IETF Logo Mail Archive

Reasons to include ECC to our charter

"Dominikus Scherkl" <Dominikus.Scherkl@biodata.com> Thu, 09 August 2001 11:53 UTC

Received: from above.proper.com (above.proper.com [208.184.76.39]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id HAA21359 for <openpgp-archive@odin.ietf.org>; Thu, 9 Aug 2001 07:53:37 -0400 (EDT)
Received: from localhost (localhost [[UNIX: localhost]]) by above.proper.com (8.11.3/8.11.3) id f79BXgJ06560 for ietf-openpgp-bks; Thu, 9 Aug 2001 04:33:42 -0700 (PDT)
Received: from mail1.biodata.com ([62.159.113.2]) by above.proper.com (8.11.3/8.11.3) with ESMTP id f79BXeN06556 for <ietf-openpgp@imc.org>; Thu, 9 Aug 2001 04:33:40 -0700 (PDT)
Received: from fra1d001.biodata.org ([10.10.1.51]) by mail1.biodata.com with Microsoft SMTPSVC(5.0.2195.2966); Thu, 9 Aug 2001 13:33:28 +0200
X-MimeOLE: Produced By Microsoft Exchange V6.0.4712.0
content-class: urn:content-classes:message
MIME-Version: 1.0
Content-Type: multipart/mixed; boundary="----_=_NextPart_001_01C120C7.1C1701C3"
Subject: Reasons to include ECC to our charter
Date: Thu, 09 Aug 2001 13:33:28 +0200
Message-ID: <100722F3C53A484B8CF1F14B4F062E9315705F@fra1d001.biodata.org>
Thread-Topic: Draft openPGP ECC formats
Thread-Index: AcEgMu8kU9jpylGORk6/IlomTWd8cwAjN0+w
From: Dominikus Scherkl <Dominikus.Scherkl@biodata.com>
To: "openPGP e-Mail (E-Mail)" <ietf-openpgp@imc.org>
X-OriginalArrivalTime: 09 Aug 2001 11:33:28.0565 (UTC) FILETIME=[1C21EA50:01C120C7]
Sender: owner-ietf-openpgp@mail.imc.org
Precedence: bulk
List-Archive: <http://www.imc.org/ietf-openpgp/mail-archive/>
List-Unsubscribe: <mailto:ietf-openpgp-request@imc.org?body=unsubscribe>
List-ID: <ietf-openpgp.imc.org>

Dear openPGP Working Group,

Sorry, that I supposed my suggestions for an ECC-extension
to the openPGP message format to be property of this WG while
it is only a personal draft.


Now for my reasons, why this WG should include
<draft-scherkl-openpgp-ecc-00.txt> to its charter:

I think it is time to fulfill the promise this WG made by
reserving space for ECC and ECDSA, if we want to keep this
standard as wide used as it is.

Long time has gone since we reserved IDs for ECC algorithms
and many applications now support ECC but can't provide it in
an openPGP context. So they uses other standards like S/MIME
or proprietary protocols to provide these algorithms to those
who want to enjoy their advantages.

Different sets of ECC parameters have now been tested long
enough to outsource all trivialy (and many not so trivial)
cases that won't provide sufficient security, so ECC becomes
a "well known" algortithm.
In this light the somewhat slightly advantages "short keys"
and "high performance" gain weight due to the lack of
disadvantages.

Therefore I'm convinced we can include it in the standard
without high probability to compromise our security goals.

The attached draft is thought to be fully conform with the
openPGP format and even some other standards, and it defines
all elliptic curves so that no greater changes in the
future are expected (it keeps no further gaps in the ECC
definiton as some older suggestions have done).
If it isn't, I'm sure we can make it with small efford.

At all, the openPGP standard can only gain by adding this
draft to the charter.

Best Regards
-- 
Dominikus Scherkl
Biodata Application Security AG
mail: Dominikus.Scherkl@Biodata.com

v2.23.0 | Report a Bug | By Email