Re: [Secdispatch] Ciphertext format draft
Russ Housley <housley@vigilsec.com> Fri, 15 January 2021 16:37 UTC
Return-Path: <housley@vigilsec.com>
X-Original-To: secdispatch@ietfa.amsl.com
Delivered-To: secdispatch@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 161EE3A0CFA for <secdispatch@ietfa.amsl.com>; Fri, 15 Jan 2021 08:37:26 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.896
X-Spam-Level:
X-Spam-Status: No, score=-1.896 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_NONE=0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id APEKfIdS4mgS for <secdispatch@ietfa.amsl.com>; Fri, 15 Jan 2021 08:37:24 -0800 (PST)
Received: from mail.smeinc.net (mail.smeinc.net [209.135.209.11]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id DC5283A0CF9 for <secdispatch@ietf.org>; Fri, 15 Jan 2021 08:37:23 -0800 (PST)
Received: from localhost (localhost [127.0.0.1]) by mail.smeinc.net (Postfix) with ESMTP id 4344D300BAA for <secdispatch@ietf.org>; Fri, 15 Jan 2021 11:37:21 -0500 (EST)
X-Virus-Scanned: amavisd-new at mail.smeinc.net
Received: from mail.smeinc.net ([127.0.0.1]) by localhost (mail.smeinc.net [127.0.0.1]) (amavisd-new, port 10026) with ESMTP id Zlv2KH-JPp4a for <secdispatch@ietf.org>; Fri, 15 Jan 2021 11:37:19 -0500 (EST)
Received: from a860b60074bd.fios-router.home (pool-141-156-161-153.washdc.fios.verizon.net [141.156.161.153]) by mail.smeinc.net (Postfix) with ESMTPSA id D28673005D5; Fri, 15 Jan 2021 11:37:18 -0500 (EST)
From: Russ Housley <housley@vigilsec.com>
Message-Id: <523854C0-3D2B-4565-A6FF-8DF46EBD88A2@vigilsec.com>
Content-Type: multipart/alternative; boundary="Apple-Mail=_1B7DF693-60CB-441C-BD73-75B0E0A09DE3"
Mime-Version: 1.0 (Mac OS X Mail 12.4 \(3445.104.17\))
Date: Fri, 15 Jan 2021 11:37:20 -0500
In-Reply-To: <8B46C11A-790A-4E8E-A7A1-8FE97E2DD9A7@contoso.com>
Cc: IETF SecDispatch <secdispatch@ietf.org>, "Keselman, Gleb" <Gleb_Keselman@intuit.com>, Yoav Nir <ynir.ietf@gmail.com>
To: Yaron Sheffer <yaronf.ietf@gmail.com>
References: <8B46C11A-790A-4E8E-A7A1-8FE97E2DD9A7@contoso.com>
X-Mailer: Apple Mail (2.3445.104.17)
Archived-At: <https://mailarchive.ietf.org/arch/msg/secdispatch/EoxbXqNB2nc-NP9gcbljIsG9J-c>
Subject: Re: [Secdispatch] Ciphertext format draft
X-BeenThere: secdispatch@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Security Dispatch <secdispatch.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdispatch>, <mailto:secdispatch-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/secdispatch/>
List-Post: <mailto:secdispatch@ietf.org>
List-Help: <mailto:secdispatch-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdispatch>, <mailto:secdispatch-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 15 Jan 2021 16:37:26 -0000
Yaron: How do you see AAD being used? Also, CMS carries a field that tells how to parse the plaintext (the content type) after it obtained by decryption. I cannot tell whether that is useful or in you use case, but I can imagine places where it would be very helpful. Russ > On Jan 15, 2021, at 9:53 AM, Yaron Sheffer <yaronf.ietf@gmail.com> wrote: > > Hi, we just submitted draft-sheffer-ietf-ciphertext-format-01 [1]. This is a CBOR-based set of headers for encrypted data, with the goal of enabling automation of large datasets that contain encrypted data, typically interspersed with plain data. Specifically we want to facilitate discovery of encrypted data (e.g., this database column contains ciphertext) and attributing this data back to the service that created the data and the key that was used to encrypt it. > > We received good feedback on the SAAG list to change from generic TLV to CBOR, which we implemented in -01. > > The authors would appreciate this list’s feedback regarding next steps. > > Thanks, > Yaron > > [1] https://tools.ietf.org/id/draft-sheffer-ietf-ciphertext-format-01.xml <https://tools.ietf.org/id/draft-sheffer-ietf-ciphertext-format-01.xml> > > _______________________________________________ > Secdispatch mailing list > Secdispatch@ietf.org <mailto:Secdispatch@ietf.org> > https://www.ietf.org/mailman/listinfo/secdispatch <https://www.ietf.org/mailman/listinfo/secdispatch>
- [Secdispatch] Ciphertext format draft Yaron Sheffer
- Re: [Secdispatch] Ciphertext format draft Francesca Palombini
- Re: [Secdispatch] Ciphertext format draft Yaron Sheffer
- Re: [Secdispatch] [Cbor] Ciphertext format draft Carsten Bormann
- Re: [Secdispatch] Ciphertext format draft Russ Housley
- Re: [Secdispatch] Ciphertext format draft Yaron Sheffer
- Re: [Secdispatch] Ciphertext format draft Russ Housley
- Re: [Secdispatch] Ciphertext format draft Yaron Sheffer
- Re: [Secdispatch] Ciphertext format draft Russ Housley
- Re: [Secdispatch] Ciphertext format draft Yaron Sheffer
- Re: [Secdispatch] Ciphertext format draft Russ Housley