IETF Logo Mail Archive

Re: [Curdle] Regarding X25519 in JOSE ...

Jim Schaad <ietf@augustcellars.com> Tue, 25 July 2017 03:59 UTC

Return-Path: <ietf@augustcellars.com>
X-Original-To: curdle@ietfa.amsl.com
Delivered-To: curdle@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 1FEE6126E3A for <curdle@ietfa.amsl.com>; Mon, 24 Jul 2017 20:59:33 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.001
X-Spam-Level:
X-Spam-Status: No, score=-2.001 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RP_MATCHES_RCVD=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=augustcellars.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 6Q4HVT0kEQpT for <curdle@ietfa.amsl.com>; Mon, 24 Jul 2017 20:59:31 -0700 (PDT)
Received: from mail4.augustcellars.com (augustcellars.com [50.45.239.150]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 20508126B7F for <curdle@ietf.org>; Mon, 24 Jul 2017 20:59:31 -0700 (PDT)
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Content-Language: en-us
DKIM-Signature: v=1; a=rsa-sha256; d=augustcellars.com; s=winery; c=simple/simple; t=1500955149; h=from:subject:to:date:message-id; bh=MThXoc9RDMXpaHHeFlP8z7b39u7Ijs5RJxZiUOt3S6E=; b=CqlG+BSCQmuJvN1gG7bYJwbOlOHFP4Lc3B/EBDuo0ve7mUAA06oCOjlI3PyNN3M8WFO1vgYKUoy aEei0KG3/WrPaeqmf/Ne9ZYzY7ZzSeNbGojYb0XPNZckaiYpXC+IPYFH+m5+1Dvc/IYj1Z+6aQrgb 5AOy44BVnBG/0Bi0G4FvheQv7u3kX9dJWs1EJsX5VvHN1Do+RpoMfwXo2xw4IpBUnYryFrwlwGIJi LYqs7pUcQl/N6zaJ5lul6MvStixigWfuRGFhkEQvR3yTl+uxhbAxGgQOwWYKUroNBbo1bqscuKwd2 iDVC4Gjpi5vxYwS0c/onuYQG14h5wrqaUvAA==
Received: from mail2.augustcellars.com (192.168.1.201) by mail4.augustcellars.com (192.168.1.153) with Microsoft SMTP Server (TLS) id 15.0.1263.5; Mon, 24 Jul 2017 20:59:08 -0700
Received: from Hebrews (104.129.192.109) by mail2.augustcellars.com (192.168.0.56) with Microsoft SMTP Server (TLS) id 15.0.1263.5; Mon, 24 Jul 2017 20:59:06 -0700
From: Jim Schaad <ietf@augustcellars.com>
To: 'Anders Rundgren' <anders.rundgren.net@gmail.com>, "'Matthew A. Miller'" <linuxwolf+ietf@outer-planes.net>, curdle@ietf.org
References: <e6cc679b-02a6-7710-4651-c2b59a56c892@outer-planes.net> <1365eab6-f45a-c5e9-99bc-194b5019814e@gmail.com>
In-Reply-To: <1365eab6-f45a-c5e9-99bc-194b5019814e@gmail.com>
Date: Tue, 25 Jul 2017 05:59:27 +0200
Message-ID: <008601d304fa$6b3e5aa0$41bb0fe0$@augustcellars.com>
MIME-Version: 1.0
X-Mailer: Microsoft Outlook 16.0
Thread-Index: AQFXtNyfHgq3or7cQqEwjQLL8dgFLAHIMF3Bo0xJJxA=
X-Originating-IP: [104.129.192.109]
Archived-At: <https://mailarchive.ietf.org/arch/msg/curdle/GVHazpHuUxq5H7PShB0AFE8DQZI>
Subject: Re: [Curdle] Regarding X25519 in JOSE ...
X-BeenThere: curdle@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "List for discussion of potential new security area wg." <curdle.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/curdle>, <mailto:curdle-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/curdle/>
List-Post: <mailto:curdle@ietf.org>
List-Help: <mailto:curdle-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/curdle>, <mailto:curdle-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 25 Jul 2017 03:59:33 -0000

I hope they do not do this.  The encoding format for the Edwards curves and
for the other EC curves is not the same in any way shape or form.   They are
different not only for JOSE but also for ASN.1.  Reusing the same classes
would be a mistake.

-----Original Message-----
From: Curdle [mailto:curdle-bounces@ietf.org] On Behalf Of Anders Rundgren
Sent: Monday, July 24, 2017 4:39 PM
To: Matthew A. Miller <linuxwolf+ietf@outer-planes.net>; curdle@ietf.org
Subject: Re: [Curdle] Regarding X25519 in JOSE ...

On 2017-07-24 16:26, Matthew A. Miller wrote:
> Hello all,
> 
> It was asked if any work more work is needed to add X25519 (and X448) 
> to JOSE.  I believe [RFC8037] covers that, so I don't think any more 
> work is necessary right now.

Would it be possible (and not too controversial) describing why
RFC8037 didn't overload the JWK "EC" specification?  The reason for asking
is because the Java camp intends reusing the EC classes making "OKP" a
JOSE-only concept.  Personally, I believe OKP is just fine (=clean) and
should be adopted not only by Java, but by PKCS #11 and .NET as well.

Anders

> 
> 
> Thanks,
> 
> 
> 
> _______________________________________________
> Curdle mailing list
> Curdle@ietf.org
> https://www.ietf.org/mailman/listinfo/curdle
> 

_______________________________________________
Curdle mailing list
Curdle@ietf.org
https://www.ietf.org/mailman/listinfo/curdle

v2.23.0 | Report a Bug | By Email