IETF Logo Mail Archive

Re: [Curdle] draft-ietf-curdle-rsa-sha2-05

"Mark D. Baushke" <mdb@juniper.net> Thu, 20 April 2017 00:29 UTC

Return-Path: <mdb@juniper.net>
X-Original-To: curdle@ietfa.amsl.com
Delivered-To: curdle@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 083C112EACF for <curdle@ietfa.amsl.com>; Wed, 19 Apr 2017 17:29:14 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.022
X-Spam-Level:
X-Spam-Status: No, score=-2.022 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=juniper.net
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id S0uIAZk-vcIZ for <curdle@ietfa.amsl.com>; Wed, 19 Apr 2017 17:29:12 -0700 (PDT)
Received: from NAM01-BN3-obe.outbound.protection.outlook.com (mail-bn3nam01on0094.outbound.protection.outlook.com [104.47.33.94]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 51238129410 for <curdle@ietf.org>; Wed, 19 Apr 2017 17:29:12 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=juniper.net; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version; bh=3TEKv65+5+WHW9lnkJvrVOO0F/9Tu2tIXPqXIlD0xac=; b=YEAc6xbZ7iqmQ90c5yyJPAPxnBjr2qgRol3zV9Q6YJ430Dz3RhbeM1JlFcPTRwtUGTOVRCwEwxv/5AfGFEDgmpFTMaU1/6CFnALGdOXhdUD82JX3WcKrsa0WPx9yY2B+1YN4GsSo2uoqmqRJpEC7jeRQcS8cDLMiMx74/Fk+PVY=
Received: from BY2PR05CA026.namprd05.prod.outlook.com (10.141.250.16) by SN2PR05MB2493.namprd05.prod.outlook.com (10.166.213.14) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256_P256) id 15.1.1047.6; Thu, 20 Apr 2017 00:29:09 +0000
Received: from BY2NAM05FT029.eop-nam05.prod.protection.outlook.com (2a01:111:f400:7e52::203) by BY2PR05CA026.outlook.office365.com (2a01:111:e400:2c5f::16) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256_P256) id 15.1.1047.6 via Frontend Transport; Thu, 20 Apr 2017 00:29:10 +0000
Authentication-Results: spf=softfail (sender IP is 66.129.239.12) smtp.mailfrom=juniper.net; gmail.com; dkim=none (message not signed) header.d=none;gmail.com; dmarc=fail action=none header.from=juniper.net;
Received-SPF: SoftFail (protection.outlook.com: domain of transitioning juniper.net discourages use of 66.129.239.12 as permitted sender)
Received: from p-emfe01a-sac.jnpr.net (66.129.239.12) by BY2NAM05FT029.mail.protection.outlook.com (10.152.100.166) with Microsoft SMTP Server (version=TLS1_0, cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA_P384) id 15.1.1019.24 via Frontend Transport; Thu, 20 Apr 2017 00:29:09 +0000
Received: from p-mailhub01.juniper.net (10.160.2.17) by p-emfe01a-sac.jnpr.net (172.24.192.21) with Microsoft SMTP Server (TLS) id 14.3.123.3; Wed, 19 Apr 2017 17:29:08 -0700
Received: from eng-mail01.juniper.net (eng-mail01.juniper.net [172.17.28.114]) by p-mailhub01.juniper.net (8.14.4/8.11.3) with ESMTP id v3K0T8nI022587; Wed, 19 Apr 2017 17:29:08 -0700 (envelope-from mdb@juniper.net)
Received: from eng-mail01.juniper.net (localhost [127.0.0.1]) by eng-mail01.juniper.net (Postfix) with ESMTP id B516811446; Wed, 19 Apr 2017 17:29:07 -0700 (PDT)
To: denis bider <denisbider.ietf@gmail.com>
CC: curdle <curdle@ietf.org>
In-Reply-To: <CADPMZDCKLuXGx8ap7s8kC-R7vefz=9P8ScnbhopC-Mwy-Lm6Mg@mail.gmail.com>
References: <7182.1492447893@eng-mail01.juniper.net> <CADPMZDCKLuXGx8ap7s8kC-R7vefz=9P8ScnbhopC-Mwy-Lm6Mg@mail.gmail.com>
Comments: In-reply-to: denis bider <denisbider.ietf@gmail.com> message dated "Wed, 19 Apr 2017 14:10:00 -0600."
From: "Mark D. Baushke" <mdb@juniper.net>
Date: Wed, 19 Apr 2017 17:29:07 -0700
Message-ID: <2100.1492648147@eng-mail01.juniper.net>
Sender: mdb@juniper.net
MIME-Version: 1.0
Content-Type: text/plain
X-EOPAttributedMessage: 0
X-MS-Office365-Filtering-HT: Tenant
X-Forefront-Antispam-Report: CIP:66.129.239.12; IPV:NLI; CTRY:US; EFV:NLI; SFV:NSPM; SFS:(10019020)(6009001)(39450400003)(39400400002)(39850400002)(39840400002)(39860400002)(39410400002)(2980300002)(199003)(189002)(9170700003)(2906002)(54356999)(55016002)(77096006)(7846003)(8936002)(2810700001)(117636001)(81166006)(76176999)(8676002)(6392003)(86362001)(76506005)(105596002)(230783001)(53416004)(189998001)(6246003)(50986999)(106466001)(53936002)(5003940100001)(7126002)(4326008)(110136004)(48376002)(39060400002)(7696004)(50466002)(6266002)(38730400002)(5660300001)(229853002)(6916009)(68736007)(305945005)(2950100002)(356003)(47776003)(42262002); DIR:OUT; SFP:1102; SCL:1; SRVR:SN2PR05MB2493; H:p-emfe01a-sac.jnpr.net; FPR:; SPF:SoftFail; MLV:ovrnspm; A:1; MX:1; PTR:InfoDomainNonexistent; LANG:en;
X-Microsoft-Exchange-Diagnostics: 1; BY2NAM05FT029; 1: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
X-MS-PublicTrafficType: Email
X-MS-Office365-Filtering-Correlation-Id: 157ecc62-3a81-4407-02a7-08d4878442f3
X-Microsoft-Antispam: UriScan:; BCL:0; PCL:0; RULEID:(22001)(2017030254075)(201703131423075)(201703031133081); SRVR:SN2PR05MB2493;
X-Microsoft-Exchange-Diagnostics: 1; SN2PR05MB2493; 3:lq3Olpbm3qpEfIvlBPR4z58II/369tAvcf7NdVXSiZ0HGX/XpK2gpC/cO2mxMKi1fLd6hysuiYQ2Fs1VMIx/DCK1moM/tvCiIMJJrbuy9SP2FVph7mcO3VXzxSIHDjiIGyZ9wfz6grultwz/lbMydJvVUkGAZUbo2NUw74ukPEK0fAOGfEPtKKay0tC4gdmmwNkc2PBYuxy3LKPJ+ZAvsmdrIKz613Ti6eDkLe5eqU6A85+Sktd4p1alf2H600gpbW3YSC2I7DVl+Nk1res7RU3JqDEfkjZvRoDpXlzS9Qa07x/gPX6DBeNcFs+ScvpSWOduc6Cq8scNxym5i5dHaLCqrlPOQllks/945toW5plPsiu5Wk7AkkSkT3Jg1/yLlRxkA0Xuuchva98t1V8DbwernAgszBbejwvM4eyxs0Akz4199qdkHtGaYwSMk5GI2Qa6VTG9KuRTheUwK5buGw==
X-Microsoft-Exchange-Diagnostics: 1; SN2PR05MB2493; 25:fP4taDCwJH6kTeJ4dLevLnAxPLqdctos3ztuLtG6fJbFmW56BIUztuMi8h8VypCpYj+Y0S7acY7icRaUhPXdlKSPbzXzm1T2HL8pJMq5MkIUYjayEAci2vUeI/O2t2owbqVlwrYSUnnIEMSTMFy79tIlWp2oq0QLew+dGw8Ch17iP/ZqhJPM6ddAl6fy5yCqfYkvjL9mdyid6irOMbF4LLzF2y6TJkKrRFMbd5tPVZ6X5Az3cScQ6ALQMfNoldGqcFAfF+dw1N6Y7++A3eV0Bh1v5Nnk7Xk/OoXYKJMwHMpTT9WRgoXTjIcTSGjbzDD+1TFdv+wObYdQs2Wh9fYBcSE+qh/mpdO0zuyKBA27YEhQfbIh7EKIcqQGX2DMPU46KcagJGd70oTb3HqhrfE1GDtBdi42GNdF70HyiVagcN46oeb66j/ipO765g9HnBaVQZQ6eZf6jHku6wTzxheT4hEnjHBGCjr8RZpNgxmCaa0=; 31:+hBcpjveLCynGmYRblKXXYAMFFk6/2rn5kSCh6RMsEVE1ecP8BZHlfR/E/C0Ei5eEmlJkA7Iz3qbbp+KN//DrGOe/UfI3ZrK/mtDzouDbdAp0+jIIQdZsViGndp2pZmxphIFhQB/2b2jM3ESto+1E6KNDYlSRwQyd5KedX/spw77HHwxQOwEWNODFZ0T32h6NQLPk+K1MBFW0ljpZ2bmIE3it262jMuKQU0YlYH+Q8ZGfpdzwFxaseA7CCMQ3GMxt5ObNK82LZY9sUQJEcAAKqCqdwHv+ZjkFMF/rqu+Ius=
X-Microsoft-Exchange-Diagnostics: 1; SN2PR05MB2493; 20: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
X-Microsoft-Antispam-PRVS: <SN2PR05MB24932D6CCC94780A68B2069BBF1B0@SN2PR05MB2493.namprd05.prod.outlook.com>
X-Exchange-Antispam-Report-Test: UriScan:;
X-Exchange-Antispam-Report-CFA-Test: BCL:0; PCL:0; RULEID:(6040450)(601004)(2401047)(13017025)(5005006)(8121501046)(13015025)(13024025)(13023025)(13018025)(10201501046)(3002001)(93006095)(93003095)(6055026)(6041248)(20161123562025)(20161123564025)(201703131423075)(201703011903075)(201702281528075)(201703061421075)(20161123560025)(20161123555025)(6072148); SRVR:SN2PR05MB2493; BCL:0; PCL:0; RULEID:; SRVR:SN2PR05MB2493;
X-Microsoft-Exchange-Diagnostics: 1; SN2PR05MB2493; 4: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
X-Forefront-PRVS: 02830F0362
X-Microsoft-Exchange-Diagnostics: 1; SN2PR05MB2493; 23:p5acto5KMOiI/1fjaHkSZXDuNMWlcCYO7fzCxHp/8slI+NzAoqXPnSX7afmfjKiTRzO4DPqk6ux9nJ/hcsAWMdVmHSy/zKMsjmkL0fXad9dlCO2Djynn+Re4gtMmYD7GX/m42DJeBVICrSgUYPKrTRSjKRHx5p6xHC9LvSy2X8V5rzrZS14Hf1d+BwU9oQYkvu3DDFBAiXKnF1ExR1R7EZ0NWb50vIyCtuiWT0bLQfK6teXafDkusERQig6zd5ZCKcLGULTAu6bEOODtszfksMjMBhCSQ4t6vRHzKKSjphaW6mQhbO4GfFRJqAa8cy6aSz1cS8RGNudQObWYjcbJ3ZdRlAcMO3QYMkFYL67TCaX0RXM4o65l+GmA3CcyGsSQdcoveq84N3IUXb+xKykpcWuTlx7tyQLG6/63X0751kekQvusgicSH6skfnhC8XhZxXIIbte48BgVrfbbqHUN7GiUJpp5YbiZ83LB4I91fYoS8/apF9Va+fKlOF2l57NoyLBQFBS+oM1bN75tZ4sOa9tOhxh+xqxcBNcCqeqW9CZH1w9AWE/eMFC4xKuV93fluk8rdGxcuawoGL8p3ZTrQVuxZgIxrVVNMvE1FQiXCDKZ5uklnjGBm8Tuxdf8xDtJkA7FlQoNgdLRgbT9/UZhfPMBpyRiR93wUXLDpCbCnYCMWdWH+TLiOJOc1uSBcEVnK3ODFx8MZnTOXLjWfxpqhYWHTueTOV3rYoOQ4OLFr4QZKAwbkEim5oI5wTLBQfiFs7oTome8DxK+pt9TgYeIqxu5LtTOhdMNxCfQcxu3dn1iAZWgdBHbnf6vm7BInE80xv2iRMtZyNzsNaN/TOrEGldPLHLXDWi8OaYG7xhG83UeRhtvID+bONB+/D1YT098htChuosk3BpjPUeYI56+KrBAv+maooKFJLWehZk0qkZD9ss6hMl2fEiECyePqq+b71vpg1sBLdtURjz/P0dWyHX5piqgmBhF/ccVMxNpFmVRYNf6KStpAxQbm17Fiz3SzbSGmFIRxBJctW1CZJMbzyvLZJdjpuJ1NahHNJb3j5JhKIb1ooT5uP45ry1vt5kzk4wMYEkk0P7Hs6vDQoukt7kvzf6t9MyjhPRRfW85tOCPhiZaLCCN1tefE8lu+Ka72H3Zx3hpMEySspB17g0C9oY7ucwf8vjJB8yQfTDfuZT1P0ZvLYRIDPXOtgSBq15SPWSVRX0V6L7sdg6hlY2tnEvDYc/ffGXyKpuol3HZJpWgNNiTiBW7lKaVihJmurfC9QiNSJeIMUtxbjEW1nRPFw==
X-Microsoft-Exchange-Diagnostics: 1; SN2PR05MB2493; 6:V4XkyYFIX/PczrEvto3MkhL1MVhB+cLGtGVKE/SBMum0H6Ocy+Ds+Drx7X4VGOPJqAkhSBEjnJ2p+nB+D2xlU2j+eXz44OZZjeVnbaPn/MamNsJaVapE4LLogQHbaN9VBRHV+e/ZHqfYb0N6qCEoDsF0R+QI4IevN0XKOlr7OQPbLzCGqhkKDSK/kg9NbXy3bZL5UhPTOwK6KQJG29bqFgZLPqDK5FadAy7KbZBCa5eFbInu8ASSuxJgjXxnSx+avqFtubhbGH8f/M/IzoNkZWHiHOerHa32Tce8Y2CjS0rLBJkSRQYel+oPPD51OpRCo5wS30FzMpn1uI3iC9BSvGUuDBmCfjl/WMwb2jw1FfFwqAt+hcRdHrB2lP5OcLtumbWZqE8vjqqhfHWuc4Cz2Xai1tX3xsx4U8LsRVpv/PP3m2ocmR8SnwFJanLSP4W5Z/61zf43lIZgqgeCIrqe71ZUhHewtc+5yCBB5oEXcxA=; 5:y59W17smkH6eVdR7EzSTQiqJnfwO3c6dbcXOYLGggF0f9iROrYaw2B4TFsCqYgmnGMWD7C8ZS426Mk7XXruqD8/6gFVoj28so+6uyxM6ySOYM6lXVC8iYTjl24k3c0uYZYOrxI0LLTqRexie88i8bA==; 24:XlT5osM8JQJZNozosbWpXpOUK7CgNAitlq8WIiBJHtyGRJQXzu0ZjN/ccLAz5qRKLh/PwB6m4uYiSBgPHFviUwsbvQz6z3SPRKvMrYtqY/A=
SpamDiagnosticOutput: 1:99
SpamDiagnosticMetadata: NSPM
X-Microsoft-Exchange-Diagnostics: 1; SN2PR05MB2493; 7:lESYY9YDBAphS7q1pZFjvEv1/h3NBulDyptSUm+TYkrZNsnFKbik/ign07HvHZsfzLwjwagYoWYt4qzZqmA59LJJNR+BvRb2TtpZY1VHpDiGCxK9kGU3jO7DW041+AeEynqPy5MDRVHHW4aFdrwj4j1uRsKBzcE1Dqab0QD6frVIbwVLKRceBnBQYyqplOGNVDN/ilHDE1X2GIaD2+bxQkrC11V1Iml3YjTZXNTkXPiAYl/DCv+hagG5DYdJsddFNj+AEsFMtAf11d8IkETTaO0Wdeh2i2u6RiJsgzrbkiaucfIEU6i6w86IDv10nKkLLj2mGdN+XRBzAGT3Qhw7cQ==
X-OriginatorOrg: juniper.net
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 20 Apr 2017 00:29:09.2381 (UTC)
X-MS-Exchange-CrossTenant-Id: bea78b3c-4cdb-4130-854a-1d193232e5f4
X-MS-Exchange-CrossTenant-OriginalAttributedTenantConnectingIp: TenantId=bea78b3c-4cdb-4130-854a-1d193232e5f4; Ip=[66.129.239.12]; Helo=[p-emfe01a-sac.jnpr.net]
X-MS-Exchange-CrossTenant-FromEntityHeader: HybridOnPrem
X-MS-Exchange-Transport-CrossTenantHeadersStamped: SN2PR05MB2493
Archived-At: <https://mailarchive.ietf.org/arch/msg/curdle/xO_oids2c0b1muCSzjvHq4SrseU>
Subject: Re: [Curdle] draft-ietf-curdle-rsa-sha2-05
X-BeenThere: curdle@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "List for discussion of potential new security area wg." <curdle.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/curdle>, <mailto:curdle-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/curdle/>
List-Post: <mailto:curdle@ietf.org>
List-Help: <mailto:curdle-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/curdle>, <mailto:curdle-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 20 Apr 2017 00:29:14 -0000

denis bider <denisbider.ietf@gmail.com> writes:

> RFC 3447 is obsoleted by RFC 8017, which is currently listed as a
> normative reference. It is normative because it's needed to implement
> the spec.

Oops. Mea Culpa. You are correct.

> The reference to RFC 8017 is currently made in section 3 (where the
> signature details are defined). Did you mean another reference should be
> made to this document in section 5.3? For easier lookup, perhaps?

My issue is that PSS is ambiguous in Section 5.3, 'PSS' is also known as
RSASSA-PSS (RFC 8017 Section 8.1) which is not to be confused with
EMSA-PSS (RFC 8017 section 9.1).

	-- Mark

v2.23.0 | Report a Bug | By Email