=+=+=\ <smb://=+=+=+=/> \ \\+=+=+=+\ <smb://+=+=+=+/> \ \\=+=+=+=\________ \ \\+=+=+=+____----)) \ \`---------.)))\\ \ ||+=+=+=+=+=\\ /\\ \ ||___________\\/ \\ \ ||------------\\ ejm \|| \\
- Re: [COSE] Adoption of RSA and alternative algori… Ludwig Seitz
- Re: [COSE] Adoption of RSA and alternative algori… Anthony Nadalin
- Re: [COSE] Adoption of RSA and alternative algori… Brian Campbell
- Re: [COSE] Adoption of RSA and alternative algori… Matias Woloski
- Re: [COSE] Adoption of RSA and alternative algori… Jim Schaad
- Re: [COSE] Adoption of RSA and alternative algori… Samuel Erdtman
- Re: [COSE] Adoption of RSA and alternative algori… Jim Schaad
- Re: [COSE] Adoption of RSA and alternative algori… Mike Jones
- Re: [COSE] Adoption of RSA and alternative algori… John Bradley
- Re: [COSE] Adoption of RSA and alternative algori… Jim Schaad
- Re: [COSE] Adoption of RSA and alternative algori… Mike Jones
- Re: [COSE] Adoption of RSA and alternative algori… Jim Schaad
- Re: [COSE] Adoption of RSA and alternative algori… Mike Jones
- Re: [COSE] Adoption of RSA and alternative algori… Mike Jones
- Re: [COSE] Adoption of RSA and alternative algori… Jim Schaad
- [COSE] Adoption of RSA and alternative algorithms Justin Richer