[Secdispatch] Updating rfc4398 for CBOR Encoding
Robert Moskowitz <rgm-sec@htt-consult.com> Thu, 11 August 2022 15:04 UTC
Return-Path: <rgm-sec@htt-consult.com>
X-Original-To: secdispatch@ietfa.amsl.com
Delivered-To: secdispatch@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4E8E9C157B5E for <secdispatch@ietfa.amsl.com>; Thu, 11 Aug 2022 08:04:11 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.906
X-Spam-Level:
X-Spam-Status: No, score=-6.906 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_HI=-5, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id sighIuRBXE4r for <secdispatch@ietfa.amsl.com>; Thu, 11 Aug 2022 08:04:10 -0700 (PDT)
Received: from z9m9z.htt-consult.com (z9m9z.htt-consult.com [23.123.122.147]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 88374C159486 for <secdispatch@ietf.org>; Thu, 11 Aug 2022 08:04:10 -0700 (PDT)
Received: from localhost (localhost [127.0.0.1]) by z9m9z.htt-consult.com (Postfix) with ESMTP id 9F77D6256E for <secdispatch@ietf.org>; Thu, 11 Aug 2022 11:03:32 -0400 (EDT)
X-Virus-Scanned: amavisd-new at htt-consult.com
Received: from z9m9z.htt-consult.com ([127.0.0.1]) by localhost (z9m9z.htt-consult.com [127.0.0.1]) (amavisd-new, port 10024) with LMTP id 27PLJqeurvKW for <secdispatch@ietf.org>; Thu, 11 Aug 2022 11:03:25 -0400 (EDT)
Received: from [192.168.160.11] (unknown [192.168.160.11]) (using TLSv1.2 with cipher AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by z9m9z.htt-consult.com (Postfix) with ESMTPSA id 8D94F6250B for <secdispatch@ietf.org>; Thu, 11 Aug 2022 11:03:25 -0400 (EDT)
Message-ID: <c1f8a1cd-5afd-96ed-1c9d-bd486df5571a@htt-consult.com>
Date: Thu, 11 Aug 2022 11:03:57 -0400
MIME-Version: 1.0
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:91.0) Gecko/20100101 Thunderbird/91.11.0
To: secdispatch@ietf.org
Content-Language: en-US
From: Robert Moskowitz <rgm-sec@htt-consult.com>
Content-Type: text/plain; charset="UTF-8"; format="flowed"
Content-Transfer-Encoding: 8bit
Archived-At: <https://mailarchive.ietf.org/arch/msg/secdispatch/FGhNilsZumZqdKs00Ug5Mfx4-xE>
Subject: [Secdispatch] Updating rfc4398 for CBOR Encoding
X-BeenThere: secdispatch@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Security Dispatch <secdispatch.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdispatch>, <mailto:secdispatch-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/secdispatch/>
List-Post: <mailto:secdispatch@ietf.org>
List-Help: <mailto:secdispatch-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdispatch>, <mailto:secdispatch-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 11 Aug 2022 15:04:11 -0000
We are working to use 4398 CERT RR in https://datatracker.ietf.org/doc/draft-ietf-drip-registries/ We have specialized "Endorsements" objects that provide proof of registration. I won't go into the whole DRIP architecture here, but CERT RR is an excellent fit. We CAN just use the type 254 "OID Private" to store our objects, using some OID just to hold our stuff, and call it a day. But.... We are updating this draft for our Endorsements to be CBOR encoded with a cononical representation to send over the very constrained DRIP link. Moving to CBOR makes this work of interest to other uses. and there is: https://datatracker.ietf.org/doc/draft-ietf-cose-cbor-encoded-cert/ On the COSE list, we have discussed that a single CBOR type for CERT RR would serve the purpose. It will be then the CBOR value that informs what is stored in the RR. So what is needed: Someone from the community that "owns" 4398 to step forward and help author a very simple draft for adding CBOR to the list of types supported in the CERT RR. How do we proceed and who can provide that "officialness" to update 4398? Thanks Bob
- [Secdispatch] Updating rfc4398 for CBOR Encoding Robert Moskowitz