I-D Action: draft-truskovsky-lamps-pq-hybrid-x509-02.txt

internet-drafts@ietf.org Thu, 24 August 2023 15:21 UTC

MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
From: internet-drafts@ietf.org
To: i-d-announce@ietf.org
Subject: I-D Action: draft-truskovsky-lamps-pq-hybrid-x509-02.txt
Auto-Submitted: auto-generated
Precedence: bulk
Message-ID: <169289051084.30385.4665032441575061785@ietfa.amsl.com>
Date: Thu, 24 Aug 2023 08:21:50 -0700
Archived-At: <https://mailarchive.ietf.org/arch/msg/i-d-announce/6T2ZSvMcVmcfsGmf0OZXEmhT1eM>

A New Internet-Draft is available from the on-line Internet-Drafts
directories.

   Title           : Multiple Public-Key Algorithm X.509 Certificates
   Authors         : Alexander Truskovsky
                     Daniel Van Geest
                     Scott Fluhrer
                     Panos Kampanakis
                     Mike Ounsworth
                     Serge Mister
   Filename        : draft-truskovsky-lamps-pq-hybrid-x509-02.txt
   Pages           : 25
   Date            : 2023-08-24

Abstract:
   Tombstone notice:

   This draft is no longer being pursued at the IETF.  A variant of this
   proposal was adopted in [itu-t-x509-2019], which allows two keys to
   be placed in a certificate but only one used at a time.  The major
   downside of this proposal is that it requires the large PQC key to be
   sent even to legacy clients which will not use it.  Additionally,
   this proposal does not present a generic encoding for the multiple
   signatures produced by the multiple keys contained in a hybrid
   certificate, leaving the responsibility to dependent protocols and
   applications for how to carry multiple signatures and how to signal
   that multiple signatures should have been present in order to detect
   stripping attacks.  As such, this document represents only a partial
   solution to the dual-signature problem.  How, and whether, to
   implement dual-signatures is an active and ongoing discussion topic
   at the IETF and work continues in this area across several working
   groups.  The PQUIP WG serves as a central location for all PQC-
   related discussion.

   Original abstract:

   This document describes a method of embedding alternative sets of
   cryptographic materials into X.509v3 digital certificates, X.509v2
   Certificate Revocation Lists (CRLs), and PKCS #10 Certificate Signing
   Requests (CSRs).  The embedded alternative cryptographic materials
   allow a Public Key Infrastructure (PKI) to use multiple cryptographic
   algorithms in a single object, and allow it to transition to the new
   cryptographic algorithms while maintaining backwards compatibility
   with systems using the existing algorithms.  Three X.509 extensions
   and three PKCS #10 attributes are defined, and the signing and
   verification procedures for the alternative cryptographic material
   contained in the extensions and attributes are detailed.

The IETF datatracker status page for this Internet-Draft is:
https://datatracker.ietf.org/doc/draft-truskovsky-lamps-pq-hybrid-x509/

There is also an htmlized version available at:
https://datatracker.ietf.org/doc/html/draft-truskovsky-lamps-pq-hybrid-x509-02

A diff from the previous version is available at:
https://author-tools.ietf.org/iddiff?url2=draft-truskovsky-lamps-pq-hybrid-x509-02

Internet-Drafts are also available by rsync at rsync.ietf.org::internet-drafts

I-D Action: draft-truskovsky-lamps-pq-hybrid-x509… internet-drafts