IETF Logo Mail Archive

[DNSOP] A new draft on SM2 digital signature algorithm for DNSSEC

zhangcuiling <zhangcuiling@cnnic.cn> Mon, 11 April 2022 03:13 UTC

Return-Path: <zhangcuiling@cnnic.cn>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 97DF03A19D1 for <dnsop@ietfa.amsl.com>; Sun, 10 Apr 2022 20:13:14 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.898
X-Spam-Level:
X-Spam-Status: No, score=-1.898 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_BLOCKED=0.001, SPF_PASS=-0.001, T_KAM_HTML_FONT_INVALID=0.01, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Uw4ssN40CJUP for <dnsop@ietfa.amsl.com>; Sun, 10 Apr 2022 20:13:10 -0700 (PDT)
Received: from cnnic.cn (smtp13.cnnic.cn [218.241.118.13]) by ietfa.amsl.com (Postfix) with ESMTP id 033133A11D9 for <dnsop@ietf.org.>; Sun, 10 Apr 2022 20:13:05 -0700 (PDT)
Received: from CNNIC-PC (unknown [218.241.111.115]) by ocmail02.zx.nicx.cn (Coremail) with SMTP id AQAAf0CpsXm6nFNixTlYAA--.2561S2; Mon, 11 Apr 2022 11:12:58 +0800 (CST)
Date: Mon, 11 Apr 2022 11:12:58 +0800
From: zhangcuiling <zhangcuiling@cnnic.cn>
To: dnsop
X-Priority: 3
X-Has-Attach: no
X-Mailer: Foxmail 7.2.18.95[cn]
Mime-Version: 1.0
Message-ID: <202204111111585901567@cnnic.cn>
Content-Type: multipart/alternative; boundary="----=_001_NextPart004300256512_=----"
X-CM-TRANSID: AQAAf0CpsXm6nFNixTlYAA--.2561S2
X-Coremail-Antispam: 1UD129KBjvJXoWruw15KrWrWFyktF48JF1rtFb_yoW8Jr1rpa 1xtrn8Aas5KasxGanYq3W8AFWrtryYkayDGwn8Jryjya98AFn3Aw1Ikay5J34aqw1kG3Zr Jr4xAr1qvr4rZa7anT9S1TB71UUUUUUqnTZGkaVYY2UrUUUUjbIjqfuFe4nvWSU5nxnvy2 9KBjDU0xBIdaVrnRJUUUQIb7Iv0xC_Cr1lb4IE77IF4wAFF20E14v26r1j6r4UM7CY07I2 0VC2zVCF04k26cxKx2IYs7xG6rWj6s0DM7CIcVAFz4kK6r1j6r18M28lY4IEw2IIxxk0rw A2F7IY1VAKz4vEj48ve4kI8wA2z4x0Y4vE2Ix0cI8IcVAFwI0_Xr0_Ar1l84ACjcxK6xII jxv20xvEc7CjxVAFwI0_Gr0_Cr1l84ACjcxK6I8E87Iv67AKxVWxJr0_GcWl84ACjcxK6I 8E87Iv6xkF7I0E14v26rxl6s0DM2AIxVAIcxkEcVAq07x20xvEncxIr21l5I8CrVAYj202 j2C_Gr0_Xr1l5I8CrVAKz4kIr2xC04v26r1j6r4UMc02F40Ex7xS67I2xxkvbII20VAFz4 8EcVAYj21lYx0E2Ix0cI8IcVAFwI0_Jr0_Jr4lYx0Ex4A2jsIE14v26r1j6r4UMcvjeVCF s4IE7xkEbVWUJVW8JwACjcxG0xvY0x0EwIxGrwACY4xI67k04243AVAKzVAKj4xxM4xvF2 IEb7IF0Fy26I8I3I1lc2xSY4AK67AK6r48MxAIw28IcxkI7VAKI48JMxC20s026xCaFVCj c4AY6r1j6r4UMI8I3I0E5I8CrVAFwI0_JrI_JrWlx2IqxVCjr7xvwVAFwI0_JrI_JrWlx4 CE17CEb7AF67AKxVWUJVWUXwCIc40Y0x0EwIxGrwCI42IY6xIIjxv20xvE14v26r1j6r1x MIIF0xvE2Ix0cI8IcVCY1x0267AKxVWUJVW8JwCI42IY6xAIw20EY4v20xvaj40_WFyUJV Cq3wCI42IY6I8E87Iv67AKxVWUJVW8JwCI42IY6I8E87Iv6xkF7I0E14v26r1j6r4UMVCE FcxC0VAYjxAxZFUvcSsGvfC2KfnxnUUI43ZEXa7IU8Wv37UUUUU==
X-CM-SenderInfo: x2kd0wxfxlzxlqj6u0xqlfhubq/
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/WyEMVl50M4PORnc0zlaxt57pQqo>
Subject: [DNSOP] A new draft on SM2 digital signature algorithm for DNSSEC
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 11 Apr 2022 03:13:15 -0000

Hi dnsop,
 
My coworkers and I have written a draft on SM2 digital signature algorithm for DNSSEC.
 
The main content is to introduce the format of DNSKEY/RRSIG RRs using SM2 digital signature algorithm with SM3 digest algorithm, and the format of DS/NSEC3 RRs using SM3 digest algorithm.
 
And the main purpose is to improve the diversity of DNSSEC algorithms, and to make it convenient for people who want to use SM2 digital signature algorithm as an alternative for DNSSEC.
 
I would love to hear comments and suggestions from you.

Thanks in advance.

Name: draft-cuiling-dnsop-sm2-alg
Revision: 00
Title: SM2 Digital Signature Algorithm for DNSSEC
Document date: 2022-04-07
Group: Individual Submission
Pages: 5
URL:            https://www.ietf.org/archive/id/draft-cuiling-dnsop-sm2-alg-00.txt
Status:         https://datatracker.ietf.org/doc/draft-cuiling-dnsop-sm2-alg/
Htmlized:       https://datatracker.ietf.org/doc/html/draft-cuiling-dnsop-sm2-alg
 
Abstract:
  This document describes how to specify SM2 Digital Signature
  Algorithm keys and signatures in DNS Security (DNSSEC). It lists
  the curve and uses SM3 as hash algorithm for signatures.
 
Best regards,
 
Cathy Zhang

2022-04-11

v2.23.0 | Report a Bug | By Email