[lamps] Request for review of revised RFC 5759

Michael Jenkins <mjjenki@tycho.ncsc.mil> Wed, 31 January 2018 20:59 UTC

Return-Path: <mjjenki@tycho.ncsc.mil>
X-Original-To: spasm@ietfa.amsl.com
Delivered-To: spasm@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A715C12F4DE for <spasm@ietfa.amsl.com>; Wed, 31 Jan 2018 12:59:24 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.199
X-Spam-Level:
X-Spam-Status: No, score=-4.199 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_MED=-2.3, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id enrbKLDLmEGu for <spasm@ietfa.amsl.com>; Wed, 31 Jan 2018 12:59:22 -0800 (PST)
Received: from ucol19pa12.eemsg.mail.mil (ucol19pa12.eemsg.mail.mil [214.24.24.85]) by ietfa.amsl.com (Postfix) with ESMTP id C00C812F9A5 for <spasm@ietf.org>; Wed, 31 Jan 2018 12:59:20 -0800 (PST)
X-IronPort-AV: E=Sophos;i="5.46,441,1511827200"; d="scan'208,217";a="486835459"
Received: from emsm-gh1-uea10.ncsc.mil ([214.29.60.2]) by ucol19pa12.eemsg.mail.mil with ESMTP/TLS/AES256-SHA; 31 Jan 2018 20:59:09 +0000
X-IronPort-AV: E=Sophos;i="5.46,441,1511827200"; d="scan'208,217";a="8206302"
IronPort-PHdr: =?us-ascii?q?9a23=3AkKa8Ih0We4gg/0lnsmDT+DRfVm0co7zxezQtwd8Z?= =?us-ascii?q?seIULvad9pjvdHbS+e9qxAeQG9mDsLQc0aGP6fGocFdDyK7JiGoFfp1IWk1Nou?= =?us-ascii?q?QttCtkPvS4D1bmJuXhdS0wEZcKflZk+3amLRodQ56mNBXdrXKo8DEdBAj0OxZr?= =?us-ascii?q?KeTpAI7SiNm82/yv95HJbAhEmDSwbaluIBmoogndq9cajI9/Iast1xXFpWdFdf?= =?us-ascii?q?5Lzm1yP1KTmBj85sa0/JF99ilbpuws+c1dX6jkZqo0VbNXAigoPGAz/83rqALM?= =?us-ascii?q?TRCT6XsGU2UZiQRHDg7Y5xznRJjxsy/6tu1g2CmGOMD9UL45VSi+46ptVRTlkz?= =?us-ascii?q?kMOSIn/27Li8xwlKNbrwynpxxj2I7ffYWZOONjcq/BYd8WQGxMUchLVyxFH4iy?= =?us-ascii?q?cY0BAeQcNupctoXwqV8DoR64CAKxBu3g1yVIi2fo06M6zuovEg/I0wIvEN0Sq3?= =?us-ascii?q?nbtsn5Ob0IXOypwqTFzzPOZO5W1zfn74jIdwgsr/aNXb1sccre01cgFwfYhVuU?= =?us-ascii?q?t4PlOTCV1uULs2iA8uFtUuevi2wlqw5vpDivxcYsh5LVhoMV1l/E9SJ5zJwzJd?= =?us-ascii?q?KkU050fcSoEJ5RtyGeLoZ7RN4pTW9vuCY/0LIGuJi7cTALyJs52x7fZeaLc4+S?= =?us-ascii?q?4hLsUuuaPDR2hGp9db6iiBu//lKsx+3hWsWuzlpHoTRJnsPRun0Lyhfd8NKISu?= =?us-ascii?q?Fn8UekwTuP0gfT5fxaLk0sjqrbLoIhwqY3lpoOrUTPBi/2l1vyjK+Rbkgk5vKn?= =?us-ascii?q?6/7mYrX7vZ+QLZN0iwHiPaQuncyzG+I4PRQVX2eH4+i80bzj/UnhTLVLiP05jL?= =?us-ascii?q?XZvYjHKckUqaO1GQ9Y3ps55xqhADqqzs4UkWQfIFJAYh2HjozpO1/UIPD/CPey?= =?us-ascii?q?m1GskDVpx//YOL3hAZTNI2PfkLbhYbl960lcxBA1zd9D/JJbFqsNIPfyWk/1rN?= =?us-ascii?q?DYFAM2MxSow+b7D9VwzoceWWaOA6+YLqzSvluI6/kpI+mXfoAZojn9K/87562m?= =?us-ascii?q?sXhsgkcUZqyB3JYLZja/BPs1DV+eZC/Jg9wBGGoO9igzSu/rjkbKBTtRZXu0XK?= =?us-ascii?q?MU+iAwCIXgC4zYTcaogbjXj3TzJYFfem0TUgPEKnzvbYjRHq5XOS8=3D?=
X-IPAS-Result: =?us-ascii?q?A2AxAwCzLXJa/wHyM5BcGwEBAQEDAQEBCQEBAYNCZnUog2C?= =?us-ascii?q?YUEYBB4ENmgQdEoUWglFYFAEBAQEBAQEBAgFqKII4JAGCcFYfPgJsBgIBAYggA?= =?us-ascii?q?4IBDRCoD4InJopFAQEIAQEBAQEeBYRbghWBD4IwKQyCeYEwGYFmAgKBTwEBaoI?= =?us-ascii?q?ODDGCZQWTWJBGggeTZZQtcJNEhHE2IoFQMxoIMD2CKoJhgjQjNwGJa4I8AQEB?=
Received: from tarius.tycho.ncsc.mil ([144.51.242.1]) by EMSM-GH1-UEA10.NCSC.MIL with ESMTP; 31 Jan 2018 20:59:08 +0000
Received: from rd2ul-48143y.infosec.tycho.ncsc.mil (rd2ul-48143y [192.168.26.149]) by tarius.tycho.ncsc.mil (8.14.4/8.14.4) with ESMTP id w0VKx7RJ001676; Wed, 31 Jan 2018 15:59:07 -0500
To: spasm@ietf.org
Cc: mjjenki@tycho.ncsc.mil, "Zieglar, Lydia Q" <llziegl@nsa.gov>, m.jenkins.364706+work@gmail.com
From: Michael Jenkins <mjjenki@tycho.ncsc.mil>
Message-ID: <863b6e71-c179-3856-9edf-28e8306031e4@tycho.ncsc.mil>
Date: Wed, 31 Jan 2018 15:59:07 -0500
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101 Thunderbird/52.4.0
MIME-Version: 1.0
Content-Type: multipart/alternative; boundary="------------7F2AF96F43DB1B2490B5B237"
Content-Language: en-US
Archived-At: <https://mailarchive.ietf.org/arch/msg/spasm/M3m1bT9r8O91cYznBWi3KJOUgDE>
Subject: [lamps] Request for review of revised RFC 5759
X-BeenThere: spasm@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "This is a venue for discussion of doing Some Pkix And SMime \(spasm\) work." <spasm.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/spasm>, <mailto:spasm-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/spasm/>
List-Post: <mailto:spasm@ietf.org>
List-Help: <mailto:spasm-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/spasm>, <mailto:spasm-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 31 Jan 2018 20:59:25 -0000

The US National Security Agency (NSA) has begun the process of updating 
the "Suite B for..." RFCs to define requirements for implementing and 
configuring IETF protocols in compliance with the 2016 revision of 
CNSSP-15 (the Commercial National Security Algorithm, or CNSA, suite). 
These RFCs are intended for use by commercial product vendors who wish 
their products to be used in US National Security Systems, over which 
NSA has oversight.

As part of this process, the older RFCs will be moved to Historical 
status, and we plan to publish new RFCs via the ISE. We are seeking 
review and comment of the drafts prior to publication, and so will be 
announcing the drafts on appropriate mail-lists as we produce them.

The first draft updates RFC 5759, and addresses requirements for RFC 
5280 compliant public-key certificates and CRLs that contain or 
reference algorithms in the CNSA suite. It is available at 
<https://www.ietf.org/internet-drafts/draft-jenkins-cnsa-cert-crl-profile-01.txt>. 
We would appreciate any comments you might have regarding the draft, 
either via the mail-list or via direct reply.


Mike Jenkins <mjjenki@tycho.ncsc.mil>
Lydia Zieglar <llziegl@nsa.gov>
NSA