Re: [jose] Allow compression of plain and JWS too?

John Bradley <ve7jtb@ve7jtb.com> Mon, 04 June 2012 01:16 UTC

Return-Path: <ve7jtb@ve7jtb.com>
X-Original-To: jose@ietfa.amsl.com
Delivered-To: jose@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 322B421F87D3 for <jose@ietfa.amsl.com>; Sun, 3 Jun 2012 18:16:23 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.599
X-Spam-Level:
X-Spam-Status: No, score=-3.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, RCVD_IN_DNSWL_LOW=-1]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 9zDYe490hnil for <jose@ietfa.amsl.com>; Sun, 3 Jun 2012 18:16:22 -0700 (PDT)
Received: from mail-yw0-f44.google.com (mail-yw0-f44.google.com [209.85.213.44]) by ietfa.amsl.com (Postfix) with ESMTP id 4150121F87D1 for <jose@ietf.org>; Sun, 3 Jun 2012 18:16:22 -0700 (PDT)
Received: by yhq56 with SMTP id 56so2870013yhq.31 for <jose@ietf.org>; Sun, 03 Jun 2012 18:16:21 -0700 (PDT)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20120113; h=subject:mime-version:content-type:from:in-reply-to:date:cc :message-id:references:to:x-mailer:x-gm-message-state; bh=03lVlgVp9T25SpZQl/DWn6qkZJaTCzFAOlHcRyLUUiw=; b=dlLZnBOhlLafNhHBDSFRFjD0ElbGJH24HH2Fprg+D5M0dhGOJAx6gEbR2h2VH75sho Ynj3RNA9c3U5CM4JHheHyGF7MjANQ1rA5y/85D44D0w7+bZOqgQK0TRTUvra1egVkyny 7P/VMNehrXMTgcTZHlxwM0U2VQZhXGLlygnDrDxW2jRwyAHmub+6NlW63lh2eyHHiY6D XuZhnk5/f7G2aUIfjoeuds731tyfyRmYGYT1mUs5Q8MCaiITt8c48UfsD5iOiCig17nr moO5vjl5ej/c/TpncwIJ74t8bYx8F+pqcClcLKP5Gh1mfvPzQY6MLC1XGivHsSRp2uHK 6VSA==
Received: by 10.236.78.1 with SMTP id f1mr3242314yhe.109.1338772581559; Sun, 03 Jun 2012 18:16:21 -0700 (PDT)
Received: from 201-188-162-56.bam.movistar.cl ([201.188.162.56]) by mx.google.com with ESMTPS id q32sm12767738anh.21.2012.06.03.18.16.09 (version=TLSv1/SSLv3 cipher=OTHER); Sun, 03 Jun 2012 18:16:19 -0700 (PDT)
Mime-Version: 1.0 (Apple Message framework v1278)
Content-Type: multipart/signed; boundary="Apple-Mail=_D30BBCB1-BBA1-4054-9991-E466E18D3C02"; protocol="application/pkcs7-signature"; micalg=sha1
From: John Bradley <ve7jtb@ve7jtb.com>
In-Reply-To: <20120531050148.cc40c4f3d92d2001859047cd8cabb9ab.af6dca8411.wbe@email07.europe.secureserver.net>
Date: Sun, 3 Jun 2012 21:16:05 -0400
Message-Id: <BF44F421-BA42-445B-8AC8-DA5BDDAB8F2D@ve7jtb.com>
References: <20120531050148.cc40c4f3d92d2001859047cd8cabb9ab.af6dca8411.wbe@email07.europe.secureserver.net>
To: "Vladimir Dzhuvinov / NimbusDS" <vladimir@nimbusds.com>
X-Mailer: Apple Mail (2.1278)
X-Gm-Message-State: ALoCoQk/1nOM7L0zkWsLWbuEgv1g0kTk8smih17j8IZ57O5q9dvxj9k+PLETi2/5oDRxBjfW76oh
Cc: jose@ietf.org
Subject: Re: [jose] Allow compression of plain and JWS too?
X-BeenThere: jose@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Javascript Object Signing and Encryption <jose.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/jose>, <mailto:jose-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/jose>
List-Post: <mailto:jose@ietf.org>
List-Help: <mailto:jose-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/jose>, <mailto:jose-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 04 Jun 2012 01:16:23 -0000

This has come up before in the working group.

Compression is required before encryption as your can't encrypt after (if your encryption is any good).

With signing you can always leave it to transport or some other process to compress it if required.

We did note that the http layer supports compression as well.

We previously came to the conclusion that compression for signing is unnecessary and only adds extra code to be tested.

I actually had to argue quite strongly at the time to get compression as a option with encryption due to the additional complexity.

So on the basis that the more mandatory to implement things we add, the less likely we are to get adoption, and previous discussions around some of the input documents, 
I am opposed to adding compression for signing.

John B.


On 2012-05-31, at 8:01 AM, Vladimir Dzhuvinov / NimbusDS wrote:

> Is there a reason to have compression only with JWE?
> 
> 
> Vladimir
> 
> --
> Vladimir Dzhuvinov : www.NimbusDS.com : vladimir@nimbusds.com
> 
> _______________________________________________
> jose mailing list
> jose@ietf.org
> https://www.ietf.org/mailman/listinfo/jose