LAMPS at IETF 103, Tuesday morning

Administrivia

DNS Certification Authority Authorization (CAA) Resource Record, Jacob
    - Yesterday's draft sent to IESG

Hash of Root Key Certificate Extension, Russ
    - Review of content; now in WGLC

Shake drafts (pkix and cms), Quynh
    - Changes: Jim's comments, KMAC not HMAC, MGF1 function, IANA section, security
      considerations, various nits
    - Russ said CFRG was okay with MGF1 change
    - Discussion of "k" value in deterministic ECDSA;
      ekr wants it in a separate 6979-bis which is responsibility of CFRG;
      agreed to proceed with this
    - Review of next steps / open issues, esp kmac tags <256 bits

Hash-based signatures in CMS, Russ
    - Update on changes
    - Believes ready for WGLC once McGrew CFRG doc gets in RFC editor queue

PSK with CMS, Russ
    - Explain motivation (include PSK in bulk enrypt key derivation)
    - Believe privacy is not worse, same as existing recipient identifiers; discussion
    - Close to WGLC; please please PLEASE review and comment on-list

Using hash-based signatures in X509 certificates, Daniel Van Geest
    - Motivation and use-cases and mention of XMSS/XMSS^MT
    - Continuing to keep aligned with the CMS hash-signature drafts
    - Draft going to secdispatch, which could send it back to LAMPS which
      would probably add to the need to recharter

Other business, Russ
    - Discuss changing charter to (at least) accomodate Aleksey's header-protection document
    - Discussion if WG is interested; dkg will try to get implementors to post their agreement
    - Charter text revision will be happening next; progress on individual draft during that