IETF Logo Mail Archive

[jose] Re: Strawperson consensus call for changes to draft-ietf-jose-hpke-encrypt-01

Brian Campbell <bcampbell@pingidentity.com> Fri, 12 July 2024 22:11 UTC

Return-Path: <bcampbell@pingidentity.com>
X-Original-To: jose@ietfa.amsl.com
Delivered-To: jose@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7C018C14F5FE for <jose@ietfa.amsl.com>; Fri, 12 Jul 2024 15:11:55 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.103
X-Spam-Level:
X-Spam-Status: No, score=-2.103 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_NONE=0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=pingidentity.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id SQAJYDiZ6STW for <jose@ietfa.amsl.com>; Fri, 12 Jul 2024 15:11:51 -0700 (PDT)
Received: from mail-il1-x134.google.com (mail-il1-x134.google.com [IPv6:2607:f8b0:4864:20::134]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 810B2C14F602 for <jose@ietf.org>; Fri, 12 Jul 2024 15:11:51 -0700 (PDT)
Received: by mail-il1-x134.google.com with SMTP id e9e14a558f8ab-375daa47685so9129625ab.0 for <jose@ietf.org>; Fri, 12 Jul 2024 15:11:51 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=pingidentity.com; s=google; t=1720822310; x=1721427110; darn=ietf.org; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:from:to:cc:subject:date:message-id:reply-to; bh=jvWe3OI8ADbbrD8yGC45DTgu4v6UWm4gzYw8YiIl754=; b=A3QYy75OQEIEWb3qhAlo4k2KfpObVKBX9528ttubB1DYodb97mkg633PIu+rtgFLi7 SAjxHB6bkTybh7ChplHuRk25NWDN8VD4/7MXkUoK0eUyHjb2hfHzkHRLeKN+jOcvtAuW bQ/yJNfKvUjNyJHWPaBKV7zWEBz+R3/nAxM6oVRE+Ufgrr/F9GUWniJKAGmPOHroyPfQ 9R8cF5SPPg1DueIBNUWW2ckHht1sZo9JmcztyGg4jGMCg8DU2XCUGSpv05lwnRP0z0zS tGa8BTl0g/7fiE5GP7uDKgn1UlHtFMyo37vlhGsEXdtXFc2oG9EDgPYTzgFbv74LkBKq k9Eg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1720822310; x=1721427110; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:x-gm-message-state:from:to:cc:subject:date:message-id :reply-to; bh=jvWe3OI8ADbbrD8yGC45DTgu4v6UWm4gzYw8YiIl754=; b=YPreisY6lafZjCMHNyoQ7vKhL8DSa/KDOxL/kakuqWf7WBPZWXsZLc5ZN67YGKKAw3 G+4/zh7iF3m/5fFmmO7cVbZB0XYGxJEOvdu6Edl+JU7Wt2DFXgiwgp8HF2sFlFG6QP6m fDUxNzpe6pZx4YKrlWwT6AIogrZN/QkRAfgxz8x95egqLI1PDWIiJ5FftjRGsdDPm7+N fV4ANgGN1uqTeKqRz9t6TKY5hljXsyuRqxIZETINkZkT1PHfWxgYbMd8M99Y7n7cw6iL hK5XaFQ8PtXODLfZ9x02VIiLKRJ2NrOIr+cAM049FZmddQznxqU9QosZYMPRlEN1P5LH j/XQ==
X-Gm-Message-State: AOJu0Yy+FDugPLFNnYzRgOiGt03XUNlvGXabiXqc0U/g3Mo1ff+tDbSJ SSDi1rx3EHF/mTYBBxN9Hl9m11m8ZM1t80ayB6erUh1nvGYQXNZg/mriVCrBGFVGDcJ8VqV8HIL DS+FCLSMH6ONHOVf6ENWDsysIzEeMZvx/DdUWOc7OQ12EcKxmHtjXJ/iOTn0QxbKOiy5AOxMIdV Vc0nVZVYZK
X-Google-Smtp-Source: AGHT+IHM4OU55h4h0nTucP93kJKiNyCyTzZSXMbAOI0YGTfLAuKMvZXdM3HdSe+uNYZEZIA5Di+FGSlucidu3uMZNxc=
X-Received: by 2002:a05:6e02:148f:b0:375:a234:9dc0 with SMTP id e9e14a558f8ab-38a57214736mr165134665ab.10.1720822310416; Fri, 12 Jul 2024 15:11:50 -0700 (PDT)
MIME-Version: 1.0
References: <CAN8C-_KEv4s2SHBYi9ZeCi+Jjxk08r9tg+sqt1wtcgnyswCBgQ@mail.gmail.com>
In-Reply-To: <CAN8C-_KEv4s2SHBYi9ZeCi+Jjxk08r9tg+sqt1wtcgnyswCBgQ@mail.gmail.com>
From: Brian Campbell <bcampbell@pingidentity.com>
Date: Fri, 12 Jul 2024 16:11:24 -0600
Message-ID: <CA+k3eCRWtTmP9ObFjQOvhrUh3yDXwXA8tRbzT1r_Z1Z2mnjuYw@mail.gmail.com>
To: Orie Steele <orie@transmute.industries>
Content-Type: multipart/alternative; boundary="00000000000088d145061d142a5e"
Message-ID-Hash: ODFTWMI2DRVC6ZB4GLQKUVOIWQ5AWIAE
X-Message-ID-Hash: ODFTWMI2DRVC6ZB4GLQKUVOIWQ5AWIAE
X-MailFrom: bcampbell@pingidentity.com
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-jose.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: JOSE WG <jose@ietf.org>, jose-chairs@ietf.org
X-Mailman-Version: 3.3.9rc4
Precedence: list
Subject: [jose] Re: Strawperson consensus call for changes to draft-ietf-jose-hpke-encrypt-01
List-Id: Javascript Object Signing and Encryption <jose.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/jose/fKLXUHBWSMEgNeBn1DFgG8jevWc>
List-Archive: <https://mailarchive.ietf.org/arch/browse/jose>
List-Help: <mailto:jose-request@ietf.org?subject=help>
List-Owner: <mailto:jose-owner@ietf.org>
List-Post: <mailto:jose@ietf.org>
List-Subscribe: <mailto:jose-join@ietf.org>
List-Unsubscribe: <mailto:jose-leave@ietf.org>

On Wed, Jul 10, 2024 at 9:45 AM Orie Steele <orie@transmute.industries>
wrote:

>
> ### For HPKE JWE Integrated Encryption Mode:
>


> The "enc" value SHALL be "dir".
> The working group SHALL draft text explaining what "enc:dir" means, and
> how it related to "alg".
>

This doesn't work with RFC7516/JWE's definition of the "enc" header
<https://datatracker.ietf.org/doc/html/rfc7516#section-4.1.2>, which states
that the `enc` "(encryption algorithm) Header Parameter identifies the
content encryption algorithm used to perform authenticated encryption on
the plaintext to produce the ciphertext and the Authentication Tag. This
algorithm MUST be an AEAD algorithm with a specified key length."

-- 
_CONFIDENTIALITY NOTICE: This email may contain confidential and privileged 
material for the sole use of the intended recipient(s). Any review, use, 
distribution or disclosure by others is strictly prohibited.  If you have 
received this communication in error, please notify the sender immediately 
by e-mail and delete the message and any file attachments from your 
computer. Thank you._

v2.37.1 | Report a Bug | By Email | System Status