[jose] JWA replicating mcgrew-aead-aes-cbc-hmac-sha2
"Manger, James H" <James.H.Manger@team.telstra.com> Sun, 28 April 2013 15:03 UTC
Return-Path: <James.H.Manger@team.telstra.com>
X-Original-To: jose@ietfa.amsl.com
Delivered-To: jose@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2247121F9387 for <jose@ietfa.amsl.com>; Sun, 28 Apr 2013 08:03:31 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.404
X-Spam-Level:
X-Spam-Status: No, score=-0.404 tagged_above=-999 required=5 tests=[AWL=-0.497, BAYES_00=-2.599, FS_REPLICA=0.994, HELO_EQ_AU=0.377, HOST_EQ_AU=0.327, RELAY_IS_203=0.994]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id i0l8MDpzgjHw for <jose@ietfa.amsl.com>; Sun, 28 Apr 2013 08:03:30 -0700 (PDT)
Received: from ipxano.tcif.telstra.com.au (ipxano.tcif.telstra.com.au [203.35.82.200]) by ietfa.amsl.com (Postfix) with ESMTP id 71C8821F8D8E for <jose@ietf.org>; Sun, 28 Apr 2013 08:03:29 -0700 (PDT)
X-IronPort-AV: E=Sophos;i="4.87,566,1363093200"; d="scan'208";a="134458837"
Received: from unknown (HELO ipcbni.tcif.telstra.com.au) ([10.97.216.204]) by ipoani.tcif.telstra.com.au with ESMTP; 29 Apr 2013 01:03:28 +1000
X-IronPort-AV: E=McAfee;i="5400,1158,7058"; a="130061227"
Received: from wsmsg3704.srv.dir.telstra.com ([172.49.40.197]) by ipcbni.tcif.telstra.com.au with ESMTP; 29 Apr 2013 01:03:28 +1000
Received: from WSMSG3153V.srv.dir.telstra.com ([172.49.40.159]) by WSMSG3704.srv.dir.telstra.com ([172.49.40.197]) with mapi; Mon, 29 Apr 2013 01:03:27 +1000
From: "Manger, James H" <James.H.Manger@team.telstra.com>
To: "jose@ietf.org" <jose@ietf.org>
Date: Mon, 29 Apr 2013 01:03:25 +1000
Thread-Topic: JWA replicating mcgrew-aead-aes-cbc-hmac-sha2
Thread-Index: Ac5EIYicMEZT77oGS+2g3rgYBdJD9w==
Message-ID: <255B9BB34FB7D647A506DC292726F6E1150CD91C8F@WSMSG3153V.srv.dir.telstra.com>
Accept-Language: en-US, en-AU
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
acceptlanguage: en-US, en-AU
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
Subject: [jose] JWA replicating mcgrew-aead-aes-cbc-hmac-sha2
X-BeenThere: jose@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Javascript Object Signing and Encryption <jose.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/jose>, <mailto:jose-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/jose>
List-Post: <mailto:jose@ietf.org>
List-Help: <mailto:jose-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/jose>, <mailto:jose-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 28 Apr 2013 15:03:31 -0000
JOSE is at last using draft-mcgrew-aead-aes-cbc-hmac-sha2, but why is so much duplicated in JWA instead of referenced? JOSE should have 1 sentence saying: The JOSE "alg" strings "A128CBC-HS256" and "A256CBC-HS512" correspond to the AEAD_AES_128_CBC_HMAC_SHA_256 and AEAD_AES_256_CBC_HMAC_SHA_512 algorithms defined in [I-D.mcgrew-aead-aes-cbc-hmac-sha2]. That should be enough. Drop the other 4 pages of JWA on this. If we really insist on breaking the RFC 5116 AEAD model, add 1 more paragraph. In [I-D.mcgrew-aead-aes-cbc-hmac-sha2] the ciphertext includes the CBC initialization vector as a prefix and the truncated HMAC as a suffix. In a JOSE these two fields are separated from the ciphertext and treated as the JWE Nonce and JWE Authentication Tag respectively. The JWE Ciphertext is the remaining ciphertext (ie minus the prefix and suffix). Why does JWA duplicate test cases for AES_CBC_HMAC_SHA2 (Appendix C) that will be in draft-mcgrew-aead-aes-cbc-hmac-sha2? The test cases are not even JOSE messages. I hope this is a temporary addition pending the publication of draft-mcgrew-aead-aes-cbc-hmac-sha2-02 (with the test cases). -- James Manger
- [jose] JWA replicating mcgrew-aead-aes-cbc-hmac-s… Manger, James H
- Re: [jose] JWA replicating mcgrew-aead-aes-cbc-hm… Mike Jones