[jose] Inconsistent use of Key Encryption and Wrapping terms across JWE and JWA?
Brian Campbell <bcampbell@pingidentity.com> Tue, 30 July 2013 15:31 UTC
Return-Path: <bcampbell@pingidentity.com>
X-Original-To: jose@ietfa.amsl.com
Delivered-To: jose@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 730F421E80B7 for <jose@ietfa.amsl.com>; Tue, 30 Jul 2013 08:31:22 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -5.821
X-Spam-Level:
X-Spam-Status: No, score=-5.821 tagged_above=-999 required=5 tests=[AWL=0.155, BAYES_00=-2.599, FM_FORGED_GMAIL=0.622, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_MED=-4]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id nSYOD1qkD4+8 for <jose@ietfa.amsl.com>; Tue, 30 Jul 2013 08:31:17 -0700 (PDT)
Received: from na3sys009aog119.obsmtp.com (na3sys009aog119.obsmtp.com [74.125.149.246]) by ietfa.amsl.com (Postfix) with ESMTP id 52A1911E81D6 for <jose@ietf.org>; Tue, 30 Jul 2013 08:31:16 -0700 (PDT)
Received: from mail-oa0-f47.google.com ([209.85.219.47]) (using TLSv1) by na3sys009aob119.postini.com ([74.125.148.12]) with SMTP ID DSNKUffcQ0tpbBUTx/N6ck2rHt+hlrtQHsSv@postini.com; Tue, 30 Jul 2013 08:31:16 PDT
Received: by mail-oa0-f47.google.com with SMTP id m6so9683161oag.34 for <jose@ietf.org>; Tue, 30 Jul 2013 08:31:11 -0700 (PDT)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20120113; h=mime-version:from:date:message-id:subject:to:content-type :x-gm-message-state; bh=QyTMc38sytCCmiRj5gGsOkY5PrrHj3ZeoUnCuEi8fMg=; b=bps6t84eCZC5Yuzaqm5qViBd/VEqEZ98rQ7Q8gsKWtf0PPJQWPqtnY7LuC5Mok7VmC kpQUz+C/qfHFwVeNPjcJQCHqQ+RxtWf2C6ypDnVqvrW2PZY8Gjw01ocnTmHoE8SuGD4M CFiTUzklKOYp8h9T5R1viKmCa9oqgTpMD7pflUBMB43Ms2G8bBWayo0o1PyG9YHRum5P rUCmrpizMgw9MFgML7163YI7h0RAO3jsM5ADzPDCzo3yn+46mBMME6eJSqF66M+CRBHk 5J6avXmCOXNfTEpCEKk+d6vlD1bsMBjo5cOWfGs8GAyl72puD4OPMmcd6LJiPjEAkk4z YXGg==
X-Received: by 10.50.77.80 with SMTP id q16mr217848igw.3.1375198271774; Tue, 30 Jul 2013 08:31:11 -0700 (PDT)
X-Received: by 10.50.77.80 with SMTP id q16mr217847igw.3.1375198271700; Tue, 30 Jul 2013 08:31:11 -0700 (PDT)
MIME-Version: 1.0
Received: by 10.64.41.34 with HTTP; Tue, 30 Jul 2013 08:30:41 -0700 (PDT)
From: Brian Campbell <bcampbell@pingidentity.com>
Date: Tue, 30 Jul 2013 17:30:41 +0200
Message-ID: <CA+k3eCTz-AKSypQw5VO8iS50-m0iJa0ZkqWLnN7bKk9LTh_gKg@mail.gmail.com>
To: "jose@ietf.org" <jose@ietf.org>
Content-Type: multipart/alternative; boundary="047d7bdc12387b1b8304e2bc4c3c"
X-Gm-Message-State: ALoCoQkjhLFIR5xkeRiLSre+hNU63SUjzwDSLOwVKXbSbbVBXOaGJIDr24ZgPQs3ASFsDvKv2jZ0bZvTUeUEW0nTp0I7qxkTAUMxFNjNKDfYCD2izkBqh3+3I34Lle2edSIYchHWCQZX
Subject: [jose] Inconsistent use of Key Encryption and Wrapping terms across JWE and JWA?
X-BeenThere: jose@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Javascript Object Signing and Encryption <jose.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/jose>, <mailto:jose-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/jose>
List-Post: <mailto:jose@ietf.org>
List-Help: <mailto:jose-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/jose>, <mailto:jose-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 30 Jul 2013 15:31:22 -0000
JOSE,
The Terminology section in JWE defines Key Encryption and Key Wrapping with
the only difference between the two being the type of key (asymmetric vs.
symmetric respectively) that is used to encrypt the CEK. Here's the text
from JWE §2 [1]:
"Key Encryption A Key Management Mode in which the Content Encryption
Key (CEK) value is encrypted to the intended recipient using an
asymmetric encryption algorithm.
Key Wrapping A Key Management Mode in which the Content Encryption
Key (CEK) value is encrypted to the intended recipient using a
symmetric key wrapping algorithm."
However, JWA seems inconsistent in its use of those terms when it talks
about about "Key Encryption" with AES GCM [2] and PBES [3], which are
symmetric and thus should be "Key Wrapping" based on the definitions above
from JWE. Or am I missing something here?
Are JWE's definitions of Key Encryption and Key Wrapping consistent with
how the world at large would use and understand the terms? I wasn't
familiar with the distinction myself. And a little web searching wasn't too
conclusive - it looks like XML ENC uses "Key Transport" [4] and "Symmetric
Key Wrap" [5] as does CMS [6] while Wikipedia (yeah, I went there) seems to
like "Key Encapsulation" [7] and "Key Wrap" [8].
Not that the terms really matter all that much but I've been having a hard
time naming things in my implementation and my confusion here isn't helping.
Thanks,
Brian
[1]
http://tools.ietf.org/html/draft-ietf-jose-json-web-encryption-14#section-2
[2]
http://tools.ietf.org/html/draft-ietf-jose-json-web-algorithms-14#section-4.8
[3]
http://tools.ietf.org/html/draft-ietf-jose-json-web-algorithms-14#section-4.9
[4] http://www.w3.org/TR/xmlenc-core/#sec-Alg-KeyTransport
[5] http://www.w3.org/TR/xmlenc-core/#sec-Alg-SymmetricKeyWrap
[6] http://tools.ietf.org/html/rfc6033
[7] http://en.wikipedia.org/wiki/Key_encapsulation
[8] http://en.wikipedia.org/wiki/Key_Wrap
- [jose] Inconsistent use of Key Encryption and Wra… Brian Campbell