[jose] Discussion Minutes on draft-mcgrew-aead-aes-hmac-sha2
"Matt Miller (mamille2)" <mamille2@cisco.com> Thu, 21 March 2013 14:16 UTC
Return-Path: <mamille2@cisco.com>
X-Original-To: jose@ietfa.amsl.com
Delivered-To: jose@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4A8AE21F9046 for <jose@ietfa.amsl.com>; Thu, 21 Mar 2013 07:16:20 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -10.299
X-Spam-Level:
X-Spam-Status: No, score=-10.299 tagged_above=-999 required=5 tests=[AWL=-0.300, BAYES_00=-2.599, J_CHICKENPOX_22=0.6, RCVD_IN_DNSWL_HI=-8]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 4QQozyxV3M8N for <jose@ietfa.amsl.com>; Thu, 21 Mar 2013 07:16:19 -0700 (PDT)
Received: from rcdn-iport-3.cisco.com (rcdn-iport-3.cisco.com [173.37.86.74]) by ietfa.amsl.com (Postfix) with ESMTP id 62F7221F8EE1 for <jose@ietf.org>; Thu, 21 Mar 2013 07:16:16 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=5551; q=dns/txt; s=iport; t=1363875376; x=1365084976; h=from:to:subject:date:message-id:mime-version; bh=bi3wZ0duBsRX7xcN5HWIpMqg5+fUJm1W8HyA/f6wmMM=; b=DuwL9WY2y3qt6ECMKj74vRlMXmeSXoil67OVP2F6BvIcWGeR0ccLshmt DFV5X3ZxK3yVjPCDIiv9dhz+/3CCxlLOs7xF6EhApfOokvC/JYofOvJW1 7FJErnsft9mF7eGQ2gCJM55OD3YeT6CXGsJOKhnAhnWyavfcFnXEd1Hq2 8=;
X-Files: smime.p7s : 2283
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: AgAFALcVS1GtJXHB/2dsb2JhbABDxTaBWBZtB4ImAQSBCwEqJjAnBBMIBogGDKFnoRSNUQqBBYMXYQOPQYEohxqPY4MKgWoJFx4
X-IronPort-AV: E=Sophos; i="4.84,886,1355097600"; d="p7s'?scan'208"; a="190006190"
Received: from rcdn-core2-6.cisco.com ([173.37.113.193]) by rcdn-iport-3.cisco.com with ESMTP; 21 Mar 2013 14:16:16 +0000
Received: from xhc-rcd-x09.cisco.com (xhc-rcd-x09.cisco.com [173.37.183.83]) by rcdn-core2-6.cisco.com (8.14.5/8.14.5) with ESMTP id r2LEGFCq003363 (version=TLSv1/SSLv3 cipher=AES128-SHA bits=128 verify=FAIL) for <jose@ietf.org>; Thu, 21 Mar 2013 14:16:15 GMT
Received: from xmb-aln-x11.cisco.com ([169.254.6.203]) by xhc-rcd-x09.cisco.com ([173.37.183.83]) with mapi id 14.02.0318.004; Thu, 21 Mar 2013 09:16:15 -0500
From: "Matt Miller (mamille2)" <mamille2@cisco.com>
To: "jose@ietf.org" <jose@ietf.org>
Thread-Topic: Discussion Minutes on draft-mcgrew-aead-aes-hmac-sha2
Thread-Index: AQHOJj6lSBBVu75SYkaLuor2uyZLzQ==
Date: Thu, 21 Mar 2013 14:16:14 +0000
Message-ID: <BF7E36B9C495A6468E8EC573603ED94115181426@xmb-aln-x11.cisco.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach: yes
X-MS-TNEF-Correlator:
x-originating-ip: [10.129.24.68]
Content-Type: multipart/signed; boundary="Apple-Mail=_FB4B1FDF-3BE9-42CF-8418-E9A02F02F57A"; protocol="application/pkcs7-signature"; micalg="sha1"
MIME-Version: 1.0
Subject: [jose] Discussion Minutes on draft-mcgrew-aead-aes-hmac-sha2
X-BeenThere: jose@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Javascript Object Signing and Encryption <jose.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/jose>, <mailto:jose-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/jose>
List-Post: <mailto:jose@ietf.org>
List-Help: <mailto:jose-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/jose>, <mailto:jose-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 21 Mar 2013 14:16:20 -0000
A short discussion was had last night (US time) regarding David McGrew's draft < http://tools.ietf.org/html/draft-mcgrew-aead-aes-cbc-hmac-sha2 >. Below are the minutes, but for the TL;DR crowd: small refactors to draft-mcgrew-aead to allow for alternative formats, which JOSE is considered to be. The goal is to drop the JWA defined composite algorithm in favor of draft-mgcrew-aead. Thanks, - m&m Matt Miller < mamille2@cisco.com > Cisco Systems, Inc. -----BEGIN MINUTES----- VENUE ----- WebEx on 2013-03-20T22:00:00Z, approximately 30 minutes (apologies for not recording!) ATTENDEES --------- * Michael Jones * David McGrew * Matt Miller NOTES ----- Based on email exchanges prior to meeting, a rough consensus has been reached. It is suggested that David's draft separate the inputs, outputs, and process from what is encoded for the wire; this should allow JOSE to be compliant but retain its formatting. Roughly speaking this means: * inputs and outputs (independent of encoding) * process * encoding for RFC 5116 * test vectors David believes a new version for (limited?) review should be available next week (03/25 - 03/29). David also directed Mike to draft-mcgrew-iv-gen[1], and will suggest some text about how IV ought to be generated for GCM. There was a side discussion on the use of AES Key Wrap and its accessibility to implementers, versus using existing AEAD algorithms for key wrap. Given the general lack of support by underlying cryptographic libraries, re-using AEAD is very desirable. ACTIONS ------- * David to provide a new revision of draft-mcgrew-aead-aes-hmac-sha2 with suggested changes * David to provide suggested text on IV generation for GCM * Mike to review updated draft-mcgrew-aead-aes-hmac-sha2 when available * Mike to update draft-ietf-jose-json-web-algorithms with suggested text on GCM initialization vector values when available -----END MINUTES-----
- [jose] Discussion Minutes on draft-mcgrew-aead-ae… Matt Miller (mamille2)