Re: [lamps] LAMPS sample keys and certificates
Sean Turner <sean@sn3rd.com> Thu, 21 November 2019 15:22 UTC
Return-Path: <sean@sn3rd.com>
X-Original-To: spasm@ietfa.amsl.com
Delivered-To: spasm@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D178C1200FE for <spasm@ietfa.amsl.com>; Thu, 21 Nov 2019 07:22:08 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.999
X-Spam-Level:
X-Spam-Status: No, score=-1.999 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=sn3rd.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id TQ_rLwJTUuhT for <spasm@ietfa.amsl.com>; Thu, 21 Nov 2019 07:22:07 -0800 (PST)
Received: from mail-qt1-x833.google.com (mail-qt1-x833.google.com [IPv6:2607:f8b0:4864:20::833]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id F31381200E7 for <spasm@ietf.org>; Thu, 21 Nov 2019 07:22:06 -0800 (PST)
Received: by mail-qt1-x833.google.com with SMTP id i17so4108696qtq.1 for <spasm@ietf.org>; Thu, 21 Nov 2019 07:22:06 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=sn3rd.com; s=google; h=mime-version:subject:from:in-reply-to:date:cc :content-transfer-encoding:message-id:references:to; bh=szHTLZ8enakLOfTLR8qu1YaTenPh9lWBsZ6yBpb5i5U=; b=gFFraQw+iT/axNs0j5QVsUANGbiJxBZkmsGe5I0+17ocWvOGIQGS1ttD7ehwYPX4ef +lV3gSREO/TawL/UXICVsjfOIlGPj+0B1+9XEUhdL8edRa44lKfYa82byzm/PtR4iq+b DMSLFfUuxpeCIei1/RK46s1uUR/X1FRHM0IIc=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:subject:from:in-reply-to:date:cc :content-transfer-encoding:message-id:references:to; bh=szHTLZ8enakLOfTLR8qu1YaTenPh9lWBsZ6yBpb5i5U=; b=poYxUnp/WWBZtNjy8zkjnFTnLHgQl8IvlO7UTm39iOcwBgwFYp5S8wj0oQPkUhJ5vu +7UuERdyY/N1n91OmKmBcC+w+MzIrEYC+XjojAe1r7qbDqZSTzql8oNDnzlYB/eDORGa Z36dc2YP/4nZgh4WYa8FlQzXmwM+A1HUMIPGjfrwxpPC6Fs64yypJsjefp5/RprwuRxT U48FC4F9hObumhNCt0JlKjXVwf9nwHEGVpDm21YzZrmtRdMw85zX1JEOoi1P2yHCoOLb tk3Ev7L0p92KmcJYiNTAXgIRZPH3SQVheZa2P3j61fT0MBOjNe4NxBBNt1AH2KU6xVuM Q1rg==
X-Gm-Message-State: APjAAAVJxkJzqUzMKOZVV11QIsEpbaSYSvHS9kz4d3J7ubqDuskmp3Xq BwicnYcYJraMVjFJciWAPWurKg==
X-Google-Smtp-Source: APXvYqwdyz/a5AmLZTa6RX9R+v4p5PzeeEhy2BMRLqi9wQkbrtZ+J6BqnAmE/c/S/hBya8fxcWDDWA==
X-Received: by 2002:ac8:4513:: with SMTP id q19mr4418883qtn.334.1574349726053; Thu, 21 Nov 2019 07:22:06 -0800 (PST)
Received: from [5.5.33.83] ([204.194.23.17]) by smtp.gmail.com with ESMTPSA id k29sm1608309qtu.70.2019.11.21.07.22.03 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Thu, 21 Nov 2019 07:22:04 -0800 (PST)
Content-Type: text/plain; charset="utf-8"
Mime-Version: 1.0 (Mac OS X Mail 12.4 \(3445.104.11\))
From: Sean Turner <sean@sn3rd.com>
In-Reply-To: <F134E036-6E20-474A-8D7D-6680186C396D@redhoundsoftware.com>
Date: Thu, 21 Nov 2019 23:21:57 +0800
Cc: LAMPS WG <spasm@ietf.org>
Content-Transfer-Encoding: quoted-printable
Message-Id: <A85E1AD0-709C-4771-A49F-073E98DA10B7@sn3rd.com>
References: <878sodm0j3.fsf@fifthhorseman.net> <F134E036-6E20-474A-8D7D-6680186C396D@redhoundsoftware.com>
To: Daniel Kahn Gillmor <dkg@fifthhorseman.net>
X-Mailer: Apple Mail (2.3445.104.11)
Archived-At: <https://mailarchive.ietf.org/arch/msg/spasm/alO8aSMuq0KrKs7TMCssT70cHyU>
Subject: Re: [lamps] LAMPS sample keys and certificates
X-BeenThere: spasm@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "This is a venue for discussion of doing Some Pkix And SMime \(spasm\) work." <spasm.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/spasm>, <mailto:spasm-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/spasm/>
List-Post: <mailto:spasm@ietf.org>
List-Help: <mailto:spasm-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/spasm>, <mailto:spasm-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 21 Nov 2019 15:22:09 -0000
Showing signs of age based on algorithm choices, but there is also: https://datatracker.ietf.org/doc/rfc4134/ spt > On Nov 19, 2019, at 07:51, Carl Wallace <carl@redhoundsoftware.com> wrote: > > FWIW, there are a pile of sample artifacts here: https://github.com/GSA/ficam-scvp-testing/tree/master/artifacts. The MFPKI (Mock Federal PKI) was generated by cloning a pile of certs with names obfuscated. Many of these are likely expired by now though. Something like this could offer some diversity to the certification paths (in support of sample S/MIME, etc). > > On 11/18/19, 5:52 PM, "Spasm on behalf of Daniel Kahn Gillmor" <spasm-bounces@ietf.org on behalf of dkg@fifthhorseman.net> wrote: > > Hi all-- > > I've just published: > > https://www.ietf.org/id/draft-dkg-lamps-samples-00.html > > This draft contains sample X.509v3 certificates, and corresponding > secret keys for a sample CA, and for two e-mail users, Alice and Bob. > It provides the certificates and keys in PEM-encoded form and (for Alice > and Bob) in PKCS#12 bundles, so they should be relatively easy to > import. > > My hope is that they are useful for generating and interpreting sample > S/MIME (CMS) messages, and part of a larger plan to generate test > vectors that will be useful in demonstrating protected header behavior > on existing clients. > > I'd appreciate any feedback or suggestions on the draft and the sample > keys and certificates and PKCS#12 files. > > I'm currently building the draft from the git repo at > https://gitlab.com/dkg/lamps-samples -- editorial patches, issues, etc > are welcome at the gitlab interface, though i would prefer if any > substantive issues are also addressed to the list here. > > --dkg > _______________________________________________ > Spasm mailing list > Spasm@ietf.org > https://www.ietf.org/mailman/listinfo/spasm > > > > _______________________________________________ > Spasm mailing list > Spasm@ietf.org > https://www.ietf.org/mailman/listinfo/spasm
- [lamps] LAMPS sample keys and certificates Daniel Kahn Gillmor
- Re: [lamps] LAMPS sample keys and certificates Ryan Sleevi
- Re: [lamps] LAMPS sample keys and certificates Carl Wallace
- Re: [lamps] LAMPS sample keys and certificates Salz, Rich
- Re: [lamps] LAMPS sample keys and certificates Daniel Kahn Gillmor
- Re: [lamps] LAMPS sample keys and certificates Sean Turner
- Re: [lamps] LAMPS sample keys and certificates Daniel Kahn Gillmor
- Re: [lamps] LAMPS sample keys and certificates Russ Housley
- Re: [lamps] LAMPS sample keys and certificates Russ Housley
- Re: [lamps] LAMPS sample keys and certificates Daniel Kahn Gillmor
- Re: [lamps] LAMPS sample keys and certificates Russ Housley
- Re: [lamps] LAMPS sample keys and certificates Daniel Kahn Gillmor
- Re: [lamps] LAMPS sample keys and certificates Russ Housley
- Re: [lamps] LAMPS sample keys and certificates Daniel Kahn Gillmor
- Re: [lamps] LAMPS sample keys and certificates Russ Housley