Re: [jose] Clean interop with "oth"

⌘ Matt Miller <mamille2@cisco.com> Mon, 17 November 2014 16:11 UTC

Return-Path: <mamille2@cisco.com>
X-Original-To: jose@ietfa.amsl.com
Delivered-To: jose@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 1F3741A7021 for <jose@ietfa.amsl.com>; Mon, 17 Nov 2014 08:11:56 -0800 (PST)
X-Quarantine-ID: <CZIRayXVON1A>
X-Virus-Scanned: amavisd-new at amsl.com
X-Amavis-Alert: BANNED, message contains text/plain,.exe
X-Spam-Flag: NO
X-Spam-Score: -14.795
X-Spam-Level:
X-Spam-Status: No, score=-14.795 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, MIME_8BIT_HEADER=0.3, RCVD_IN_DNSWL_HI=-5, RP_MATCHES_RCVD=-0.594, SPF_PASS=-0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id CZIRayXVON1A for <jose@ietfa.amsl.com>; Mon, 17 Nov 2014 08:11:53 -0800 (PST)
Received: from rcdn-iport-8.cisco.com (rcdn-iport-8.cisco.com [173.37.86.79]) (using TLSv1 with cipher RC4-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 1DC531A700B for <jose@ietf.org>; Mon, 17 Nov 2014 08:11:48 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=2384; q=dns/txt; s=iport; t=1416240708; x=1417450308; h=message-id:date:from:mime-version:to:subject:references: in-reply-to:content-transfer-encoding; bh=mnYrFgeki6IMYI23d8erqJ8h/dMJ4oIL9Hv7PWbGC3g=; b=ghVHs4RMPy9SH4SiE9pY+alZdIUTb0buGgdSicF1URa3mPzzQIo49RA0 RiLCl12dYeCnt2obdqdVXbYbC/ZpHc91+e1XiiQ7dv/0iVdlbkYng2uN2 gFzD+8w9Sw7BVCP0DfbBzl99Twm4afumjR0n4hdmBXqf47fnpjalK4CSB Q=;
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: AiUIAGodalStJA2E/2dsb2JhbABbgw5VWQSCOkjJDgqHSgICAoEZFgEBAQEBfYQCAQEBBAEBAQkXDwE7ChEJAg4DBAEBAQICBRYIAwICCQMCAQIBFR8JCAYBDAYCAQGIPQ2fUpxxlgcBAQEBAQEBAQEBAQEBAQEBAQEBAQETBIEtiVCFcjoGgnGBVAEEjBGLEYcqgTSGT4pthAqCAh6BfE2BSIEDAQEB
X-IronPort-AV: E=Sophos;i="5.07,403,1413244800"; d="scan'208";a="372867825"
Received: from alln-core-10.cisco.com ([173.36.13.132]) by rcdn-iport-8.cisco.com with ESMTP; 17 Nov 2014 16:11:47 +0000
Received: from xhc-rcd-x12.cisco.com (xhc-rcd-x12.cisco.com [173.37.183.86]) by alln-core-10.cisco.com (8.14.5/8.14.5) with ESMTP id sAHGBlRn025093 (version=TLSv1/SSLv3 cipher=AES128-SHA bits=128 verify=FAIL); Mon, 17 Nov 2014 16:11:47 GMT
Received: from [10.129.24.46] (10.129.24.46) by xhc-rcd-x12.cisco.com (173.37.183.86) with Microsoft SMTP Server (TLS) id 14.3.195.1; Mon, 17 Nov 2014 10:11:46 -0600
Message-ID: <546A1E4E.8020906@cisco.com>
Date: Mon, 17 Nov 2014 09:11:58 -0700
From: ⌘ Matt Miller <mamille2@cisco.com>
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.9; rv:24.0) Gecko/20100101 Thunderbird/24.6.0
MIME-Version: 1.0
To: Mike Jones <Michael.Jones@microsoft.com>, Richard Barnes <rlb@ipv.sx>, "jose@ietf.org" <jose@ietf.org>
References: <CAL02cgToqHMvpeXdvnRTf7PEpvsbZf+kP7zM5i=r5rzJP86wCA@mail.gmail.com> <4E1F6AAD24975D4BA5B16804296739439BB7A9E3@TK5EX14MBXC286.redmond.corp.microsoft.com>
In-Reply-To: <4E1F6AAD24975D4BA5B16804296739439BB7A9E3@TK5EX14MBXC286.redmond.corp.microsoft.com>
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: 8bit
X-Originating-IP: [10.129.24.46]
Archived-At: http://mailarchive.ietf.org/arch/msg/jose/RE6IhdyglngTGt4N2xjF5xb20iM
Subject: Re: [jose] Clean interop with "oth"
X-BeenThere: jose@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Javascript Object Signing and Encryption <jose.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/jose>, <mailto:jose-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/jose/>
List-Post: <mailto:jose@ietf.org>
List-Help: <mailto:jose-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/jose>, <mailto:jose-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 17 Nov 2014 16:11:56 -0000

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Technically, only the private exponent and the modulus are necessary
for the private operations.  However, the performance can be so bad
that it be a Denial of Service attack.  Better to reject, in my opinion.


- -- 
- - m&m

Matt Miller < mamille2@cisco.com >
Cisco Systems, Inc.

On 11/10/14, 10:08 PM, Mike Jones wrote:
> Clarification question:  Would the private key operate correctly,
> if possibly inefficiently, in the multi-prime case if all the
> private key parameters other than “d” were ignored?  I ask, because
> if this is the case, your wording could be modified to the less
> severe text:
> 
> 
> 
> If the consumer of a JWK does not support multi-prime RSA moduli
> and it encounters a private key that includes the "oth" parameter,
> then it MUST either reject the key or ignore all the private key
> parameters other than “d”.
> 
> 
> 
> -- Mike
> 
> 
> 
> *From:*jose [mailto:jose-bounces@ietf.org] *On Behalf Of *Richard
> Barnes *Sent:* Monday, November 10, 2014 7:02 PM *To:*
> jose@ietf.org *Subject:* [jose] Clean interop with "oth"
> 
> 
> 
> It seems clear that there are no implementations today that support
> the "oth" element, i.e., that support RSA with a modulus with
> multiple factors.  At least some of them simply ignore the "oth"
> element, which unfortunately leads to incorrect operation.  I would
> propose something of the following form in JWA:
> 
> """
> 
> If the consumer of a JWK does not support multi-prime RSA moduli
> and it encounters a private key that includes the "oth" parameter,
> then it MUST reject the key.
> 
> """
> 
> 
> 
> _______________________________________________ jose mailing list 
> jose@ietf.org https://www.ietf.org/mailman/listinfo/jose
> 

-----BEGIN PGP SIGNATURE-----
Version: GnuPG/MacGPG2 v2.0.22 (Darwin)
Comment: GPGTools - https://gpgtools.org

iQEcBAEBCgAGBQJUah5OAAoJEDWi+S0W7cO13kQIALa+juv24iNuIdr/PdHlRjee
0nGeSq/xIk5WZsV+tYWk8mMUSWqxoh3FTUd2flpj4vjQ7iZvraQmJwV+4jcRsZOY
UM3JyL5cBvAnOtNXtwga5N7Y+2G1vWvjJGURo+9lNI+Kn3Ut7mAG+u6q8kob72Wv
g0U1lJmjtkslDeFXnNJQSI5AliKPc1Gvo/sbzR0QH5oZeIdwsoqBdYwFSU0a4g7f
1MEtgf0ASE2ShhNBDpgPnQg0OOrptARSkndvhirtyhoBgm473WWW0fr+pj0A6V7n
vsuzLNSFishXPNfIERfME+qacL0IYl6ZjVt2GumiMesi7epD/AMHucUHXGEN5X8=
=ijfD
-----END PGP SIGNATURE-----