IETF Logo Mail Archive

Re: PKAlgs: 02: DSA Signature Keys needs re-wording

Bodo Moeller <moeller@cdc.informatik.tu-darmstadt.de> Fri, 23 March 2001 10:28 UTC

Received: from above.proper.com (above.proper.com [208.184.76.39]) by ietf.org (8.9.1a/8.9.1a) with SMTP id FAA02952 for <pkix-archive@odin.ietf.org>; Fri, 23 Mar 2001 05:28:52 -0500 (EST)
Received: from localhost (daemon@localhost) by above.proper.com (8.9.3/8.9.3) with SMTP id CAA22520; Fri, 23 Mar 2001 02:28:21 -0800 (PST)
Received: by mail.imc.org (bulk_mailer v1.12); Fri, 23 Mar 2001 02:28:14 -0800
Received: from cdc-info.cdc.informatik.tu-darmstadt.de (cdc-info.cdc.informatik.tu-darmstadt.de [130.83.23.100]) by above.proper.com (8.9.3/8.9.3) with ESMTP id CAA22465 for <ietf-pkix@imc.org>; Fri, 23 Mar 2001 02:28:13 -0800 (PST)
Received: from cdc-ws1.cdc.informatik.tu-darmstadt.de (cdc-ws1 [130.83.23.129]) by cdc-info.cdc.informatik.tu-darmstadt.de (Postfix) with ESMTP id 7132B2C7D; Fri, 23 Mar 2001 11:28:12 +0100 (MET)
Received: (from moeller@localhost) by cdc-ws1.cdc.informatik.tu-darmstadt.de (8.9.3+Sun/8.9.3) id LAA26935; Fri, 23 Mar 2001 11:28:10 +0100 (MET)
X-Authentication-Warning: cdc-ws1.cdc.informatik.tu-darmstadt.de: moeller set sender to moeller@cdc.informatik.tu-darmstadt.de using -f
Date: Fri, 23 Mar 2001 11:28:10 +0100
From: Bodo Moeller <moeller@cdc.informatik.tu-darmstadt.de>
To: Stefan.Heiss@brokat.com
Cc: ietf-pkix@imc.org
Subject: Re: PKAlgs: 02: DSA Signature Keys needs re-wording
Message-ID: <20010323112810.A26514@cdc.informatik.tu-darmstadt.de>
References: <410054F605B3D311BF640000C0C06A0EF4082A@xc1.brokat-le.com> <410054F605B3D311BF640000C0C06A0E045180@xc1.brokat-le.com>
Mime-Version: 1.0
Content-Type: text/plain; charset="iso-8859-1"
Content-Disposition: inline
User-Agent: Mutt/1.2i
In-Reply-To: <410054F605B3D311BF640000C0C06A0E045180@xc1.brokat-le.com>; from Stefan.Heiss@brokat.com on Fri, Mar 23, 2001 at 09:53:19AM +0100
Precedence: bulk
List-Archive: http://www.imc.org/ietf-pkix/mail-archive/
List-ID: <ietf-pkix.imc.org>
List-Unsubscribe: mailto:ietf-pkix-request@imc.org?body=unsubscribe
X-MIME-Autoconverted: from 8bit to quoted-printable by above.proper.com id CAA22520
Content-Transfer-Encoding: 8bit
X-MIME-Autoconverted: from quoted-printable to 8bit by ietf.org id FAA02952

On Fri, Mar 23, 2001 at 09:53:19AM +0100, Stefan.Heiss@brokat.com wrote:

> Some further comments:
> 
> section 2.2.2 states:
> When the id-dsa-with-sha1 algorithm identifier appears as the algo-
>    rithm field in an AlgorithmIdentifier, the encoding SHALL omit the
>    parameters field.
> 
> This seems to contradict the intended contents of section 2.3.2 ?

No.  Section 2.3 is on algorithm identifiers for *keys* contained in
certificates; section 2.2 is on algorithm identifiers for *signatures*.
To verify a signature, you must already have the key, and that is
where you obtain the parameters from.

A couple of days ago I misunderstood the draft exactly as you do now
(except that I had looked at ECDSA where you now look at DSA :-).
So maybe it's not just me and the draft should have some additional
clarification in the text.  The confusion is caused by the use of
'AlgorithmIdentifiers' for two different purposes: in the
'signatureAlgorithm' field and in the 'subjectPublicKeyInfo' field.

Proposed change for the DSA case, section 2.2.2: Replace

   When the id-dsa-with-sha1 algorithm identifier appears as the algo-
   rithm field in an AlgorithmIdentifier, the encoding SHALL omit the
   parameters field.  [...]

by

   When the id-dsa-with-sha1 algorithm identifier appears as the algo-
   rithm field in a signatureAlgorithm field, the encoding SHALL omit the
   parameters field.  [...]

(Similarly for ECDSA.)

(But note that the 'id-dsa-with-sha1' algorithm identifier is never
actually used in 'subjectPublicKeyInfo' fields, so even when taken
out of context the original wording from 2.2.2 is not wrong
-- in 'subjectPublicKeyInfo' fields, you'd see the 'id-dsa' algorithm
identifier instead.)


-- 
Bodo Möller <moeller@cdc.informatik.tu-darmstadt.de>
PGP http://www.informatik.tu-darmstadt.de/TI/Mitarbeiter/moeller/0x36d2c658.html
* TU Darmstadt, Theoretische Informatik, Alexanderstr. 10, D-64283 Darmstadt
* Tel. +49-6151-16-6628, Fax +49-6151-16-6036

v2.23.0 | Report a Bug | By Email