IETF Logo Mail Archive

Re: [Cose] Key management for MACs (was Re: Review of draft-schaad-cose-msg-01)

Brian Campbell <bcampbell@pingidentity.com> Fri, 10 July 2015 22:37 UTC

Return-Path: <bcampbell@pingidentity.com>
X-Original-To: cose@ietfa.amsl.com
Delivered-To: cose@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7D23D1A0130 for <cose@ietfa.amsl.com>; Fri, 10 Jul 2015 15:37:26 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.378
X-Spam-Level:
X-Spam-Status: No, score=-1.378 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FM_FORGED_GMAIL=0.622, HTML_MESSAGE=0.001, SPF_PASS=-0.001] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id eBfpwr4rrYZv for <cose@ietfa.amsl.com>; Fri, 10 Jul 2015 15:37:25 -0700 (PDT)
Received: from mail-ie0-x236.google.com (mail-ie0-x236.google.com [IPv6:2607:f8b0:4001:c03::236]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 51C981A00B4 for <cose@ietf.org>; Fri, 10 Jul 2015 15:37:25 -0700 (PDT)
Received: by ietj16 with SMTP id j16so32006624iet.0 for <cose@ietf.org>; Fri, 10 Jul 2015 15:37:24 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=pingidentity.com; s=gmail; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc:content-type; bh=5TQXcqrkJT3a7GN+rBhh/fczCV8raoQDwxIiOzRJPD4=; b=fZSmzmuybPa+o02h2syFi9QK1tKjWrxIK9R8Pj9dNFbVnvtRKdYzrA8C9Yh4ppjR9h YwWIrGWah5fSOS7QWBGPZg3a+JtJfneQJSJxZ8QK1onVEBZO0tJcDLdvkkUfk8pSfWaY j0zJ0fQHlkshxgXbr3RKuyN3njMwsOokFXqpk=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc:content-type; bh=5TQXcqrkJT3a7GN+rBhh/fczCV8raoQDwxIiOzRJPD4=; b=hpADlIyRvH9Nfw6Uv7kF883QH5JMlXzIS7E2yITLiVQAcwtq3jRi5pIjYI2y3BnXk7 Tdc6OYVUQ4F1MNithcQNTow6aaEATRLlkCB/09CDhn32Y2Tz+vmzsvmLwrSTpT9pcITa vaDBFwHIOc1qUz2EkDBSS6gJKHCj1H95DNdh7+rfHWhflLhBIdrRmdKt1AMs+5gIcaNT yvDFu967urdiaHTmjjzEkc/pSdUAmvMbWqOOfdaqMRHz+iI/8oJKH81daZKD54EaG1gL 263yVRGeLK7vl5BtWKPvcYFIplLFfNicK57T5iSwSA4P/0QvfTsm9yM9ljrdX+vvnebh as8Q==
X-Gm-Message-State: ALoCoQkwvpioE3aXeERD7kTo/IVsWnTktuoI2DoW0CujyeI9/HTY/SU/3NkM/sdCXnXRfp1NmPdT
X-Received: by 10.50.13.34 with SMTP id e2mr1073439igc.23.1436567843282; Fri, 10 Jul 2015 15:37:23 -0700 (PDT)
MIME-Version: 1.0
Received: by 10.79.96.199 with HTTP; Fri, 10 Jul 2015 15:36:53 -0700 (PDT)
In-Reply-To: <002201d0bb60$71d6a010$5583e030$@augustcellars.com>
References: <CA+k3eCQUPxZfWM9XcKaTLN-WOx2cHEi9SAGSRFTtv71iSCUqdQ@mail.gmail.com> <559576A9.9090002@gmx.net> <BY2PR03MB442C02F758E34B29BBD0CEAF5970@BY2PR03MB442.namprd03.prod.outlook.com> <001001d0b90c$3c874af0$b595e0d0$@augustcellars.com> <00c501d0b9a5$c8f869d0$5ae93d70$@augustcellars.com> <CA+k3eCS-7UK9RDfnkKCLK0ApTdNhSamYY3LL73+e1=rBvz7vDA@mail.gmail.com> <sjmlheo6t1j.fsf@securerf.ihtfp.org> <20150710171118.GA20991@LK-Perkele-VII> <00b601d0bb3d$37fe0d60$a7fa2820$@augustcellars.com> <CA+k3eCTeDPP_1oqZ4U3c5a7Z16EgOd3qBjpsGuFxaGYrKJNAiA@mail.gmail.com> <002201d0bb60$71d6a010$5583e030$@augustcellars.com>
From: Brian Campbell <bcampbell@pingidentity.com>
Date: Fri, 10 Jul 2015 16:36:53 -0600
Message-ID: <CA+k3eCTU=mpOfQzkwLYwDr9ECSY6u3PEs5v1AWZ-brQk4Z2dMg@mail.gmail.com>
To: Jim Schaad <ietf@augustcellars.com>
Content-Type: multipart/alternative; boundary="089e01182d041072b3051a8d047a"
Archived-At: <http://mailarchive.ietf.org/arch/msg/cose/zFEk_VIbGnqc7Dw3CBq6-agkdaA>
Cc: Ilari Liusvaara <ilari.liusvaara@elisanet.fi>, cose@ietf.org
Subject: Re: [Cose] Key management for MACs (was Re: Review of draft-schaad-cose-msg-01)
X-BeenThere: cose@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: CBOR Object Signing and Encryption <cose.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/cose>, <mailto:cose-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/cose/>
List-Post: <mailto:cose@ietf.org>
List-Help: <mailto:cose-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/cose>, <mailto:cose-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 10 Jul 2015 22:37:26 -0000

On Fri, Jul 10, 2015 at 4:33 PM, Jim Schaad <ietf@augustcellars.com> wrote:

>
>
>
>
> *From:* Brian Campbell [mailto:bcampbell@pingidentity.com]
> *Sent:* Friday, July 10, 2015 3:07 PM
> *To:* Jim Schaad
> *Cc:* Ilari Liusvaara; cose@ietf.org
> *Subject:* Re: [Cose] Key management for MACs (was Re: Review of
> draft-schaad-cose-msg-01)
>
>
>
> And my question was about ephemeral-static DH and RSA-OAEP (both of which
> are used in the MAC example at
> https://cose-wg.github.io/cose-spec/#rfc.appendix.C.1.4) . Without the
> statement of origin, I don't see what value there is?
>
> It would be static-static DH not ES DH.  Otherwise – yes it is the same as
> RSA
>

So back to what I was originally saying - that RSA and the same as RSA are
the key management modes that I'm suggesting not be used for MAC.

v2.23.0 | Report a Bug | By Email