IETF Logo Mail Archive

[lamps] CMS: selection of key management technique to use for EnvelopedData

"von Oheimb, David" <david.von.oheimb@siemens.com> Thu, 22 December 2022 19:56 UTC

Return-Path: <david.von.oheimb@siemens.com>
X-Original-To: spasm@ietfa.amsl.com
Delivered-To: spasm@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B6AE1C14F613 for <spasm@ietfa.amsl.com>; Thu, 22 Dec 2022 11:56:02 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.096
X-Spam-Level:
X-Spam-Status: No, score=-2.096 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_MED=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_BLOCKED=0.001, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_NONE=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=siemens.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Rt4QIueM63fv for <spasm@ietfa.amsl.com>; Thu, 22 Dec 2022 11:55:58 -0800 (PST)
Received: from EUR05-VI1-obe.outbound.protection.outlook.com (mail-vi1eur05on2066.outbound.protection.outlook.com [40.107.21.66]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 4BC04C14E514 for <spasm@ietf.org>; Thu, 22 Dec 2022 11:55:58 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=SgSyi5GIGcjo2J0zMAlMytlItgr7VBpK2PqawsHkOT9tf6onuwDZy44SIQuAhOZZPYwVrMOoSFR/7EoU08JrAT449RtT5bfqETk+bdgL1nn+Y3hPQ0ayLOLIj0Bzk9XndB3SxWbdxDLB+FHWFNChg0gecpq8eFNGxeYrfnQyW83a/rzTfrBf/VcNk0FbFK9gCjul3JEruzhhgCxtT189hOHugBahUGno1LmLM4GE+bLcMZ2pZmsranduYwJAWJUhM3BiyW5zm43mtQXxW+d9QOLjHtKla/eexZZ9jZysWAxAwVX1k9MhTr+G9qvBjWJhSimB1Z+PiZ+XBUVOEnGzUg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=GOl0M+y/YOz1dRBSjN/wXMh9TogAy2AV1eCWS5x+lEw=; b=VgMEPQtbJ6eaPlT4kBwtlid0Lw7tRlju+k80YtYUPvm6afuTtUqE25XqGf7CKBt8zFIZj1JcGV1hMTAdF3BgNzc98cz8FeG0lkoEFPnDMiXBwLrMTftLaFXIy9tssV242Qah+QGiHu4uJuUtZVjn1CcGusiImb0zebNqmdlZFmvT9Uu/uCQNwwHBZbC/iGPIsc7YkWbyK4+BVpDeYN5LAvFNQ2oTCKfvS1OWmhZaT+WL3x3LSqUkHLitBjymU04do92uLHgq5WXPZwYHQe/5pXJpB+JWjj8k+o7pD8gNreIbpipEMwq7Yyzdbdza6oXtqke3RRPRpa94Gzl/s1zZ4g==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=siemens.com; dmarc=pass action=none header.from=siemens.com; dkim=pass header.d=siemens.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=siemens.com; s=selector2; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=GOl0M+y/YOz1dRBSjN/wXMh9TogAy2AV1eCWS5x+lEw=; b=mIdrj3NecGHz9a88jRrxWovmQwu/fQ01Vim1G6xAvJLyaiqKNIgixN9ODJsrT3xWhLK4IcSVuFT57NTxzghkR9PnJ2MT1S380Xc6UXPM95WmhLf3kb4pN8Ia6bjHgo1YssOxIkZt6c3odVNzGZF8uQiPW9BtohT3esYbGCSeS1EhsaZRuodu0jrLZ+Bx2M4nNXjwMPVf71GvkkeCbhX8FKkentzEpKHo5VmmXg87FeHT84Wr4PLhVlX/PWs2RBzqapDm634tHT2e4w9NwlqQ00FC9HeuhzvCqEDcLziHPSuC5NWspUz2aJQ4ahCAvwhQr+FGhgTpdxGeUvPRcCsc/A==
Received: from DB9PR10MB5884.EURPRD10.PROD.OUTLOOK.COM (2603:10a6:10:398::20) by DB9PR10MB5643.EURPRD10.PROD.OUTLOOK.COM (2603:10a6:10:30e::6) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.5924.16; Thu, 22 Dec 2022 19:55:54 +0000
Received: from DB9PR10MB5884.EURPRD10.PROD.OUTLOOK.COM ([fe80::9193:3b29:2644:986]) by DB9PR10MB5884.EURPRD10.PROD.OUTLOOK.COM ([fe80::9193:3b29:2644:986%6]) with mapi id 15.20.5924.016; Thu, 22 Dec 2022 19:55:54 +0000
From: "von Oheimb, David" <david.von.oheimb@siemens.com>
To: "housley@vigilsec.com" <housley@vigilsec.com>, "spasm@ietf.org" <spasm@ietf.org>
CC: "Brockhaus, Hendrik" <hendrik.brockhaus@siemens.com>
Thread-Topic: CMS: selection of key management technique to use for EnvelopedData
Thread-Index: AQHZFV/jrsIQe/6GokCjtrmrn6LVBg==
Date: Thu, 22 Dec 2022 19:55:54 +0000
Message-ID: <db687565617dde5cc08fcedf0f39241255bb5ac8.camel@siemens.com>
References: <b8c681f4f7e6728ecec2cb848e43f2228c4cba7a.camel@siemens.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Evolution 3.38.3-1
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=siemens.com;
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: DB9PR10MB5884:EE_|DB9PR10MB5643:EE_
x-ms-office365-filtering-correlation-id: aecdcde1-6ab6-49ab-98ee-08dae4568912
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:DB9PR10MB5884.EURPRD10.PROD.OUTLOOK.COM; PTR:; CAT:NONE; SFS:(13230022)(4636009)(366004)(346002)(136003)(39860400002)(376002)(396003)(451199015)(107886003)(316002)(478600001)(64756008)(6512007)(86362001)(2616005)(26005)(186003)(71200400001)(91956017)(66446008)(110136005)(66556008)(76116006)(66476007)(66946007)(82960400001)(41300700001)(122000001)(8676002)(4326008)(2906002)(166002)(6506007)(21615005)(36756003)(38100700002)(38070700005)(6486002)(5660300002)(83380400001)(8936002); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: multipart/alternative; boundary="_000_db687565617dde5cc08fcedf0f39241255bb5ac8camelsiemenscom_"
MIME-Version: 1.0
X-OriginatorOrg: siemens.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: DB9PR10MB5884.EURPRD10.PROD.OUTLOOK.COM
X-MS-Exchange-CrossTenant-Network-Message-Id: aecdcde1-6ab6-49ab-98ee-08dae4568912
X-MS-Exchange-CrossTenant-originalarrivaltime: 22 Dec 2022 19:55:54.3895 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 38ae3bcd-9579-4fd4-adda-b42e1495d55a
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: eWGjRTB54sUhxFvEPQ7ulJXdoMJmUJpVfV2vxXKJ/IxwZU2BNkz4zQFZinctqc6QlLQgKSndQYjbNONynlA13QWH2sbCVfXUUD0sEvdCzF4=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DB9PR10MB5643
Archived-At: <https://mailarchive.ietf.org/arch/msg/spasm/R1Kn74vsSm2AcGv58148ONekKBo>
Subject: [lamps] CMS: selection of key management technique to use for EnvelopedData
X-BeenThere: spasm@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "This is a venue for discussion of doing Some Pkix And SMime \(spasm\) work." <spasm.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/spasm>, <mailto:spasm-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/spasm/>
List-Post: <mailto:spasm@ietf.org>
List-Help: <mailto:spasm-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/spasm>, <mailto:spasm-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 22 Dec 2022 19:56:02 -0000

Russ et al.,

when doing extended tests on central (i.e., server-side) key generation with CMP Updates, where CMS is used for sending the newly generated private key encrypted to the client,
we stumbled over potential differences between the key management techniques allowed by the client certificate and those techniques actually supported by the key type in that cert.

Sorting this out, we tried to find in RFC 5652<https://www.rfc-editor.org/rfc/rfc5652.html>, in particular section 6 on EnvelopedData, some guidance how to select the key management technique to use for a given recipient cert.
Yet it looks like this is kind of implicit. For instance, if the public key in the recipient cert is of type RSA, only key transport makes sense, while for EC keys only key agreement makes sense.
Is there any specification that makes the (intended) selection of the key management technique explicit, or has this been deliberately left open?

(
Side note:
The only explicit hint in this direction may be the key usage extension that can optionally be contained in the recipient cert - as written in RFC 5652:


6.2.1<https://www.rfc-editor.org/rfc/rfc5652#section-6.2.1>.  KeyTransRecipientInfo Type


      The recipient's certificate must contain a key transport public
      key.  Therefore, a recipient X.509 version 3 certificate that
      contains a key usage extension MUST assert the keyEncipherment

      bit.


and in


6.2.2<https://www.rfc-editor.org/rfc/rfc5652#section-6.2.2>.  KeyAgreeRecipientInfo Type


      The recipient's certificate must

      contain a key agreement public key.  Therefore, a recipient X.509
      version 3 certificate that contains a key usage extension MUST
      assert the keyAgreement bit.


Yet this does not help if the cert does not contain a key usage extension, or if the key usage extension is present and its bits allow for more than one choice.
Moreover, the key usage extension may even exclude, by intention or by mistake, the use of all algorithmically suitable techniques.
)

AFAIK, so far there are no key types/algorithms that support more than one key management technique (such as, both key transport and key agreement).
Thus the concern may be just hypothetical because at least for the well-known key types (RSA, EC, and DH) it should be clear which technique to use.
Still we'd be interested in learning about explicit specification/guidance, maybe in some accompanying RFC, that we could provide to implementers.

David and Hendrik

v2.43.4 | Report a Bug | By Email | System Status