Re: [Curdle] draft-ietf-curdle-rsa-sha2-05
denis bider <denisbider.ietf@gmail.com> Wed, 19 April 2017 20:10 UTC
Return-Path: <denisbider.ietf@gmail.com>
X-Original-To: curdle@ietfa.amsl.com
Delivered-To: curdle@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7CECC129AE8 for <curdle@ietfa.amsl.com>; Wed, 19 Apr 2017 13:10:06 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.998
X-Spam-Level:
X-Spam-Status: No, score=-1.998 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Ldu4SjZKhmPv for <curdle@ietfa.amsl.com>; Wed, 19 Apr 2017 13:10:02 -0700 (PDT)
Received: from mail-qt0-x22f.google.com (mail-qt0-x22f.google.com [IPv6:2607:f8b0:400d:c0d::22f]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id CFA16129AE7 for <curdle@ietf.org>; Wed, 19 Apr 2017 13:10:01 -0700 (PDT)
Received: by mail-qt0-x22f.google.com with SMTP id y33so29394346qta.2 for <curdle@ietf.org>; Wed, 19 Apr 2017 13:10:01 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=Qqv3QVBhO5mBwgsKIbyUF3Gzt4QTBveh8HetnWzjikg=; b=FF9VVl/kXj5beAQO55yJG/DbQBag+eSYKQJZ5BhwvxKgu5jAnUGl2p70R3hnPsSn9O 4eSQeljmFEDYNn73gmafpR17rxc+G7bgmbgK1eBiBntNksa6fzvSOnT5/bRy9yvnKCgj qT9Ny0JAX24wFyoEG0w6uZdefJSBHg+FjXF7BkAyo8FBl2McTldvUv0vq59Mue0MIzSr rM4WcgkDFgCImDh/+7lJiV4OJRWKfZK3SZZakjO1BIoG9Yhq2gzd/3udWyX/efOpzzGJ BOFE2XC23SrJAtHZt+8NRVUthJJZTWFwD8rC7euqfj7e2Fnz1gzoP8xwjg+cYTpAr25b iHaw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc; bh=Qqv3QVBhO5mBwgsKIbyUF3Gzt4QTBveh8HetnWzjikg=; b=rRB7s5cQ9ck4Rshqi55Q5mXOoS3BBbVOx+RWcCX2FB4m0jXGnrcj7Gm01nOSLa4woQ 56AocZhhtlacT6Oix1lMi10nlWIrVvPbeKsV3UVAr6uutWcrXtFBG0Pzgn2hq8Owkwun EEBHJFsYjF9IT9hlByI8z9DbVO8F8kE+JbqXqLC496cxX+yZP3LJRY6PV1o1hZKZ77XH FYADee5nCshWMW3fPd5CzyOubjyFA6cgG/UwY/MrLcKAxvxA7x/5MZk11d2Hk+TMh7Xy uXy8+aPQ+xurTEXjyG10Qn6c0aC5LawFmjPnFrhJQ5FUz/zoBe71yzVXAUxOD3Wj0prP WPTw==
X-Gm-Message-State: AN3rC/7tXdYoy/bmEqw9R00gA0IM1bTAVlFNkXavZn3011moiwt2vYgc ift7EKECW06WsCW2T1F3nqQFotiTwg==
X-Received: by 10.200.43.68 with SMTP id 4mr4362230qtv.47.1492632601053; Wed, 19 Apr 2017 13:10:01 -0700 (PDT)
MIME-Version: 1.0
Received: by 10.12.138.239 with HTTP; Wed, 19 Apr 2017 13:10:00 -0700 (PDT)
In-Reply-To: <7182.1492447893@eng-mail01.juniper.net>
References: <7182.1492447893@eng-mail01.juniper.net>
From: denis bider <denisbider.ietf@gmail.com>
Date: Wed, 19 Apr 2017 14:10:00 -0600
Message-ID: <CADPMZDCKLuXGx8ap7s8kC-R7vefz=9P8ScnbhopC-Mwy-Lm6Mg@mail.gmail.com>
To: "Mark D. Baushke" <mdb@juniper.net>
Cc: curdle <curdle@ietf.org>
Content-Type: multipart/alternative; boundary="001a11404f4cf74eca054d8a9b36"
Archived-At: <https://mailarchive.ietf.org/arch/msg/curdle/-HpR69YdKLEidSw14v7y4jLJbLo>
Subject: Re: [Curdle] draft-ietf-curdle-rsa-sha2-05
X-BeenThere: curdle@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "List for discussion of potential new security area wg." <curdle.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/curdle>, <mailto:curdle-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/curdle/>
List-Post: <mailto:curdle@ietf.org>
List-Help: <mailto:curdle-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/curdle>, <mailto:curdle-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 19 Apr 2017 20:10:06 -0000
Hey Mark! RFC 3447 is obsoleted by RFC 8017, which is currently listed as a normative reference. It is normative because it's needed to implement the spec. The reference to RFC 8017 is currently made in section 3 (where the signature details are defined). Did you mean another reference should be made to this document in section 5.3? For easier lookup, perhaps? denis On Mon, Apr 17, 2017 at 10:51 AM, Mark D. Baushke <mdb@juniper.net> wrote: > Section 5.3 discusses PKCS#1 v1.5 Padding and Signature Verification > > It may be desirable to add an informative reference to RFC3447 which > discusses PKCS#1 v2.1 to define RSASSA-PSS vs RSASSA-PKCS1-v1_5. > > I know of at least one organization (sogis.org) > > http://www.sogis.org/uk/supporting_doc_en.html > > In the document: > > http://www.sogis.org/documents/cc/crypto/SOGIS-Agreed-Cryptographic- > Mechanisms-1.0.pdf > > (sections 5.1 and 5.2) which seems to want to disallow RSASSA-PKCS1-v1.5 > going forward in the general case. > > -- Mark > > _______________________________________________ > Curdle mailing list > Curdle@ietf.org > https://www.ietf.org/mailman/listinfo/curdle >
- [Curdle] draft-ietf-curdle-rsa-sha2-05 Mark D. Baushke
- Re: [Curdle] draft-ietf-curdle-rsa-sha2-05 denis bider
- Re: [Curdle] draft-ietf-curdle-rsa-sha2-05 Mark D. Baushke
- Re: [Curdle] draft-ietf-curdle-rsa-sha2-05 denis bider