IETF Logo Mail Archive

Re: [pkix] Fwd: I-D Action: draft-turner-additional-methods-4kis-02.txt

Tom Gindin <tgindin@us.ibm.com> Wed, 25 April 2012 00:09 UTC

Return-Path: <tgindin@us.ibm.com>
X-Original-To: pkix@ietfa.amsl.com
Delivered-To: pkix@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9FB6911E80BB for <pkix@ietfa.amsl.com>; Tue, 24 Apr 2012 17:09:15 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -10.374
X-Spam-Level:
X-Spam-Status: No, score=-10.374 tagged_above=-999 required=5 tests=[AWL=0.225, BAYES_00=-2.599, RCVD_IN_DNSWL_HI=-8]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 2FyBcEUIGw-v for <pkix@ietfa.amsl.com>; Tue, 24 Apr 2012 17:09:15 -0700 (PDT)
Received: from e36.co.us.ibm.com (e36.co.us.ibm.com [32.97.110.154]) by ietfa.amsl.com (Postfix) with ESMTP id 95FAF11E80B3 for <pkix@ietf.org>; Tue, 24 Apr 2012 17:09:07 -0700 (PDT)
Received: from /spool/local by e36.co.us.ibm.com with IBM ESMTP SMTP Gateway: Authorized Use Only! Violators will be prosecuted for <pkix@ietf.org> from <tgindin@us.ibm.com>; Tue, 24 Apr 2012 18:09:07 -0600
Received: from d01dlp03.pok.ibm.com (9.56.224.17) by e36.co.us.ibm.com (192.168.1.136) with IBM ESMTP SMTP Gateway: Authorized Use Only! Violators will be prosecuted; Tue, 24 Apr 2012 18:09:06 -0600
Received: from d01relay05.pok.ibm.com (d01relay05.pok.ibm.com [9.56.227.237]) by d01dlp03.pok.ibm.com (Postfix) with ESMTP id BB5C4C90057 for <pkix@ietf.org>; Tue, 24 Apr 2012 20:09:03 -0400 (EDT)
Received: from d01av01.pok.ibm.com (d01av01.pok.ibm.com [9.56.224.215]) by d01relay05.pok.ibm.com (8.13.8/8.13.8/NCO v10.0) with ESMTP id q3P095TP100032 for <pkix@ietf.org>; Tue, 24 Apr 2012 20:09:05 -0400
Received: from d01av01.pok.ibm.com (loopback [127.0.0.1]) by d01av01.pok.ibm.com (8.14.4/8.13.1/NCO v10.0 AVout) with ESMTP id q3P5dvem009933 for <pkix@ietf.org>; Wed, 25 Apr 2012 01:39:57 -0400
Received: from d01ml062.pok.ibm.com (d01ml062.pok.ibm.com [9.63.10.95]) by d01av01.pok.ibm.com (8.14.4/8.13.1/NCO v10.0 AVin) with ESMTP id q3P5dvKn009925; Wed, 25 Apr 2012 01:39:57 -0400
In-Reply-To: <4F95A1A4.5060209@ieca.com>
References: <20120423183151.1989.87952.idtracker@ietfa.amsl.com> <4F95A1A4.5060209@ieca.com>
To: Sean Turner <turners@ieca.com>
MIME-Version: 1.0
X-KeepSent: 5CC0BE81:37CF218D-852579EA:0077CA87; type=4; name=$KeepSent
X-Mailer: Lotus Notes Build V853_CD5_06022011 June 02, 2011
From: Tom Gindin <tgindin@us.ibm.com>
Message-ID: <OF5CC0BE81.37CF218D-ON852579EA.0077CA87-852579EB.0000D6F7@us.ibm.com>
Date: Tue, 24 Apr 2012 20:09:04 -0400
X-MIMETrack: Serialize by Router on D01ML062/01/M/IBM(Release 8.5.3 ZX853HP5|January 12, 2012) at 04/24/2012 20:09:03, Serialize complete at 04/24/2012 20:09:03
Content-Type: text/plain; charset="US-ASCII"
X-Content-Scanned: Fidelis XPS MAILER
x-cbid: 12042500-3352-0000-0000-00000440AA2E
Cc: pkix@ietf.org
Subject: Re: [pkix] Fwd: I-D Action: draft-turner-additional-methods-4kis-02.txt
X-BeenThere: pkix@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: PKIX Working Group <pkix.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/pkix>, <mailto:pkix-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/pkix>
List-Post: <mailto:pkix@ietf.org>
List-Help: <mailto:pkix-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/pkix>, <mailto:pkix-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 25 Apr 2012 00:09:15 -0000

        RFC 5280 section 4.2.1.2 suggests using the public key, not the 
private, as does the same section in 3280 and 2459.  I'm not sure why the 
private key would be better, and I can think of several reasons why the 
public key should be used as the basis for a certificate field rather than 
the private key.  We should probably stick with the earlier approach.

Tom Gindin





From:   Sean Turner <turners@ieca.com>
To:     pkix@ietf.org, 
Date:   04/23/2012 02:40 PM
Subject:        [pkix] Fwd: I-D Action: 
draft-turner-additional-methods-4kis-02.txt
Sent by:        pkix-bounces@ietf.org



The previous version assumed that the input to the hash was always the 
private key.  Somebody pointed out that this might not always be the 
case so I added a field (an OID) to indicate the semantics of the hash 
input.  I also defined one value to indicate for SubjectpublicKeyInfo to 
be the input to the hash alg.

spt

-------- Original Message --------
Subject: I-D Action: draft-turner-additional-methods-4kis-02.txt
Date: Mon, 23 Apr 2012 11:31:51 -0700
From: internet-drafts@ietf.org
Reply-To: internet-drafts@ietf.org
To: i-d-announce@ietf.org


A New Internet-Draft is available from the on-line Internet-Drafts 
directories.

                 Title           : Additional Methods for Generating Key 
Identifiers
                 Author(s)       : Sean Turner
                           Stephen Kent
                 Filename        : 
draft-turner-additional-methods-4kis-02.txt
                 Pages           : 8
                 Date            : 2012-04-23

    This document specifies additional methods for generating key
    identifiers from a public key.  This document also specifies an
    extension to identify the algorithms used to generate the key
    identifiers.


A URL for this Internet-Draft is:
http://www.ietf.org/internet-drafts/draft-turner-additional-methods-4kis-02.txt


Internet-Drafts are also available by anonymous FTP at:
ftp://ftp.ietf.org/internet-drafts/

This Internet-Draft can be retrieved at:
ftp://ftp.ietf.org/internet-drafts/draft-turner-additional-methods-4kis-02.txt


_______________________________________________
I-D-Announce mailing list
I-D-Announce@ietf.org
https://www.ietf.org/mailman/listinfo/i-d-announce
Internet-Draft directories: http://www.ietf.org/shadow.html
or ftp://ftp.ietf.org/ietf/1shadow-sites.txt

_______________________________________________
pkix mailing list
pkix@ietf.org
https://www.ietf.org/mailman/listinfo/pkix

v2.23.0 | Report a Bug | By Email