Re: [lamps] [CMP Updates] Hash algorithm to us for calculating certHash
David von Oheimb <David.von.Oheimb@siemens.com> Fri, 18 June 2021 18:55 UTC
Return-Path: <David.von.Oheimb@siemens.com>
X-Original-To: spasm@ietfa.amsl.com
Delivered-To: spasm@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 0D3DB3A1E7E for <spasm@ietfa.amsl.com>; Fri, 18 Jun 2021 11:55:41 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.895
X-Spam-Level:
X-Spam-Status: No, score=-6.895 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, NICE_REPLY_A=-0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H3=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_HELO_NONE=0.001, SPF_NONE=0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id TygQTkVTaDLx for <spasm@ietfa.amsl.com>; Fri, 18 Jun 2021 11:55:36 -0700 (PDT)
Received: from thoth.sbs.de (thoth.sbs.de [192.35.17.2]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 49DB13A1E7D for <spasm@ietf.org>; Fri, 18 Jun 2021 11:55:35 -0700 (PDT)
Received: from mail1.sbs.de (mail1.sbs.de [192.129.41.35]) by thoth.sbs.de (8.15.2/8.15.2) with ESMTPS id 15IItUk6017696 (version=TLSv1.2 cipher=DHE-RSA-AES256-GCM-SHA384 bits=256 verify=OK); Fri, 18 Jun 2021 20:55:31 +0200
Received: from [139.22.35.254] ([139.22.35.254]) by mail1.sbs.de (8.15.2/8.15.2) with ESMTP id 15IItTaV030666; Fri, 18 Jun 2021 20:55:30 +0200
To: Russ Housley <housley@vigilsec.com>, Lijun Liao <lijun.liao@gmail.com>
Cc: "Brockhaus, Hendrik" <hendrik.brockhaus@siemens.com>, LAMPS WG <spasm@ietf.org>
References: <AM0PR10MB24188C86D787842B2C7D9DD6FE379@AM0PR10MB2418.EURPRD10.PROD.OUTLOOK.COM> <783FEFC2-CE5C-430C-8243-F4B80290C80A@vigilsec.com> <AM0PR10MB2418EB88CECDE3315B7388B1FE369@AM0PR10MB2418.EURPRD10.PROD.OUTLOOK.COM> <AM0PR10MB24180B8830DE52C665D631D9FE349@AM0PR10MB2418.EURPRD10.PROD.OUTLOOK.COM> <ed01a7e0-cad7-55da-9ca8-c41657033cbc@von-Oheimb.de> <DB57BE98-990A-4455-8153-6081A1193400@vigilsec.com> <AM0PR10MB2418FA4AC2D9E56ADBAEFE44FE0D9@AM0PR10MB2418.EURPRD10.PROD.OUTLOOK.COM> <166E2C71-4175-41FF-B0CB-8B938C13E813@vigilsec.com>
From: David von Oheimb <David.von.Oheimb@siemens.com>
X-Enigmail-Draft-Status: N11100
Message-ID: <9e734599-2514-06f9-ee87-c3a6ddebb728@siemens.com>
Date: Fri, 18 Jun 2021 20:55:28 +0200
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:68.0) Gecko/20100101 Thunderbird/68.12.1
MIME-Version: 1.0
In-Reply-To: <166E2C71-4175-41FF-B0CB-8B938C13E813@vigilsec.com>
Content-Type: multipart/alternative; boundary="------------D9F0407B9868AA906C74549D"
Content-Language: en-US
Archived-At: <https://mailarchive.ietf.org/arch/msg/spasm/8NVVlQKHsUwQFVOWEdDs8ccuH-g>
Subject: Re: [lamps] [CMP Updates] Hash algorithm to us for calculating certHash
X-BeenThere: spasm@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "This is a venue for discussion of doing Some Pkix And SMime \(spasm\) work." <spasm.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/spasm>, <mailto:spasm-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/spasm/>
List-Post: <mailto:spasm@ietf.org>
List-Help: <mailto:spasm-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/spasm>, <mailto:spasm-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 18 Jun 2021 18:55:41 -0000
Russ and Lijun, pleased to hear. On 18.06.21 18:59, Russ Housley wrote: > This seems fine to me, but the text that goes with it needs to say > that you must use CMPv3 in order to include the optional hashAlg. Sure - this is what we meant by: "SHOULD be present only if this field is supported on client and server side and MUST be indicated by using cmp2021(3)" We are also going to specify in the section on version negotiation: If a client is supposed to send a certConf message containing the hashAlg field the client MUST choose the version for the message as follows: * If the client supports cmp2021 it MUST use cmp2021 in the certConf message. * If the client does not support cmp2021 it MUST reject the certificate. David *Von:* Lijun Liao <lijun.liao@gmail.com> *Gesendet:* Freitag, 18. Juni 2021 09:14 *An:* Brockhaus, Hendrik (T RDA CST SEA-DE) <hendrik.brockhaus@siemens.com> *Betreff:* Re: [lamps] [CMP Updates] Hash algorithm to us for calculating certHash Fine for me. > On Jun 18, 2021, at 2:55 AM, Brockhaus, Hendrik > <hendrik.brockhaus@siemens.com <mailto:hendrik.brockhaus@siemens.com>> > wrote: >> >> Thanks Russ and Lijun for your feedback. >> >> Trying to address Lijun's concerns and still keeping full crypto >> agility we could also do the following: >> >> Old Syntax as of RFC 4210: >> CertStatus ::= SEQUENCE { >> certHash OCTET STRING, >> -- the hash of the certificate, using the same hash algorithm >> -- as is used to create and verify the certificate signature >> certReqId INTEGER, >> -- to match this confirmation with the corresponding req/rep >> statusInfo PKIStatusInfo OPTIONAL >> } >> >> Proposed new Syntax: >> CertStatus ::= SEQUENCE { >> hashAlg [0] AlgorithmIdentifier OPTIONAL, >> -- the hash algorithm to use for calculating certHash >> -- MUST be present if the hash algorithm to use is neither >> implied by the AlgorithmIdentifier of the certificate signature nor >> by other standards like [CMP Algorithms] >> -- SHOULD be present only if this field is supported on client >> and server side and MUST be indicated by using cmp2021(3) >> certHash OCTET STRING, >> -- the hash of the certificate to be confirmed >> -- if hashAlg is present, the given hash algorithm MUST be used >> -- if hashAlg is not present, the hash algorithm implied by the >> AlgorithmIdentifier of the certificate signature or by other >> standards like [CMP Algorithms] MUST be used >> certReqId INTEGER, >> -- to match this confirmation with the corresponding req/rep >> statusInfo PKIStatusInfo OPTIONAL } >> >> Would this help to be as backward compatible and as crypto agile as >> possible. >> >> What do you think? >> >> Hendrik >>
- [lamps] [CMP Updates] Hash algorithm to us for ca… Brockhaus, Hendrik
- Re: [lamps] [CMP Updates] Hash algorithm to us fo… Lijun Liao
- Re: [lamps] [CMP Updates] Hash algorithm to us fo… Russ Housley
- Re: [lamps] [CMP Updates] Hash algorithm to us fo… Brockhaus, Hendrik
- Re: [lamps] [CMP Updates] Hash algorithm to us fo… Brockhaus, Hendrik
- Re: [lamps] [CMP Updates] Hash algorithm to us fo… Brockhaus, Hendrik
- Re: [lamps] [CMP Updates] Hash algorithm to us fo… Brockhaus, Hendrik
- Re: [lamps] [CMP Updates] Hash algorithm to us fo… David von Oheimb
- [lamps] Fwd: [CMP Updates] Hash algorithm to us f… David von Oheimb
- Re: [lamps] Fwd: [CMP Updates] Hash algorithm to … Russ Housley
- Re: [lamps] [CMP Updates] Hash algorithm to us fo… Russ Housley
- Re: [lamps] [CMP Updates] Hash algorithm to us fo… Brockhaus, Hendrik
- Re: [lamps] [CMP Updates] Hash algorithm to us fo… Brockhaus, Hendrik
- Re: [lamps] [CMP Updates] Hash algorithm to us fo… Russ Housley
- Re: [lamps] [CMP Updates] Hash algorithm to us fo… David von Oheimb