[IPsec] New drafts
Tero Kivinen <kivinen@iki.fi> Thu, 14 November 2013 00:25 UTC
Return-Path: <kivinen@iki.fi>
X-Original-To: ipsec@ietfa.amsl.com
Delivered-To: ipsec@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B288921E80AB for <ipsec@ietfa.amsl.com>; Wed, 13 Nov 2013 16:25:44 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -102.587
X-Spam-Level:
X-Spam-Status: No, score=-102.587 tagged_above=-999 required=5 tests=[AWL=0.012, BAYES_00=-2.599, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id yUvdHK9qxJKc for <ipsec@ietfa.amsl.com>; Wed, 13 Nov 2013 16:25:44 -0800 (PST)
Received: from mail.kivinen.iki.fi (fireball.kivinen.iki.fi [IPv6:2001:1bc8:100d::2]) by ietfa.amsl.com (Postfix) with ESMTP id E82A821E8090 for <ipsec@ietf.org>; Wed, 13 Nov 2013 16:25:42 -0800 (PST)
Received: from fireball.kivinen.iki.fi (localhost [127.0.0.1]) by mail.kivinen.iki.fi (8.14.7/8.14.5) with ESMTP id rAE0Pel5014074 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-GCM-SHA384 bits=256 verify=NO) for <ipsec@ietf.org>; Thu, 14 Nov 2013 02:25:40 +0200 (EET)
Received: (from kivinen@localhost) by fireball.kivinen.iki.fi (8.14.7/8.12.11) id rAE0PewW012019; Thu, 14 Nov 2013 02:25:40 +0200 (EET)
X-Authentication-Warning: fireball.kivinen.iki.fi: kivinen set sender to kivinen@iki.fi using -f
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Message-ID: <21124.6276.800771.457943@fireball.kivinen.iki.fi>
Date: Thu, 14 Nov 2013 02:25:40 +0200
From: Tero Kivinen <kivinen@iki.fi>
To: ipsec@ietf.org
X-Mailer: VM 8.2.0b under 24.3.1 (x86_64--netbsd)
X-Edit-Time: 6 min
X-Total-Time: 5 min
Subject: [IPsec] New drafts
X-BeenThere: ipsec@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Discussion of IPsec protocols <ipsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipsec>, <mailto:ipsec-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ipsec>
List-Post: <mailto:ipsec@ietf.org>
List-Help: <mailto:ipsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipsec>, <mailto:ipsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 14 Nov 2013 00:25:44 -0000
I updated the RFC5996bis draft to include the editorial changes sent to the list (all changes sent up To tuesday). I also updated the signature authentication draft by adding the section about the public key selection methods, and I also added the binary objects for the commonly used signature ASN.1 objects. If someone has any way to verify those (especially the RSASSA-PSS method with parameters), that would be really good. I did create perl script to generate those, but then I needed cut & paste suitable ASN.1 modules to generate correct results and especially the RSASSA-PSS ASN.1 is quite complex so I may have made mistakes there. What is still missing from the signature draft is the actual payload examples, I will generate in the next version, but would like to know if it is enough to just generate two examples, not for every single algorithm (was thinking of sha1WithRSAEncryption and dsa-with-sha256). The actual algorithms does not really matter, and even one example might be enough as we have the asn1 blobs above, and the signature is mostly as placeholder as veryfing it will be difficult... -- kivinen@iki.fi
- [IPsec] New drafts Tero Kivinen
- Re: [IPsec] New drafts Johannes Merkle
- Re: [IPsec] New drafts Tero Kivinen