Protocol Action: 'CBOR Object Signing and Encryption (COSE): AES-CTR and AES-CBC' to Proposed Standard (draft-ietf-cose-aes-ctr-and-cbc-06.txt)
The IESG <iesg-secretary@ietf.org> Tue, 30 May 2023 21:35 UTC
Return-Path: <iesg-secretary@ietf.org>
X-Original-To: ietf-announce@ietf.org
Delivered-To: ietf-announce@ietfa.amsl.com
Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 73AE8C1519B2; Tue, 30 May 2023 14:35:45 -0700 (PDT)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
From: The IESG <iesg-secretary@ietf.org>
To: IETF-Announce <ietf-announce@ietf.org>
Subject: Protocol Action: 'CBOR Object Signing and Encryption (COSE): AES-CTR and AES-CBC' to Proposed Standard (draft-ietf-cose-aes-ctr-and-cbc-06.txt)
X-Test-IDTracker: no
X-IETF-IDTracker: 10.4.1
Auto-Submitted: auto-generated
Precedence: bulk
Cc: The IESG <iesg@ietf.org>, cose-chairs@ietf.org, cose@ietf.org, draft-ietf-cose-aes-ctr-and-cbc@ietf.org, michael.jones@microsoft.com, paul.wouters@aiven.io, rfc-editor@rfc-editor.org
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
Message-ID: <168548254546.60125.3296014455739466661@ietfa.amsl.com>
Date: Tue, 30 May 2023 14:35:45 -0700
Archived-At: <https://mailarchive.ietf.org/arch/msg/ietf-announce/ErgYxi-f7Iv4LXpWFjHbcmGKYtk>
X-BeenThere: ietf-announce@ietf.org
X-Mailman-Version: 2.1.39
List-Id: "IETF announcement list. No discussions." <ietf-announce.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf-announce>, <mailto:ietf-announce-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ietf-announce/>
List-Post: <mailto:ietf-announce@ietf.org>
List-Help: <mailto:ietf-announce-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf-announce>, <mailto:ietf-announce-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 30 May 2023 21:35:45 -0000
The IESG has approved the following document: - 'CBOR Object Signing and Encryption (COSE): AES-CTR and AES-CBC' (draft-ietf-cose-aes-ctr-and-cbc-06.txt) as Proposed Standard This document is the product of the CBOR Object Signing and Encryption Working Group. The IESG contact persons are Paul Wouters and Roman Danyliw. A URL of this Internet-Draft is: https://datatracker.ietf.org/doc/draft-ietf-cose-aes-ctr-and-cbc/ Technical Summary This document specifies the conventions for using AES-CTR and AES-CBC as Content Encryption algorithms with the CBOR Object Signing and Encryption (COSE) [RFC9052] syntax. Encryption with COSE today uses Authenticated Encryption with Associated Data (AEAD) [RFC5116] algorithms, which provide both confidentiality and integrity protection. However, there are situations where another mechanism, such as a digital signature, is used to provide integrity. In these cases, an AEAD algorithm is not needed. The software manifest being defined by the IETF SUIT WG [I-D.ietf-suit-manifest] is one example where a digital signature is always present. Working Group Summary Once explained, the WG reached broad concensus for this use of unauthenticated encryption algorithms (easier to use for signed firmware images) Document Quality The document is short and clear. Personnel The Document Shepherd for this document is Michael B. Jones. The Responsible Area Director is Paul Wouters.