IETF Logo Mail Archive

Re: [jose] #23: Make crypto independent of binary encoding (base64)

John Bradley <ve7jtb@ve7jtb.com> Thu, 13 June 2013 08:49 UTC

Return-Path: <ve7jtb@ve7jtb.com>
X-Original-To: jose@ietfa.amsl.com
Delivered-To: jose@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2D77021F8F33 for <jose@ietfa.amsl.com>; Thu, 13 Jun 2013 01:49:57 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.203
X-Spam-Level:
X-Spam-Status: No, score=-1.203 tagged_above=-999 required=5 tests=[AWL=0.001, BAYES_00=-2.599, MIME_QP_LONG_LINE=1.396]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id JOFe0RI+QT2K for <jose@ietfa.amsl.com>; Thu, 13 Jun 2013 01:49:56 -0700 (PDT)
Received: from mail-wi0-x22a.google.com (mail-wi0-x22a.google.com [IPv6:2a00:1450:400c:c05::22a]) by ietfa.amsl.com (Postfix) with ESMTP id 2111F21F8EF2 for <jose@ietf.org>; Thu, 13 Jun 2013 01:49:55 -0700 (PDT)
Received: by mail-wi0-f170.google.com with SMTP id ey16so639135wid.1 for <jose@ietf.org>; Thu, 13 Jun 2013 01:49:55 -0700 (PDT)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20120113; h=references:mime-version:in-reply-to:content-type :content-transfer-encoding:message-id:cc:x-mailer:from:subject:date :to:x-gm-message-state; bh=VyIC8uks+w8gLr+W9gosYwqW5jl6Gy6FROBszn5iY8s=; b=RsbiAz2PyDQfvMY89c+Czut/qax3eMjgaUzHDKi5rAmbCV3pZkFz/w+ANVsnqpYxSq iPjKXhfYzuOqB8O9MzUQMWswzgMHGOcUw8pUAFEU164OFk/lc52EgfjLcDeGxCXveaj9 RHgn0hKd2LXd2vzF3kHfDkZVi7Plu8h5CHXOz6Tz/jQUsmKxOPc5CjoxusnTpiWmJEFH AX+0ALrbAhTZv36XUIX5PbXPmsuI8WmvR+rRQgKWv6KlEr5OnJKcs9Zbb9ee3a/uylvx 10PXLEOwNauhAEdY+oWQwfwdRNAhdYNDIVcj2IQTNF3VsIZiqwHA8mGkABHDr+GZ2PTX JboQ==
X-Received: by 10.180.107.163 with SMTP id hd3mr6764649wib.8.1371113395016; Thu, 13 Jun 2013 01:49:55 -0700 (PDT)
Received: from [10.147.129.63] ([188.207.110.177]) by mx.google.com with ESMTPSA id k10sm29772159wia.4.2013.06.13.01.49.52 for <multiple recipients> (version=TLSv1 cipher=ECDHE-RSA-RC4-SHA bits=128/128); Thu, 13 Jun 2013 01:49:54 -0700 (PDT)
References: <049.69ffc5ebf959c6eac7990651822fadf9@trac.tools.ietf.org> <064.e396e921644745f7bd339ad363a7d7f7@trac.tools.ietf.org> <BF7E36B9C495A6468E8EC573603ED94115283F43@xmb-aln-x11.cisco.com> <CAL02cgSpYtAVVNe7AOiNhnBUqP-=CWaXw7NH2XwUu6eXgfZJ+w@mail.gmail.com> <F337BFF0-4194-405F-ACDA-644B253BA24E@ve7jtb.com> <1371109077.2485.5.camel@ubuntu.ubuntu-domain>
Mime-Version: 1.0 (1.0)
In-Reply-To: <1371109077.2485.5.camel@ubuntu.ubuntu-domain>
Content-Type: multipart/signed; micalg="sha1"; boundary="Apple-Mail-FCFC1785-D8B2-4B81-B924-348BDA74FB95"; protocol="application/pkcs7-signature"
Content-Transfer-Encoding: 7bit
Message-Id: <2DBFB9B6-85DA-43AA-A0BA-16C5D745425F@ve7jtb.com>
X-Mailer: iPhone Mail (10B329)
From: John Bradley <ve7jtb@ve7jtb.com>
Date: Thu, 13 Jun 2013 10:49:53 +0200
To: Ludwig Seitz <ludwig@sics.se>
X-Gm-Message-State: ALoCoQmmWao8CqsbYxD1P14xy/tWPwgQ+84P/tAmwp3zUoE1q16uRHqLQ6Qg1fCS0cCnj4DpMvnY
Cc: Richard Barnes <rlb@ipv.sx>, "<draft-ietf-jose-json-web-encryption@tools.ietf.org>" <draft-ietf-jose-json-web-encryption@tools.ietf.org>, "<michael.jones@microsoft.com>" <michael.jones@microsoft.com>, jose issue tracker <trac+jose@trac.tools.ietf.org>, "<jose@ietf.org>" <jose@ietf.org>, "Matt Miller (mamille2)" <mamille2@cisco.com>
Subject: Re: [jose] #23: Make crypto independent of binary encoding (base64)
X-BeenThere: jose@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Javascript Object Signing and Encryption <jose.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/jose>, <mailto:jose-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/jose>
List-Post: <mailto:jose@ietf.org>
List-Help: <mailto:jose-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/jose>, <mailto:jose-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 13 Jun 2013 08:49:57 -0000

Agreed compressing and expanding on constrained devices is not ideal. 

Though I understand people are doing that in some cases to fit in a single packet.  Doing a good job for those environments is however future work and probably requires BSON or some other extension. 

John B. 
Sent from my iPhone

On 2013-06-13, at 9:37 AM, Ludwig Seitz <ludwig@sics.se> wrote:

> On Wed, 2013-06-12 at 23:40 +0200, John Bradley wrote:
>> Independent of the current implementations.   I prefer the current
>> base64url encoding of the segments, it is harder for people to get
>> wrong.
>> 
>> 
>> I have sympathy for the constrained environment people who want BSON
>> (binary JSON).   Having a compact binary representation probably makes
>> sense for those environments where you can safely transmit binary
>> objects.   
>> 
>> 
>> I however think that alternate binary encodings are future work and
>> what we have meets the goal of driving adoption.
>> 
>> 
>> If size is the issue then you can always compress a jws on the wire
>> and expand it at the other end before validating the signature.
> 
> If size is an issue on the wire, then chances are that it is also an
> issue on the device, so just compressing and expanding may not be a good
> solution. Note that in a constrained environment even some of the
> processing devices have limited RAM memory and space for (decompression)
> libraries and such.
> 
> I very much subscribe to your previous statement though: It's future
> work (but we shouldn't forget it).
> 
> 
> /Ludwig
> 
> -- 
> Ludwig Seitz, PhD
> SICS Swedish ICT AB
> Ideon Science Park
> Building Beta 2 
> Scheelevägen 17 
> SE-223 70 Lund
> 
> Phone +46(0)70-349 92 51
> http://www.sics.se
> _______________________________________________
> jose mailing list
> jose@ietf.org
> https://www.ietf.org/mailman/listinfo/jose

v2.23.0 | Report a Bug | By Email