Re: [jose] Call for Adoption: draft-jones-jose-fully-specified-algorithms

Neil Madden <neil.e.madden@gmail.com> Fri, 05 January 2024 21:19 UTC

From: Neil Madden <neil.e.madden@gmail.com>
Content-Type: multipart/alternative; boundary="Apple-Mail-8196DB5E-5AC6-4480-A091-CEC4EE41BCCC"
Content-Transfer-Encoding: 7bit
Mime-Version: 1.0 (1.0)
Date: Fri, 05 Jan 2024 21:18:42 +0000
Message-Id: <9F1370E2-FB28-4030-932B-2B967C962667@gmail.com>
References: <B28A795E-EA91-4F2E-8F26-422C1C4E7E4E@gmail.com>
Cc: Orie Steele <orie@transmute.industries>, Karen ODonoghue <kodonog@pobox.com>, jose@ietf.org
In-Reply-To: <B28A795E-EA91-4F2E-8F26-422C1C4E7E4E@gmail.com>
To: Neil Madden <neil.e.madden@gmail.com>
Archived-At: <https://mailarchive.ietf.org/arch/msg/jose/CdXcRwFTt-b2I0DuWRZJ5VEGc14>
Subject: Re: [jose] Call for Adoption: draft-jones-jose-fully-specified-algorithms
Precedence: list

On 5 Jan 2024, at 20:30, Neil Madden <neil.e.madden@gmail.com> wrote:

On 4 Jan 2024, at 19:37, Orie Steele <orie@transmute.industries> wrote:

A similar issue occurs with secp256k1 and ecdsa today.

Some implementations normalize to lower-s (and expect it), others don't.

When you cross test, you get errors in implementations that assume ES256K is always lower S, and it's not... that's for the same ES256K public key (arguably an even worse problem).

The point being that we could fix this by making "ES256K-LS", and we'd have the same problem with older implementations that advertised ES256K.

I'm not familiar with this issue or what "lower S" refers to here. Do you mean some implementations spell the algorithm "Es256K" with a lowercase s?

I’ve just twigged that you’re referring to the s-value in the signature! Presumably some libraries are rejecting non-canonical signature values? I guess that’s an artifact of secp256k1 being the Bitcoin curve and hence a lot of libraries impose additional constraints, for consensus reasons, beyond what is required for signature security. That seems like a straightforward bug in JOSE/COSE implementations that use those libraries.

— Neil

[jose] Call for Adoption: draft-jones-jose-fully-… Karen ODonoghue
Re: [jose] Call for Adoption: draft-jones-jose-fu… Michael Jones
Re: [jose] Call for Adoption: draft-jones-jose-fu… Filip Skokan
Re: [jose] Call for Adoption: draft-jones-jose-fu… Michael Prorock
Re: [jose] Call for Adoption: draft-jones-jose-fu… Orie Steele
Re: [jose] Call for Adoption: draft-jones-jose-fu… Giuseppe De Marco
Re: [jose] Call for Adoption: draft-jones-jose-fu… Ilari Liusvaara
Re: [jose] Call for Adoption: draft-jones-jose-fu… Neil Madden
Re: [jose] Call for Adoption: draft-jones-jose-fu… Ilari Liusvaara
Re: [jose] Call for Adoption: draft-jones-jose-fu… Orie Steele
Re: [jose] Call for Adoption: draft-jones-jose-fu… Neil Madden
Re: [jose] Call for Adoption: draft-jones-jose-fu… Neil Madden
Re: [jose] Call for Adoption: draft-jones-jose-fu… Neil Madden
Re: [jose] Call for Adoption: draft-jones-jose-fu… Carsten Bormann
Re: [jose] Call for Adoption: draft-jones-jose-fu… Orie Steele
Re: [jose] Call for Adoption: draft-jones-jose-fu… Orie Steele
Re: [jose] Call for Adoption: draft-jones-jose-fu… Neil Madden
Re: [jose] Call for Adoption: draft-jones-jose-fu… Manu Sporny
Re: [jose] Call for Adoption: draft-jones-jose-fu… Orie Steele
Re: [jose] Call for Adoption: draft-jones-jose-fu… Manu Sporny
Re: [jose] Call for Adoption: draft-jones-jose-fu… Orie Steele
Re: [jose] Call for Adoption: draft-jones-jose-fu… Carsten Bormann
Re: [jose] Call for Adoption: draft-jones-jose-fu… Simo Sorce
Re: [jose] Call for Adoption: draft-jones-jose-fu… Jeremie Miller
Re: [jose] Call for Adoption: draft-jones-jose-fu… Axel.Nennker
Re: [jose] [COSE] Call for Adoption: draft-jones-… Ilari Liusvaara
Re: [jose] Call for Adoption: draft-jones-jose-fu… Michael Prorock
Re: [jose] [COSE] Call for Adoption: draft-jones-… Orie Steele
Re: [jose] Call for Adoption: draft-jones-jose-fu… Roland Hedberg
Re: [jose] Call for Adoption: draft-jones-jose-fu… Ilari Liusvaara
Re: [jose] Call for Adoption: draft-jones-jose-fu… Orie Steele
Re: [jose] Call for Adoption: draft-jones-jose-fu… Orie Steele
Re: [jose] [COSE] Call for Adoption: draft-jones-… Ilari Liusvaara
Re: [jose] [COSE] Call for Adoption: draft-jones-… Orie Steele
Re: [jose] Call for Adoption: draft-jones-jose-fu… Leif Johansson
Re: [jose] Call for Adoption: draft-jones-jose-fu… Joseph Heenan
Re: [jose] Call for Adoption: draft-jones-jose-fu… Ilari Liusvaara
Re: [jose] Call for Adoption: draft-jones-jose-fu… Simo Sorce
Re: [jose] Call for Adoption: draft-jones-jose-fu… David Waite
Re: [jose] Call for Adoption: draft-jones-jose-fu… Pieter Kasselman
Re: [jose] Call for Adoption: draft-jones-jose-fu… Karen ODonoghue
Re: [jose] Call for Adoption: draft-jones-jose-fu… Oliver Terbu
Re: [jose] Call for Adoption: draft-jones-jose-fu… Tobias Looker
Re: [jose] Call for Adoption: draft-jones-jose-fu… Vladimir Dzhuvinov
Re: [jose] Call for Adoption: draft-jones-jose-fu… Karen ODonoghue