Re: [Curdle] [Technical Errata Reported] RFC8410 (7384)
Tim Hollebeek <tim.hollebeek@digicert.com> Wed, 15 March 2023 16:43 UTC
Return-Path: <tim.hollebeek@digicert.com>
X-Original-To: curdle@ietfa.amsl.com
Delivered-To: curdle@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 35A44C14CE2F for <curdle@ietfa.amsl.com>; Wed, 15 Mar 2023 09:43:58 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.097
X-Spam-Level:
X-Spam-Status: No, score=-7.097 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_HI=-5, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_NONE=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=digicert.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 14UMxfNafcRb for <curdle@ietfa.amsl.com>; Wed, 15 Mar 2023 09:43:53 -0700 (PDT)
Received: from NAM12-BN8-obe.outbound.protection.outlook.com (mail-bn8nam12on20701.outbound.protection.outlook.com [IPv6:2a01:111:f400:fe5b::701]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 77E53C14F75F for <curdle@ietf.org>; Wed, 15 Mar 2023 09:43:53 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=QMpeQepem2wm1PPrwCayEUVuUZ9GnkpYanfCrpYHhc0/xIPtjCEVSwPJY+Ve0zCwkhM2KfDGo9yQolo9Ztw2GOb0CUf4tiDcSWCNBMhyfM83v5TiiJHNO6/VmjU0hzsWbT/DgJsd++9FnR9LkdIye4UKHskNqZ0ggpIKLEGtHVhOSBXj/Lh/Fd2BVff+nI4nMzHAqgyHiEpy6mW0xCSCWcGCxrrr9egDnUkZ6ww7wqO1que71zrd7F4YlThkhon94lklK/dBp2zpwVQXRMQzbC6JJpiBCw6gD+xNDfDE7YyCEoirYNuMSdt8/4peACX2JPLyaMQ8TJa7u1rAMLbcPg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=I+2cZr7NiWjVhW/1ZqquYPnfkTdbbWlkPLTn4/DlInA=; b=InwvJpG0EL7zCCDlooyPNjok0fW/gASjQRS06AbgREFXUaAvoMgfa+GMU/86tQfyuATfTVhz+L3E+yGxwihF+qJcTw7vmdy9d0qBY9ioHfGSDh9sWlPK++EzRvPN8R90ppJe5JOo1ov2b+B/p+7n/m/sn5ssunhmxBsl2SuzAOOzexwl+K5DlgXtcr0J0kGSpd65JgstemjJdpfoLJk/dffbv3Bli51bj4n/dKakigdvY6kxuI1yOFTqwZdfmeI0fLqjRgj7opxSEu5kI99AJD5x9Og6tb0LTaRspxGuvc6dcnbq402EyvwhPHtjaxxMMbxjXKhER+nxafV+SKeMgw==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=digicert.com; dmarc=pass action=none header.from=digicert.com; dkim=pass header.d=digicert.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=digicert.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=I+2cZr7NiWjVhW/1ZqquYPnfkTdbbWlkPLTn4/DlInA=; b=st7IA9eZnTtM8NUC+BiwmIfCL3b+yt1VWKCfCHA5j0w4FJqsi67rs4I9NtnaXQJM1MDItv2UTr3UFVd/3gWd/qCPVyEeU9IRqKJosM2o4Bg/BGtoAjMsG92FfYKbE8oKaSw9SKcjww/DVsZc+rPeYyp9/AloxiKwjCMaaztk6hSBWt+SyraGIR/uT3e7eeh58q0NDiadhc2Ui0yOyGRJko9PLSbvnO8So54+GcoN11kHGUL+F+MqV60T08iiOX2g8ZYv0TJRkqiHGzGl/PiIvlAaUof/Xh15UEDtqQGQl6P+E6NlTWixgARmndxIKoRkwSD9+1LPS4GY24mzcRYx3Q==
Received: from MW5PR14MB5499.namprd14.prod.outlook.com (2603:10b6:303:19c::19) by IA1PR14MB6390.namprd14.prod.outlook.com (2603:10b6:208:421::13) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.6178.29; Wed, 15 Mar 2023 16:43:49 +0000
Received: from MW5PR14MB5499.namprd14.prod.outlook.com ([fe80::3644:51f9:d2ff:f64a]) by MW5PR14MB5499.namprd14.prod.outlook.com ([fe80::3644:51f9:d2ff:f64a%5]) with mapi id 15.20.6178.026; Wed, 15 Mar 2023 16:43:49 +0000
From: Tim Hollebeek <tim.hollebeek@digicert.com>
To: RFC Errata System <rfc-editor@rfc-editor.org>, "simon@josefsson.org" <simon@josefsson.org>, "ietf@augustcellars.com" <ietf@augustcellars.com>, "rdd@cert.org" <rdd@cert.org>, "paul.wouters@aiven.io" <paul.wouters@aiven.io>, "daniel.migault@ericsson.com" <daniel.migault@ericsson.com>, "rsalz@akamai.com" <rsalz@akamai.com>
CC: "housley@vigilsec.com" <housley@vigilsec.com>, "curdle@ietf.org" <curdle@ietf.org>
Thread-Topic: [Curdle] [Technical Errata Reported] RFC8410 (7384)
Thread-Index: AQHZVRQZalgB7kz8/Ui6eu8hkLvg8q78EJfw
Date: Wed, 15 Mar 2023 16:43:49 +0000
Message-ID: <MW5PR14MB5499AD30864D06E1D916443283BF9@MW5PR14MB5499.namprd14.prod.outlook.com>
References: <20230312185419.AE5245668D@rfcpa.amsl.com>
In-Reply-To: <20230312185419.AE5245668D@rfcpa.amsl.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=digicert.com;
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: MW5PR14MB5499:EE_|IA1PR14MB6390:EE_
x-ms-office365-filtering-correlation-id: 85464315-371e-4f9f-55e6-08db257473bf
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: YzMn7N3Son9V3q5HZAUSMKhNjYrHOoRmYIK4p1BhP3CSh4S+8c9djPo2f4vIR904LQF7CMy6DZ+ZObYLDzbyXdZsYh1wKIQ0Sk/uAqppq1+OFjpG89Cgj9yD8YiI3npKSrdidsVj1xu5m8sjrYuOlnirZihh9nFmSV9rra8l6OFkux96W95Ta3vbtxs2TlaNqRTPc6RGoKrdQveD91YLAQ5m7ArrNEbUWfyb2jMis8zL1kiat25djPDFXycItyKHEWwENoOdJozben4UQDy+xs5N8nJqaStM6t73YcSlKyKg748yEpJ8TmRnRJ+7MVGaosO8GmkluIe75x+H0tgcR9nqsWqT9Kdrnrde40gd6QIKcQBOrOpXrlE6zxYaSeX3PDj13yedJ0LcQUSpVQaowqVgVQ85pWDHVGwB7V9+YfWC0PMVRRdiEodeCyoZtiMc5Cz4HJHyKHfmy5+rBgStjoekjBMMNpbSWV03M9CiFxZ6W9bQKTfXW+JugabzFUFzkovHcTxZ1yPg4GmvIVNRKA3OJMuyDZUxlCHEg+WuIaWdnf57CO8TXMpIX8TzqydbzaIscqIAC+2Vm/UmIBQeIuSZ+beJJ+2xHQqzeZhU8Qtb9E5cHDqdM7kRwiGX6AzNz9asuscJUwS0qB/OyHDwzj287DpM8CDA3CZTfwy6OzmM2YBAXJlGhLHYw4UA9ksZ
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:MW5PR14MB5499.namprd14.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230025)(4636009)(136003)(376002)(39860400002)(346002)(366004)(396003)(451199018)(44832011)(8936002)(5660300002)(41300700001)(4326008)(8676002)(52536014)(55016003)(86362001)(33656002)(38070700005)(122000001)(38100700002)(2906002)(71200400001)(26005)(53546011)(9686003)(6506007)(186003)(478600001)(83380400001)(966005)(66574015)(64756008)(66476007)(66556008)(66446008)(7696005)(76116006)(54906003)(66946007)(110136005)(316002); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: yvSuKW0aHYbGRcjcbs8g7A7vYQWAXdfSM/F8d8cKWN6MmB1hLIv8MuKZepYF2xY8rkWAtqLkPfcn21weMZf7L94QVsXodntNo1xL8gCDF5G4O3CmJ4t5lzaNkTKMCjOnTKQh2QsfefDgBL9UfAhRUpdTAmgeyqs4ROeGCvMiPMWWWyhXQ/vfTbWt5Wa19HdXJhKyL4D00WJbEa92yM5BAkz8J0TKonpSJDtjFp1H2995W69Mza7riOrWq5OETDVFi9ReREdkzm0c7KKt3AuInFX2cE5rfjOsW7wgvC9UToOHpnGGYEbpZQjAW7i1jo12P6L8hgF0qelWxPZnwWL3XdGQCZXnFPIFwn3RlMbu6R6j21zTYS5502cR+QTSuExnPlwz332aq2WsjRnUPjN+f3xaS72WAquq7ZrfapWHiGGWT6p3096ruv/Y7QiJN+MlM29hINVxYnE5IhkjS/YlUqXfWQ5eVv/9vtD/2i8WdizKtZjAbViP6cWQyhkxQDoA7CCsWKOcyxbnKvTgLzfGxkBZHUepvq7wBxInfJCQAZ2y776O/v1fN02ZvhT489EWpLKRtrpXlzV1H+Pp6gHjxOOJ5bj3vGbGBMeKzWnjoelSCXuHy9zVP7nJM2CIHW5j9Crcnedm3Tnadulln57IVQN+G1Bs1YmUiDJemLbsu5jYhkAcInJj2G56YVKMy6J2S7CzxOo+I2GzF8fpUbHw6vTorOg7ItgpXMT0aPTdFoG/dW1ZAODJp8MnaQB1VK8LK9Xh8aA3H9laNgNSCoLInhiQqV8IeFbkafQATCmKBH98ZHbXKOaDCuAiYf51mfPwjnf6z5b07Q6LYOPux/24vcnkUxrFXCszL920VRFSk5iCzMi1IfRJ3BnDI/6phD6hWJDcfoncnY8K0SDVeqZ6X62bGDVzdXpK2ukTuFPuGSHCo+l4fGOyWQZNV2AKD6HM87K/vrD9HxSCwu1JETIn8x5CMnuelWf38KXk7GwljsjMX067qSbxTUuIa1gc4VcbvrxG9ZEC/AWudxdxbY9FaLnuAZa3F/0dHVTeHz+FSdTCcGtpkQVhjO/3DJxnCnuI94Nl//HDaxokpzAL12II0ZfkzJ92THv6YV4TvUx5FUW4kOB19sjM8yAR3P8He/90Fx1P3yjUSSMy7MjvGZmbxZMKORYIWZkmFMWeQgNH5Eq7EiQzZ6zU4oh1Vd+uuN/j7d1WZNbzysBk9W81VvaYlG4FHnlW5ow7N3QUbT0rP78ks+Q5czqVImmtN/We4pjXaFyWqly8D29iMohn0e0NDM7FbMHHOe0cNAGOwJYNMYWb7XqEK9SimWxdYEc0TW7tybXIs5s6KiUrBx8OxIxnePCRtJ4qWC7T6WMJq0zAxK08+/sEAe5bSodT5JcfSO8GruWRqs3YCXcBDfvK5r8usDOkvFpHLOnM52opZpW15nYh847X8r71Q5mKk8RnpG3zvJjCQLXXfY7c6W75ilagHjuoFAxYJ1J7FugRrEdF6kAkfeLI28b8iKjcwx0BmlLqIW6ydlMKy7eJL+YXlV2T8ltz+GBcp4xFWL1oehaeJ6aEI5nhmyHzk+4qlU+jpDtZOAKRrD4/Nnhh9BRyju/vmA==
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-OriginatorOrg: digicert.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: MW5PR14MB5499.namprd14.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 85464315-371e-4f9f-55e6-08db257473bf
X-MS-Exchange-CrossTenant-originalarrivaltime: 15 Mar 2023 16:43:49.1254 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: cf813fa1-bde5-4e75-9479-f6aaa8b1f284
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: XFa0ixmvjem4VX828iiC/BszQlHmSK8cdPvzZb3JQGB2nnaZLQy/n7nJrK+l2Pl/bz2dWFUSNRJUuGuBsNRZl8KLQCEAjYIBatFvLCJCpZs=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: IA1PR14MB6390
Archived-At: <https://mailarchive.ietf.org/arch/msg/curdle/TJUpz2rRK0m6M8HpQhSPImmBH1Y>
Subject: Re: [Curdle] [Technical Errata Reported] RFC8410 (7384)
X-BeenThere: curdle@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "List for discussion of potential new security area wg." <curdle.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/curdle>, <mailto:curdle-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/curdle/>
List-Post: <mailto:curdle@ietf.org>
List-Help: <mailto:curdle-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/curdle>, <mailto:curdle-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 15 Mar 2023 16:43:58 -0000
This is legit. Please mark this as verified. -Tim > -----Original Message----- > From: Curdle <curdle-bounces@ietf.org> On Behalf Of RFC Errata System > Sent: Sunday, March 12, 2023 2:54 PM > To: simon@josefsson.org; ietf@augustcellars.com; rdd@cert.org; > paul.wouters@aiven.io; daniel.migault@ericsson.com; rsalz@akamai.com > Cc: housley@vigilsec.com; curdle@ietf.org; rfc-editor@rfc-editor.org > Subject: [Curdle] [Technical Errata Reported] RFC8410 (7384) > > The following errata report has been submitted for RFC8410, "Algorithm > Identifiers for Ed25519, Ed448, X25519, and X448 for Use in the Internet > X.509 Public Key Infrastructure". > > -------------------------------------- > You may review the report below and at: > https://www.rfc-editor.org/errata/eid7384 > > -------------------------------------- > Type: Technical > Reported by: Russ Housley <housley@vigilsec.com> > > Section: 9 > > Original Text > ------------- > sa-Ed25519 SIGNATURE-ALGORITHM ::= { > IDENTIFIER id-Ed25519 > PARAMS ARE absent > PUBLIC-KEYS {pk-Ed25519} > SMIME-CAPS { IDENTIFIED BY id-Ed25519 } > } > > pk-Ed25519 PUBLIC-KEY ::= { > IDENTIFIER id-Ed25519 > -- KEY no ASN.1 wrapping -- > PARAMS ARE absent > CERT-KEY-USAGE {digitalSignature, nonRepudiation, > keyCertSign, cRLSign} > PRIVATE-KEY CurvePrivateKey > } > > Corrected Text > -------------- > sa-Ed25519 SIGNATURE-ALGORITHM ::= { > IDENTIFIER id-Ed25519 > PARAMS ARE absent > PUBLIC-KEYS {pk-Ed25519} > SMIME-CAPS { IDENTIFIED BY id-Ed25519 } > } > > pk-Ed25519 PUBLIC-KEY ::= { > IDENTIFIER id-Ed25519 > -- KEY no ASN.1 wrapping -- > PARAMS ARE absent > CERT-KEY-USAGE {digitalSignature, nonRepudiation, > keyCertSign, cRLSign} > PRIVATE-KEY CurvePrivateKey > } > > sa-Ed448 SIGNATURE-ALGORITHM ::= { > IDENTIFIER id-Ed448 > PARAMS ARE absent > PUBLIC-KEYS {pk-Ed448} > SMIME-CAPS { IDENTIFIED BY id-Ed448 } > } > > pk-Ed448 PUBLIC-KEY ::= { > IDENTIFIER id-Ed448 > -- KEY no ASN.1 wrapping -- > PARAMS ARE absent > CERT-KEY-USAGE {digitalSignature, nonRepudiation, > keyCertSign, cRLSign} > PRIVATE-KEY CurvePrivateKey > } > > Notes > ----- > The definitions for sa-Ed448 and pk-Ed448 are missing from RFC 8410. > > Instructions: > ------------- > This erratum is currently posted as "Reported". If necessary, please use "Reply > All" to discuss whether it should be verified or rejected. When a decision is > reached, the verifying party can log in to change the status and edit the report, > if necessary. > > -------------------------------------- > RFC8410 (draft-ietf-curdle-pkix-10) > -------------------------------------- > Title : Algorithm Identifiers for Ed25519, Ed448, X25519, and X448 for > Use in the Internet X.509 Public Key Infrastructure > Publication Date : August 2018 > Author(s) : S. Josefsson, J. Schaad > Category : PROPOSED STANDARD > Source : CURves, Deprecating and a Little more Encryption > Area : Security > Stream : IETF > Verifying Party : IESG > > _______________________________________________ > Curdle mailing list > Curdle@ietf.org > https://www.ietf.org/mailman/listinfo/curdle
- [Curdle] [Technical Errata Reported] RFC8410 (738… RFC Errata System
- Re: [Curdle] [Technical Errata Reported] RFC8410 … Tim Hollebeek