Re: [Curdle] New Version Notification for draft-mtis-lamps-8410-ku-clarifications-00.txt
Russ Housley <housley@vigilsec.com> Wed, 12 January 2022 20:56 UTC
Return-Path: <housley@vigilsec.com>
X-Original-To: curdle@ietfa.amsl.com
Delivered-To: curdle@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2365A3A1CD6; Wed, 12 Jan 2022 12:56:06 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.897
X-Spam-Level:
X-Spam-Status: No, score=-1.897 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, SPF_NONE=0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id dN4bbAPLLVXU; Wed, 12 Jan 2022 12:56:01 -0800 (PST)
Received: from mail3.g24.pair.com (mail3.g24.pair.com [66.39.134.11]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 167B23A1CD5; Wed, 12 Jan 2022 12:56:01 -0800 (PST)
Received: from mail3.g24.pair.com (localhost [127.0.0.1]) by mail3.g24.pair.com (Postfix) with ESMTP id AD730F70B2; Wed, 12 Jan 2022 15:55:59 -0500 (EST)
Received: from a860b60074bd.fios-router.home (pool-141-156-161-153.washdc.fios.verizon.net [141.156.161.153]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by mail3.g24.pair.com (Postfix) with ESMTPSA id 97835F64EF; Wed, 12 Jan 2022 15:55:59 -0500 (EST)
From: Russ Housley <housley@vigilsec.com>
Message-Id: <B025018C-0C0E-4B33-BA82-5DBA2099F7D1@vigilsec.com>
Content-Type: multipart/alternative; boundary="Apple-Mail=_64DEE078-8CF1-4803-9122-85D49ED2D8CE"
Mime-Version: 1.0 (Mac OS X Mail 12.4 \(3445.104.21\))
Date: Wed, 12 Jan 2022 15:55:59 -0500
In-Reply-To: <1C866AE7-94AF-4FA1-95C1-76D2F64BED7B@sn3rd.com>
Cc: LAMPS WG <spasm@ietf.org>, curdle@ietf.org
To: Sean Turner <sean@sn3rd.com>
References: <164196813912.10423.12752056700321106986@ietfa.amsl.com> <1C866AE7-94AF-4FA1-95C1-76D2F64BED7B@sn3rd.com>
X-Mailer: Apple Mail (2.3445.104.21)
Archived-At: <https://mailarchive.ietf.org/arch/msg/curdle/iOS2-hTrnJ4wDSpn61R3NbmUlDQ>
Subject: Re: [Curdle] New Version Notification for draft-mtis-lamps-8410-ku-clarifications-00.txt
X-BeenThere: curdle@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "List for discussion of potential new security area wg." <curdle.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/curdle>, <mailto:curdle-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/curdle/>
List-Post: <mailto:curdle@ietf.org>
List-Help: <mailto:curdle-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/curdle>, <mailto:curdle-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 12 Jan 2022 20:56:06 -0000
Sean: I think that id-Ed25519 or id-Ed448 need to allow keyCertSign as well. Otherwise, a CA could not use these signature algorithms. Russ > On Jan 12, 2022, at 2:59 PM, Sean Turner <sean@sn3rd.com> wrote: > > LAMPS, > > Hi! While Ito-san and I were working on RFC 8813 (nee draft-ietf-lamps-5480-ku-clarifications, nee draft-turner-5480-ku-clarifications), Daniel McCarney asked whether we should write the same kind of clarifications for RFC 8410 [1] (algorithm identifiers for Ed25519, Ed448, X25519, and X448 in certificates). I had a look and exchanged some emails with Simon and it seems like it would be good to make sure there were the same clarifications for the x25519 and x448 identifiers that we had for the other identifiers … so we produced this I-D. > > Note: I am forwarding this I-D to LAMPS for consideration and not curdle knowing that curdle is planning to close. I also alerted the chairs and am cc’ing curdle so nobody is surprised. As this is basically, a do-over of RFC 8410 I am hoping that adopting/progressing this I-D will be non-controversial. > > Cheers, > spt > > [1] https://datatracker.ietf.org/doc/rfc8410/ <https://datatracker.ietf.org/doc/rfc8410/> > >> Begin forwarded message: >> >> From: internet-drafts@ietf.org <mailto:internet-drafts@ietf.org> >> Subject: New Version Notification for draft-mtis-lamps-8410-ku-clarifications-00.txt >> Date: January 12, 2022 at 01:15:39 EST >> To: "Daniel McCarney" <daniel@binaryparadox.net <mailto:daniel@binaryparadox.net>>, "Sean Turner" <sean@sn3rd.com <mailto:sean@sn3rd.com>>, "Simon Josefsson" <simon@josefsson.org <mailto:simon@josefsson.org>>, "Tadahiko Ito" <tadahiko.ito.public@gmail.com <mailto:tadahiko.ito.public@gmail.com>> >> >> >> A new version of I-D, draft-mtis-lamps-8410-ku-clarifications-00.txt >> has been successfully submitted by Sean Turner and posted to the >> IETF repository. >> >> Name: draft-mtis-lamps-8410-ku-clarifications >> Revision: 00 >> Title: Clarifications for Ed25519, Ed448, X25519, and X448 Algorithm Identifiers >> Document date: 2022-01-12 >> Group: Individual Submission >> Pages: 6 >> URL: https://www.ietf.org/archive/id/draft-mtis-lamps-8410-ku-clarifications-00.txt <https://www.ietf.org/archive/id/draft-mtis-lamps-8410-ku-clarifications-00.txt> >> Status: https://datatracker.ietf.org/doc/draft-mtis-lamps-8410-ku-clarifications/ <https://datatracker.ietf.org/doc/draft-mtis-lamps-8410-ku-clarifications/> >> Html: https://www.ietf.org/archive/id/draft-mtis-lamps-8410-ku-clarifications-00.html <https://www.ietf.org/archive/id/draft-mtis-lamps-8410-ku-clarifications-00.html> >> Htmlized: https://datatracker.ietf.org/doc/html/draft-mtis-lamps-8410-ku-clarifications <https://datatracker.ietf.org/doc/html/draft-mtis-lamps-8410-ku-clarifications> >> >> >> Abstract: >> This document updates RFC 8410 to clarify existing and specify >> missing semantics for key usage bits when used in certificates that >> support the Ed25519, Ed448, X25519, and X448 Elliptic Curve >> Cryptography algorithms. >> >> >> >> >> The IETF Secretariat >> >> > > _______________________________________________ > Curdle mailing list > Curdle@ietf.org > https://www.ietf.org/mailman/listinfo/curdle
- [Curdle] Fwd: New Version Notification for draft-… Sean Turner
- Re: [Curdle] New Version Notification for draft-m… Russ Housley
- Re: [Curdle] New Version Notification for draft-m… Sean Turner
- Re: [Curdle] New Version Notification for draft-m… Sean Turner