Re: [jose] Do we have actual normative text which curves are allowed / standard for ECDH-ES in JOSE?
Carsten Bormann <cabo@tzi.org> Wed, 04 November 2020 08:57 UTC
Return-Path: <cabo@tzi.org>
X-Original-To: jose@ietfa.amsl.com
Delivered-To: jose@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 1BFDD3A0DC9 for <jose@ietfa.amsl.com>; Wed, 4 Nov 2020 00:57:33 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.897
X-Spam-Level:
X-Spam-Status: No, score=-1.897 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_MSPIKE_H4=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id D0sYKDfSBTkm for <jose@ietfa.amsl.com>; Wed, 4 Nov 2020 00:57:31 -0800 (PST)
Received: from gabriel-vm-2.zfn.uni-bremen.de (gabriel-vm-2.zfn.uni-bremen.de [134.102.50.17]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 189CC3A0DBE for <jose@ietf.org>; Wed, 4 Nov 2020 00:57:30 -0800 (PST)
Received: from [192.168.217.118] (p548dcc60.dip0.t-ipconnect.de [84.141.204.96]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by gabriel-vm-2.zfn.uni-bremen.de (Postfix) with ESMTPSA id 4CR0sN4PSXzyWY; Wed, 4 Nov 2020 09:57:28 +0100 (CET)
Content-Type: text/plain; charset="utf-8"
Mime-Version: 1.0 (Mac OS X Mail 13.4 \(3608.120.23.2.4\))
From: Carsten Bormann <cabo@tzi.org>
In-Reply-To: <CALAqi_-cYB1i4OZz6r9dtLziRn1jm1_5oVHCkXu2PMLYcW11JA@mail.gmail.com>
Date: Wed, 04 Nov 2020 09:57:28 +0100
Cc: Vladimir Dzhuvinov <vladimir@connect2id.com>, "Hamad, Samer K" <samer.k.hamad@chase.com>, "Voss, Ray" <ray.voss@jpmorgan.com>, "jose@ietf.org" <jose@ietf.org>
X-Mao-Original-Outgoing-Id: 626173048.247749-29d9221227f5074e412ea9ef57c2b6b1
Content-Transfer-Encoding: quoted-printable
Message-Id: <4533C302-5B24-424F-89EC-C2B0217CF774@tzi.org>
References: <b29e1554-42ae-3ce3-037b-ca3eaa4087d8@connect2id.com> <CALAqi_-cYB1i4OZz6r9dtLziRn1jm1_5oVHCkXu2PMLYcW11JA@mail.gmail.com>
To: Filip Skokan <panva.ip@gmail.com>
X-Mailer: Apple Mail (2.3608.120.23.2.4)
Archived-At: <https://mailarchive.ietf.org/arch/msg/jose/ULuTObZFDMinf0U41mk0B8ApsXc>
Subject: Re: [jose] Do we have actual normative text which curves are allowed / standard for ECDH-ES in JOSE?
X-BeenThere: jose@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Javascript Object Signing and Encryption <jose.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/jose>, <mailto:jose-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/jose/>
List-Post: <mailto:jose@ietf.org>
List-Help: <mailto:jose-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/jose>, <mailto:jose-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 04 Nov 2020 08:57:33 -0000
The JSON Web Key Elliptic Curve registry just lists the curves: https://www.iana.org/assignments/jose/jose.xhtml#web-key-elliptic-curve In COSE we have a registry "COSE Elliptic Curves”: https://www.iana.org/assignments/cose/cose.xhtml#elliptic-curves This actually has a column “description” that contains some more information about where these curves are supposed to be used. Grüße, Carsten > On 2020-11-03, at 22:50, Filip Skokan <panva.ip@gmail.com> wrote: > > Hi Vladimir, > > I kinda got the same question from someone a couple days ago and could pinpoint a clear normative answer. > > We have https://tools.ietf.org/html/rfc7520 that shows ECDH-ES with P-384 and P-256. In not having any normative text around these curves being allowed or P-521 being disallowed I always assumed all original three are fair use for ECDH-ES (and its composite KW variants). > > We also have https://tools.ietf.org/html/rfc8037 which specifically mentions X25519 and X448 OKP subtypes to be usable for ECDH-ES (and its composite KW variants). > > Then we have the JOSE registration of EC secp256k1 curve which specifically mentions that the curve is NOT released for ECDH in that document. > > So, > > EC P-256 > EC P-384 > EC P-521 > OKP X25519 > OKP X448 > > S pozdravem, > Filip Skokan > > > On Tue, 3 Nov 2020 at 22:40, Vladimir Dzhuvinov <vladimir@connect2id.com> wrote: > Today we received the question why the Nimbus JOSE+JWT lib supports the > EC curves it does for ECDH (P-256, P-384, P-512) and I couldn't find any > normative text or reference in the JWA spec to explain this. > > https://tools.ietf.org/html/rfc7518#section-4.6 > > > We also looked at the IANA registry for hints: > > https://www.iana.org/assignments/jose/jose.xhtml > > > Contrast this with the JWS ECDSA, where the curves to go with the ESxxx > algs are specced: > > https://tools.ietf.org/html/rfc7518#section-3.4 > > > Can someone help here? :) > > > Thanks, > > Vladimir > > -- > Vladimir Dzhuvinov > > > _______________________________________________ > jose mailing list > jose@ietf.org > https://www.ietf.org/mailman/listinfo/jose > _______________________________________________ > jose mailing list > jose@ietf.org > https://www.ietf.org/mailman/listinfo/jose
- [jose] Do we have actual normative text which cur… Vladimir Dzhuvinov
- Re: [jose] Do we have actual normative text which… Neil Madden
- Re: [jose] Do we have actual normative text which… Filip Skokan
- Re: [jose] Do we have actual normative text which… Filip Skokan
- Re: [jose] Do we have actual normative text which… Carsten Bormann
- Re: [jose] Do we have actual normative text which… Vladimir Dzhuvinov