IETF Logo Mail Archive

[jose] Re: Strawperson consensus call for changes to draft-ietf-jose-hpke-encrypt-01

Ilari Liusvaara <ilariliusvaara@welho.com> Thu, 11 July 2024 12:59 UTC

Return-Path: <ilariliusvaara@welho.com>
X-Original-To: jose@ietfa.amsl.com
Delivered-To: jose@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 80097C14F61F for <jose@ietfa.amsl.com>; Thu, 11 Jul 2024 05:59:28 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.906
X-Spam-Level:
X-Spam-Status: No, score=-6.906 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_HI=-5, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Ww4wQFt0E2r3 for <jose@ietfa.amsl.com>; Thu, 11 Jul 2024 05:59:24 -0700 (PDT)
Received: from welho-filter4.welho.com (welho-filter4b.welho.com [83.102.41.30]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 8D892C14F71F for <jose@ietf.org>; Thu, 11 Jul 2024 05:59:24 -0700 (PDT)
Received: from localhost (localhost [127.0.0.1]) by welho-filter4.welho.com (Postfix) with ESMTP id 2C26267F24 for <jose@ietf.org>; Thu, 11 Jul 2024 15:59:21 +0300 (EEST)
X-Virus-Scanned: Debian amavisd-new at pp.htv.fi
Received: from welho-smtp3.welho.com ([IPv6:::ffff:83.102.41.86]) by localhost (welho-filter4.welho.com [::ffff:83.102.41.26]) (amavisd-new, port 10024) with ESMTP id 0gvIxBCix5KX for <jose@ietf.org>; Thu, 11 Jul 2024 15:59:21 +0300 (EEST)
Received: from LK-Perkele-VII2 (78-27-96-203.bb.dnainternet.fi [78.27.96.203]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by welho-smtp3.welho.com (Postfix) with ESMTPSA id EAFDF2326 for <jose@ietf.org>; Thu, 11 Jul 2024 15:59:19 +0300 (EEST)
Date: Thu, 11 Jul 2024 15:59:19 +0300
From: Ilari Liusvaara <ilariliusvaara@welho.com>
To: JOSE WG <jose@ietf.org>
Message-ID: <Zo_XJ25UP0PgoGzM@LK-Perkele-VII2.locald>
References: <CAN8C-_KEv4s2SHBYi9ZeCi+Jjxk08r9tg+sqt1wtcgnyswCBgQ@mail.gmail.com> <CAFpG3gctSyVhC4gFJ4f00YoRKT4AyiOm84oB3XntQCT43QxZww@mail.gmail.com> <Zo-M5079iwsR5G3v@LK-Perkele-VII2.locald> <CAFpG3gc-OmjdgPTmE73n9WFepnmOi3E=ZL+o-r9=qzO48Bw-6Q@mail.gmail.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Disposition: inline
In-Reply-To: <CAFpG3gc-OmjdgPTmE73n9WFepnmOi3E=ZL+o-r9=qzO48Bw-6Q@mail.gmail.com>
Sender: ilariliusvaara@welho.com
Message-ID-Hash: E4LSZPA4J2DQJMN4LQQJ7FDNRH42WIQD
X-Message-ID-Hash: E4LSZPA4J2DQJMN4LQQJ7FDNRH42WIQD
X-MailFrom: ilariliusvaara@welho.com
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-jose.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
X-Mailman-Version: 3.3.9rc4
Precedence: list
Subject: [jose] Re: Strawperson consensus call for changes to draft-ietf-jose-hpke-encrypt-01
List-Id: Javascript Object Signing and Encryption <jose.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/jose/zjCwWtzkJi4usaSYY_7D6RJQT5A>
List-Archive: <https://mailarchive.ietf.org/arch/browse/jose>
List-Help: <mailto:jose-request@ietf.org?subject=help>
List-Owner: <mailto:jose-owner@ietf.org>
List-Post: <mailto:jose@ietf.org>
List-Subscribe: <mailto:jose-join@ietf.org>
List-Unsubscribe: <mailto:jose-leave@ietf.org>

On Thu, Jul 11, 2024 at 02:18:23PM +0530, tirumal reddy wrote:
> On Thu, 11 Jul 2024 at 13:12, Ilari Liusvaara <ilariliusvaara@welho.com>
> wrote:
> 
> > On Thu, Jul 11, 2024 at 11:19:19AM +0530, tirumal reddy wrote:
> > >
> > >
> > > I would like add another option proposed below for HPKE JWE Integrated
> > > Encryption Mode:
> > >
> > > The algorithm name SHALL be of the form "HPKE-P256-SHA256".
> > > The "enc" value SHALL be " A128GCM".
> > > The hpke-aad SHALL be of the form "protected (.aad)", as described in
> > Step
> > > 15 of RFC7516.
> > > The hpke-info SHALL be the same as is provided to concatKDF info for
> > > ECDH-ES, as described in
> > > https://datatracker.ietf.org/doc/html/rfc7518#section-4.6.2
> >
> > JWE does not allow doing that.
> >
> 
> Why does not JWE allow use of  {"alg" : "HPKE-P256-SHA256", "enc":
> A128GCM"} in case of direct key agreement mode ?

That would preclude bulk encryption using HPKE and require using HPKE
secret export (SendExport* and ReceiveExport*) for generating CEK for
performing standard JOSE bulk encryption. More complicated to implement,
but does not need JWE extensions.

When it comes to JWE modes, stuff either is or is not, there is no
"similar".




-Ilari

v2.36.0 | Report a Bug | By Email | System Status