IETF Logo Mail Archive

Re: [jose] PBES2-HS256+A128KW: where do salt and iteration count go?

Mike Jones <Michael.Jones@microsoft.com> Tue, 30 July 2013 09:14 UTC

Return-Path: <Michael.Jones@microsoft.com>
X-Original-To: jose@ietfa.amsl.com
Delivered-To: jose@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2AE5921E80E5 for <jose@ietfa.amsl.com>; Tue, 30 Jul 2013 02:14:53 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.055
X-Spam-Level:
X-Spam-Status: No, score=-4.055 tagged_above=-999 required=5 tests=[AWL=0.543, BAYES_00=-2.599, GB_I_LETTER=-2, HTML_MESSAGE=0.001]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id lCNMEI5OxpJ7 for <jose@ietfa.amsl.com>; Tue, 30 Jul 2013 02:14:47 -0700 (PDT)
Received: from db8outboundpool.messaging.microsoft.com (mail-db8lp0185.outbound.messaging.microsoft.com [213.199.154.185]) by ietfa.amsl.com (Postfix) with ESMTP id E105B21E810A for <jose@ietf.org>; Tue, 30 Jul 2013 02:09:05 -0700 (PDT)
Received: from mail26-db8-R.bigfish.com (10.174.8.235) by DB8EHSOBE010.bigfish.com (10.174.4.73) with Microsoft SMTP Server id 14.1.225.22; Tue, 30 Jul 2013 09:08:48 +0000
Received: from mail26-db8 (localhost [127.0.0.1]) by mail26-db8-R.bigfish.com (Postfix) with ESMTP id 75A4A300119; Tue, 30 Jul 2013 09:08:48 +0000 (UTC)
X-Forefront-Antispam-Report: CIP:131.107.125.8; KIP:(null); UIP:(null); IPV:NLI; H:TK5EX14HUBC103.redmond.corp.microsoft.com; RD:autodiscover.service.exchange.microsoft.com; EFVD:NLI
X-SpamScore: -25
X-BigFish: VS-25(zz98dI9371Ic85fh1b0bId772h542I1432Izz1f42h208ch1ee6h1de0h1fdah2073h1202h1e76h1d1ah1d2ah1fc6hzz1d7338h1de098h1033IL17326ah18c673h1de096h8275bh8275dh1de097hz2fh2a8h668h839hd25hf0ah1288h12a5h12bdh137ah1441h1504h1537h153bh15d0h162dh1631h1758h18e1h1946h19b5h19ceh1b0ah1bceh1d0ch1d2eh1d3fh1dc1h1dfeh1dffh1e1dh1155h)
Received-SPF: pass (mail26-db8: domain of microsoft.com designates 131.107.125.8 as permitted sender) client-ip=131.107.125.8; envelope-from=Michael.Jones@microsoft.com; helo=TK5EX14HUBC103.redmond.corp.microsoft.com ; icrosoft.com ;
Received: from mail26-db8 (localhost.localdomain [127.0.0.1]) by mail26-db8 (MessageSwitch) id 1375175326722143_18574; Tue, 30 Jul 2013 09:08:46 +0000 (UTC)
Received: from DB8EHSMHS014.bigfish.com (unknown [10.174.8.254]) by mail26-db8.bigfish.com (Postfix) with ESMTP id A263C8A004B; Tue, 30 Jul 2013 09:08:46 +0000 (UTC)
Received: from TK5EX14HUBC103.redmond.corp.microsoft.com (131.107.125.8) by DB8EHSMHS014.bigfish.com (10.174.4.24) with Microsoft SMTP Server (TLS) id 14.16.227.3; Tue, 30 Jul 2013 09:08:43 +0000
Received: from TK5EX14MBXC284.redmond.corp.microsoft.com ([169.254.1.38]) by TK5EX14HUBC103.redmond.corp.microsoft.com ([157.54.86.9]) with mapi id 14.03.0136.001; Tue, 30 Jul 2013 09:08:33 +0000
From: Mike Jones <Michael.Jones@microsoft.com>
To: Richard Barnes <rlb@ipv.sx>
Thread-Topic: [jose] PBES2-HS256+A128KW: where do salt and iteration count go?
Thread-Index: Ac6NBFoHnAFoLuf9T0OrEi7evpTfzQ==
Date: Tue, 30 Jul 2013 09:08:32 +0000
Message-ID: <4E1F6AAD24975D4BA5B16804296739436B7309A1@TK5EX14MBXC284.redmond.corp.microsoft.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [157.54.51.34]
Content-Type: multipart/alternative; boundary="_000_4E1F6AAD24975D4BA5B16804296739436B7309A1TK5EX14MBXC284r_"
MIME-Version: 1.0
X-FOPE-CONNECTOR: Id%0$Dn%*$RO%0$TLS%0$FQDN%$TlsDn%
Cc: "jose@ietf.org" <jose@ietf.org>, "Matt Miller (mamille2)" <mamille2@cisco.com>
Subject: Re: [jose] PBES2-HS256+A128KW: where do salt and iteration count go?
X-BeenThere: jose@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Javascript Object Signing and Encryption <jose.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/jose>, <mailto:jose-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/jose>
List-Post: <mailto:jose@ietf.org>
List-Help: <mailto:jose-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/jose>, <mailto:jose-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 30 Jul 2013 09:14:53 -0000

Draft 14 uses the parameter names "p2s" and "p2c", as suggested below.

                                                            -- Mike

From: Richard Barnes [mailto:rlb@ipv.sx]
Sent: Friday, July 19, 2013 9:56 AM
To: Mike Jones
Cc: Matt Miller (mamille2); jose@ietf.org<mailto:jose@ietf.org>
Subject: Re: [jose] PBES2-HS256+A128KW: where do salt and iteration count go?

If we can spare one more octet, how about "salt" and "iter"?  Otherwise, I would be fine keeping "s" and "c", or maybe "p2s" and "p2c" to indicate their use with PBKDF2.

On Thu, Jul 18, 2013 at 2:39 PM, Mike Jones <Michael.Jones@microsoft.com<mailto:Michael.Jones@microsoft.com>> wrote:
Wearing my editor's hat, it seems like the direction from the working group is to make the salt and iteration count be explicit header parameter values and to drop the "kty":"PBKDF2".  Any disagreement, or shall I do that in the next drafts?

FYI, I was thinking that I'd use "slt" and "itc" for the parameter names.

                                -- Mike

-----Original Message-----
From: Matt Miller (mamille2) [mailto:mamille2@cisco.com<mailto:mamille2@cisco.com>]
Sent: Tuesday, July 16, 2013 6:52 PM
To: Manger, James H
Cc: Richard Barnes; Mike Jones; jose@ietf.org<mailto:jose@ietf.org>
Subject: Re: [jose] PBES2-HS256+A128KW: where do salt and iteration count go?

I think the basic concept is fine, but I would rather not add any more human-facing fields.  It has too much potential to open the Pandora's box that is localization and internationalization.  Hint is something one human enters directly (I assume), so said human could communicate it to other humans.

I do understand your concerns with "password" (or "pwd" to continue our exuberant use of three-letter fields), but that seems like a more general issue to discuss.


- m&m

Matt Miller < mamille2@cisco.com<mailto:mamille2@cisco.com> >
Cisco Systems, Inc.

On Jul 16, 2013, at 6:08 PM, "Manger, James H" <James.H.Manger@team.telstra.com<mailto:James.H.Manger@team.telstra.com>>
 wrote:

> "kty":"PBKDF2" feels unnecessary, though "kty":"password" would be useful. A key set could have an entry like the following:
>
> {
>  "kty":"password",
> "alg":" PBES2-HS256+A128KW",
> "c-min":2000,
> "prompt":"Payment approval PIN",
> "hint":"last 4 digits of \u03C0"
> }
>
> The entry could also have a "password" field holding the actual password.
> Mind you, I think mixing public (eg kty, alg) and sensitive (eg hint, password) fields side-by-side in a JSON object is a design guaranteed to lead to security breaches from poor handling.
>
> --
> James Manger
>
> From: Richard Barnes [mailto:rlb@ipv.sx<mailto:rlb@ipv.sx>]
> Sent: Wednesday, 17 July 2013 9:37 AM
> To: Mike Jones
> Cc: Matt Miller (mamille2); Manger, James H; jose@ietf.org<mailto:jose@ietf.org>
> Subject: Re: [jose] PBES2-HS256+A128KW: where do salt and iteration count go?
>
> I was thinking that the "jwk" would be unnecessary.  We could have "hint" at the top level, or just use "kid" for that purpose.
>
> --Richard
>
> On Tue, Jul 16, 2013 at 7:30 PM, Mike Jones <Michael.Jones@microsoft.com<mailto:Michael.Jones@microsoft.com><mailto:Michael.Jones@microsoft.com<mailto:Michael.Jones@microsoft.com>>> wrote:
> If we move "s" and "c" to being header parameters from the JWK, would we still need the JWK with "kty":"PBKDF2"?  All that would be left would be the "hint" JWK parameter.

_______________________________________________
jose mailing list
jose@ietf.org<mailto:jose@ietf.org>
https://www.ietf.org/mailman/listinfo/jose

v2.30.2 | Report a Bug | By Email | System Status