[jose] Re: 2nd WGLC for draft-ietf-jose-fully-specified-algorithms (Fully Specified Algorithms)
Filip Skokan <panva.ip@gmail.com> Mon, 09 September 2024 20:28 UTC
Return-Path: <panva.ip@gmail.com>
X-Original-To: jose@ietfa.amsl.com
Delivered-To: jose@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9E491C14F5E8; Mon, 9 Sep 2024 13:28:18 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.005
X-Spam-Level:
X-Spam-Status: No, score=-2.005 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, HTTPS_HTTP_MISMATCH=0.1, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id YgFqmFggY9DQ; Mon, 9 Sep 2024 13:28:14 -0700 (PDT)
Received: from mail-lf1-x134.google.com (mail-lf1-x134.google.com [IPv6:2a00:1450:4864:20::134]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 4AF12C14EB17; Mon, 9 Sep 2024 13:28:14 -0700 (PDT)
Received: by mail-lf1-x134.google.com with SMTP id 2adb3069b0e04-53661a131b4so2713880e87.1; Mon, 09 Sep 2024 13:28:14 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20230601; t=1725913692; x=1726518492; darn=ietf.org; h=to:subject:message-id:date:from:in-reply-to:references:mime-version :from:to:cc:subject:date:message-id:reply-to; bh=wnrRHCtCXof2i5KdW4VJJldj0UhUHfL96rNo98PiuZA=; b=S3dWW/sOdbU58fVZkY1U0wHItsveSltbU4jS2MmH9sz3MalKW+tLOnl1C17t//zkfe 3hwosdaMcKSVNpu2AD8Fz1PxoJNIyQuhElLB+7g+/gUODvBs+0IQDanVKWSlZnI4C3P5 +5jPniNDczNq1YiX2/2Eyt7HC6ridMv2OiCz1LpdzqlNQh3k5Txj0JqDIeqxY0rEzAZ+ kjrRZdtj3tIfJarPv8iO7rYmbxd2gxzRjgsdOzCPLclxtj/S3R++ans25iaJHYVru++4 gfzo4PgxqKx9n6a+97zZvZ1B3Xn1wGpJevrnU8He2cR7DjrW+4/XavUc80z9VFPW44er eW0w==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1725913692; x=1726518492; h=to:subject:message-id:date:from:in-reply-to:references:mime-version :x-gm-message-state:from:to:cc:subject:date:message-id:reply-to; bh=wnrRHCtCXof2i5KdW4VJJldj0UhUHfL96rNo98PiuZA=; b=G7WeOrnAWx4IDFez33wnxfIXAp72jO1iWKSMKhr81FvswVawstnquDE9Az7nQL+BX8 lbUfwKv3bFSqFWBiw7QJKl3cFzZnUAxZ2/xR6DGIZPETfvMPP8ihE3jw70PyDgxanXGQ IziQ+AbcRXgslVy/Bj1g8vhlchynm2ghaf/SN9OXldMhOfFlShigEHt4XPrpSXskf1uk oM8MCNJZMl0mMgufzYBn+7jrquJiLamgAwiK1+ifDpYiXahba/LnvQnPvcg63JNKwJY0 EiUwbD/O8yZ3wvMt1WAZf8+h9oukLbvoZGesacUps/yMm6uxR22RYONhsx5V/vYGjjLh FA4Q==
X-Forwarded-Encrypted: i=1; AJvYcCWv8IK7ytS6I8jeUn+AVlkLkqZ37Hm96Dy+rpstVAoqhwQh4WEvhoityuLTY6qniMbX8d13@ietf.org
X-Gm-Message-State: AOJu0YyGnctfhf/dlKhih2bZfEY9cxnSB6ffRqv++x04v5yt6IM/x8tW /qXF2zvR+Ne3xyATc7eWE22tm5hvDWBHpAb0fO+QbfwnrLG+5a1CLWpf9hPwkriO7WJCA3wfFUp 5JD/t9Q7VSBB5autkDWmkekHlLEEDY/4=
X-Google-Smtp-Source: AGHT+IHrwzLgKQfLjpee0jhcFvmuhumADpvpTj9s/p+MewF1W8PdKskRZ0iP8ePKJTPq6GqVtJVv5y8PoOOzHcwImT4=
X-Received: by 2002:a05:6512:238d:b0:535:6a05:f9e3 with SMTP id 2adb3069b0e04-536587a76e7mr6934269e87.7.1725913691833; Mon, 09 Sep 2024 13:28:11 -0700 (PDT)
MIME-Version: 1.0
References: <CA+mgmiOEbk9qjDwNTu198QVWAGqcuKNSPd2F-YtngcLZwjunZw@mail.gmail.com> <GVXPR07MB9678C278636D28A01AA85C44898F2@GVXPR07MB9678.eurprd07.prod.outlook.com> <PAXPR07MB88443BE71B6DDC81F845A2BDF49D2@PAXPR07MB8844.eurprd07.prod.outlook.com>
In-Reply-To: <PAXPR07MB88443BE71B6DDC81F845A2BDF49D2@PAXPR07MB8844.eurprd07.prod.outlook.com>
From: Filip Skokan <panva.ip@gmail.com>
Date: Mon, 09 Sep 2024 22:27:35 +0200
Message-ID: <CALAqi_9-ZDj=nK7BX8T_OW+x4JB-Dq79H6NLhZGVCR3hYT+7vg@mail.gmail.com>
To: "jose@ietf.org" <jose@ietf.org>, "cose@ietf.org" <cose@ietf.org>
Content-Type: multipart/alternative; boundary="00000000000083d2920621b5985f"
Message-ID-Hash: 3OGGNXJYAVTL7ZKIGJUR2WTO56EWF5CR
X-Message-ID-Hash: 3OGGNXJYAVTL7ZKIGJUR2WTO56EWF5CR
X-MailFrom: panva.ip@gmail.com
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-jose.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
X-Mailman-Version: 3.3.9rc4
Precedence: list
Subject: [jose] Re: 2nd WGLC for draft-ietf-jose-fully-specified-algorithms (Fully Specified Algorithms)
List-Id: Javascript Object Signing and Encryption <jose.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/jose/fFC3MICb0IZGhxaBt3BXaStimu0>
List-Archive: <https://mailarchive.ietf.org/arch/browse/jose>
List-Help: <mailto:jose-request@ietf.org?subject=help>
List-Owner: <mailto:jose-owner@ietf.org>
List-Post: <mailto:jose@ietf.org>
List-Subscribe: <mailto:jose-join@ietf.org>
List-Unsubscribe: <mailto:jose-leave@ietf.org>
I would like to thank the authors for their diligent work on the document. Here's my 2nd WGLC feedback I am comparing the document status before the first WGLC (draft 02) and now <https://author-tools.ietf.org/iddiff?url1=draft-ietf-jose-fully-specified-algorithms-02&url2=draft-ietf-jose-fully-specified-algorithms-05&difftype=--html>. I appreciate the new section *4.4. Defining Deprecated and Prohibited* and am also recognizing the new COSE ECDSA registrations that enable continued use of Brainpool curves with COSE in a fully-specified manner. I am not certain about which discussion led to the entirety of section 3. Fully-Specified Encryption, nevertheless in its language it states > Each of these multiple algorithms must be independently fully specified. The operations performed by each of them MUST NOT vary when used alongside other algorithms. So for instance, for JOSE, alg values and enc values MUST each be fully specified, and their behaviors MUST NOT depend upon one another. This would not be the case for either one of the JOSE ECDH-ES proposed algorithms (which were presented at the last meeting), in each of them "enc" informs "alg" about the expected CEK length output. Additionally, in ECDH-ES direct the "enc" value is directly used in ConcatKDF too. I'm not sure whether the contradiction between this text in section 3.1. and the above is okay or not given that the document no longer specifies any new ECDH algorithm identifiers. FWIW in 3.3.1. it clearly states the existing algorithms are not fully-specified but are polymorphic so this text wouldn't disqualify them. It is nevertheless confusing. >From section 3.3.1. Elliptic Curve Diffie-Hellman (ECDH) > While Appendix A describes possible fully-specified ECDH algorithms that could be registered for JOSE and COSE, the working group decided to leave decisions about which fully-specified ECDH algorithms to register to future specifications, if needed. This is not true because these would not be fully-specified; the "alg" ConcatKDF always use of elements from "enc", i.e. they depend on one another. While I asked that at least the algorithm identifiers be removed from Appendix A (which was done and it fulfilled my feedback from the IETF meeting during which granted, I was remote and half asleep), I came to think the entirety of Appendix A should probably be removed instead. >From section 3.2. Analysis of Modes of Encryption > It does register a small set of new fully-specified encryption algorithms, so that polymorphic encryption algorithms need not be used. It doesn't anymore. Because the list feedback seems to circle around the encryption bits over and over again and even contradicting itself at one point, I would like to propose to remove section 3 and *only focus on the Fully-Specified Digital Signature Algorithm Identifiers. *I'm hoping to be able to start transitioning away from the "EdDSA" algorithm identifier soon. S pozdravem, *Filip Skokan* On Thu, 5 Sept 2024 at 10:29, Göran Selander <goran.selander= 40ericsson.com@dmarc.ietf.org> wrote: > (About target audience: This draft is proposing to deprecate algorithms > in the COSE IANA registry. It would be great if it by default was > circulated also on the COSE WG mailing list to enable a timely discussion > among those affected.) > > > > With reference to a previous thread on this topic: > > https://www.mail-archive.com/cose@ietf.org/msg03799.html > > The term “deprecated” is still used in this draft with a different meaning > compared to RFC8996 and RFC9325. It doesn’t help that you in this document > point out that you are using the word with a different meaning that people > are used to, very much fewer people will read this document than those that > stumble on the term used in registries and understand it from other > contexts. > > > > Moreover, this overload of terminology is actually unnecessary: > > > > Section 4.4 > > > The terms "Deprecated" and "Prohibited" as used by JOSE and COSE > registrations are currently undefined. > > > > So, in fact this provides a unique opportunity to disambiguate and avoid > the otherwise inevitable confusion that will come up over and over again > arising from the use of the same term with different meanings. A number of > perfectly good alternative terms were suggested in the referenced mail > thread. > > > > Moreover, for systems that makes use of the COSE IANA registry and > specifies algorithms with enough parameters to make them completely > determined, for example EDHOC cipher suites, there is no need to change or > abandon the use of the current algorithms. Hence the recommendation > (“SHOULD”) in the definition does not apply to such systems, and that > circumstance should be stated as an exception to the recommendation. > > > > > > In summary > > > > - use a different term > - make it clear that current algorithms may be used in case a separate > specification adds the necessary information to make them fully specified > > > > > > Göran > > > > > > *From: *John Mattsson <john.mattsson=40ericsson.com@dmarc.ietf.org> > *Date: *Thursday, 22 August 2024 at 11:10 > *To: *cose@ietf.org <cose@ietf.org> > *Subject: *[COSE] FW: [jose] 2nd WGLC for > draft-ietf-jose-fully-specified-algorithms (Fully Specified Algorithms) > > Forwarding to the COSE list as the document updates both RFC 8152 and RFC > 9053. > > Cheers, > John > > > > *From: *Karen ODonoghue <kodonog@pobox.com> > *Date: *Wednesday, 21 August 2024 at 16:12 > *To: *JOSE WG <jose@ietf.org> > *Subject: *[jose] 2nd WGLC for draft-ietf-jose-fully-specified-algorithms > (Fully Specified Algorithms) > > JOSE working group members, > > This email initiates a second working group last call for the Fully > Specified Algorithms document: > > https://eur02.safelinks.protection.outlook.com/?url=https%3A%2F%2Fdatatracker.ietf.org%2Fdoc%2Fdraft-ietf-jose-fully-specified-algorithms%2F&data=05%7C02%7Cjohn.mattsson%40ericsson.com%7C4d5ca1448df945ce272908dcc1eb446e%7C92e84cebfbfd47abbe52080c6b87953f%7C0%7C0%7C638598463418037480%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C0%7C%7C%7C&sdata=lC1d%2Bvw9fTh%2FG2brNNztghIYFbp4pnGwjqvfN%2Bbqrn8%3D&reserved=0 > <https://datatracker.ietf.org/doc/draft-ietf-jose-fully-specified-algorithms/> > > The authors have updated the draft based on WGLC comments and > discussions at IETF 120, and the chairs have polled the working group > about the readiness for WGLC. Seeing no opposition, we've decided to > proceed with a second WGLC. > > Please review the document in detail and reply to this message > (keeping the subject line intact) with your opinion on the readiness > of this document for publication and any additional comments that you > have. > > This will be a three week WGLC. Please submit your responses by 13 > September 2024. > > Thank you, > Karen (for the JOSE WG chairs) > > _______________________________________________ > jose mailing list -- jose@ietf.org > To unsubscribe send an email to jose-leave@ietf.org > _______________________________________________ > jose mailing list -- jose@ietf.org > To unsubscribe send an email to jose-leave@ietf.org >
- [jose] 2nd WGLC for draft-ietf-jose-fully-specifi… Karen ODonoghue
- [jose] Re: 2nd WGLC for draft-ietf-jose-fully-spe… Michael Jones
- [jose] Re: 2nd WGLC for draft-ietf-jose-fully-spe… Anders Rundgren
- [jose] Re: 2nd WGLC for draft-ietf-jose-fully-spe… Oliver Terbu
- [jose] Re: 2nd WGLC for draft-ietf-jose-fully-spe… Neil Madden
- [jose] Re: 2nd WGLC for draft-ietf-jose-fully-spe… Brian Campbell
- [jose] Re: 2nd WGLC for draft-ietf-jose-fully-spe… Filip Skokan
- [jose] Re: 2nd WGLC for draft-ietf-jose-fully-spe… Gabe Cohen
- [jose] Re: 2nd WGLC for draft-ietf-jose-fully-spe… Karen ODonoghue
- [jose] Re: 2nd WGLC for draft-ietf-jose-fully-spe… Leif Johansson
- [jose] Re: 2nd WGLC for draft-ietf-jose-fully-spe… Brian Campbell
- [jose] Re: 2nd WGLC for draft-ietf-jose-fully-spe… John Bradley
- [jose] Re: 2nd WGLC for draft-ietf-jose-fully-spe… Giuseppe De Marco
- [jose] Re: 2nd WGLC for draft-ietf-jose-fully-spe… John Mattsson
- [jose] Re: 2nd WGLC for draft-ietf-jose-fully-spe… Neil Madden
- [jose] Re: 2nd WGLC for draft-ietf-jose-fully-spe… Michael Jones
- [jose] Re: 2nd WGLC for draft-ietf-jose-fully-spe… Michael Jones
- [jose] Re: 2nd WGLC for draft-ietf-jose-fully-spe… Ilari Liusvaara
- [jose] Re: 2nd WGLC for draft-ietf-jose-fully-spe… David Waite
- [jose] Re: 2nd WGLC for draft-ietf-jose-fully-spe… David Waite
- [jose] Re: 2nd WGLC for draft-ietf-jose-fully-spe… Axel.Nennker
- [jose] Re: 2nd WGLC for draft-ietf-jose-fully-spe… John Mattsson
- [jose] Re: 2nd WGLC for draft-ietf-jose-fully-spe… Michael Jones
- [jose] Re: 2nd WGLC for draft-ietf-jose-fully-spe… Göran Selander
- [jose] Re: 2nd WGLC for draft-ietf-jose-fully-spe… Michael Jones
- [jose] Re: 2nd WGLC for draft-ietf-jose-fully-spe… Michael Jones
- [jose] Re: 2nd WGLC for draft-ietf-jose-fully-spe… Nov Matake
- [jose] Re: [COSE] Re: 2nd WGLC for draft-ietf-jos… Michael Jones
- [jose] Re: 2nd WGLC for draft-ietf-jose-fully-spe… Michael Jones
- [jose] Re: [COSE] Re: Re: 2nd WGLC for draft-ietf… Michael Jones
- [jose] Re: 2nd WGLC for draft-ietf-jose-fully-spe… Göran Selander
- [jose] Re: 2nd WGLC for draft-ietf-jose-fully-spe… Anders Rundgren
- [jose] Re: [COSE] Re: Re: 2nd WGLC for draft-ietf… Marco Tiloca
- [jose] Re: [COSE] Re: Re: 2nd WGLC for draft-ietf… Michael Jones