Re: [lamps] I-D Action: draft-ietf-lamps-cmp-algorithms-06.txt
"Brockhaus, Hendrik" <hendrik.brockhaus@siemens.com> Wed, 30 June 2021 13:04 UTC
Return-Path: <hendrik.brockhaus@siemens.com>
X-Original-To: spasm@ietfa.amsl.com
Delivered-To: spasm@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6DEB33A1BE8 for <spasm@ietfa.amsl.com>; Wed, 30 Jun 2021 06:04:56 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.899
X-Spam-Level:
X-Spam-Status: No, score=-1.899 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_MSPIKE_H2=-0.001, SPF_NONE=0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=siemens.onmicrosoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id jicZ7NLloFzi for <spasm@ietfa.amsl.com>; Wed, 30 Jun 2021 06:04:51 -0700 (PDT)
Received: from EUR05-VI1-obe.outbound.protection.outlook.com (mail-vi1eur05on2070.outbound.protection.outlook.com [40.107.21.70]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 3928A3A1BE6 for <spasm@ietf.org>; Wed, 30 Jun 2021 06:04:51 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=lopt7sCzPTmyqkHq4Qei89QgW5GfvTFkajVMK9R2ZJzWPI2hCYM5paXfPel085eV6p0UuHQSiUik5qsD8jA6KpKHL4CnYWxf0lslW1w9DfsFGdMJYRf18Nx1FltjFUjQbkJCVcNzJ2p38CK0Wx+kHaxs+H3/IcVezNQDe+I/WDbVKyIqeJHL9Sa3DCZqJF8P048RoxWf+aPmRfpYYFi19SBmD+PWlOKEpY1vNhXvow8KO/h1uJBswR3O6H/0l/CxPYrtQnK89GopnpKpfI0YaGah9K9pYCNUmuL1Oj4G/Sa3Mc1HTlQb1ZplxATZfWk/47SkxRkKFuZf8Nb5UoJ68w==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=jnhjddUf0GMaoppidvny5jKxIDEHbr5hHI91qqS85lA=; b=k73RBGpO+HGxHsQFAYyAdQcjgpR29x69/WEsBkqVQRJhj06ZuPr2qxaRAbIQm9c4fKNxHMbBcAdfeOCKOf+r7GOT7XCVE5OU2OK82I1Zpj3io6kC+1TxD/JlMzSYEfXWArtK7o5+7joqOXULg8VLLbbQs5nMRFPLqdkN7EQjVpDIVp7lQfjmMkUfpFF0QMQaXv4QJzz50sEKf8D/QQqk0iMtu/zdBGc/CWaqiInVMAL8GXSj09ldvMVgsLXOO6ypkR9XYWT13lteiNCD0+jqzh9YnmX6LmgBIy0qBKT6jk5OwpLmWurIz4RdSOEPXFEYzix1rznuBoWbcIYaiKmczw==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=siemens.com; dmarc=pass action=none header.from=siemens.com; dkim=pass header.d=siemens.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=siemens.onmicrosoft.com; s=selector1-siemens-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=jnhjddUf0GMaoppidvny5jKxIDEHbr5hHI91qqS85lA=; b=cCn0fG75fC8vSSRvj00G//CBfdV9UoRwxi7QhASr6zQuR1lj5kj/W47OJ8RldlDkc9TE37hN8V0lwgI91/k61uTq7OwWN+WoCnOKbQp4myqWoNBcVjTHgotxFQXzheuFAj56VdW92v8mNq6LTSqEUAvZRX4ydXiMbypkJt6nuiM=
Received: from AM0PR10MB2418.EURPRD10.PROD.OUTLOOK.COM (2603:10a6:208:dd::17) by AM0PR10MB1908.EURPRD10.PROD.OUTLOOK.COM (2603:10a6:208:50::32) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.4242.21; Wed, 30 Jun 2021 13:04:46 +0000
Received: from AM0PR10MB2418.EURPRD10.PROD.OUTLOOK.COM ([fe80::d10f:2627:bd2d:f3b4]) by AM0PR10MB2418.EURPRD10.PROD.OUTLOOK.COM ([fe80::d10f:2627:bd2d:f3b4%6]) with mapi id 15.20.4264.026; Wed, 30 Jun 2021 13:04:46 +0000
From: "Brockhaus, Hendrik" <hendrik.brockhaus@siemens.com>
To: "spasm@ietf.org" <spasm@ietf.org>
CC: Tomas Gustavsson <tomas.gustavsson@primekey.com>, Lijun Liao <lijun.liao@gmail.com>, Russ Housley <housley@vigilsec.com>, Mike Ounsworth <Mike.Ounsworth@entrust.com>, John Gray <John.Gray@entrust.com>, "hans.aschauer@siemens.com" <hans.aschauer@siemens.com>
Thread-Topic: [lamps] I-D Action: draft-ietf-lamps-cmp-algorithms-06.txt
Thread-Index: AQHXbar1lnCXL5IV+0eya4zYlV4Xs6ssfROw
Date: Wed, 30 Jun 2021 13:04:46 +0000
Message-ID: <AM0PR10MB24182EA546085E4997D59C93FE019@AM0PR10MB2418.EURPRD10.PROD.OUTLOOK.COM>
References: <162505584063.15576.8017600582894999297@ietfa.amsl.com>
In-Reply-To: <162505584063.15576.8017600582894999297@ietfa.amsl.com>
Accept-Language: de-DE, en-US
Content-Language: de-DE
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
msip_labels: MSIP_Label_a59b6cd5-d141-4a33-8bf1-0ca04484304f_Enabled=true; MSIP_Label_a59b6cd5-d141-4a33-8bf1-0ca04484304f_SetDate=2021-06-30T13:04:44Z; MSIP_Label_a59b6cd5-d141-4a33-8bf1-0ca04484304f_Method=Standard; MSIP_Label_a59b6cd5-d141-4a33-8bf1-0ca04484304f_Name=restricted-default; MSIP_Label_a59b6cd5-d141-4a33-8bf1-0ca04484304f_SiteId=38ae3bcd-9579-4fd4-adda-b42e1495d55a; MSIP_Label_a59b6cd5-d141-4a33-8bf1-0ca04484304f_ActionId=7d0bea20-6b7a-4c29-97f0-247c6ced73c5; MSIP_Label_a59b6cd5-d141-4a33-8bf1-0ca04484304f_ContentBits=0
document_confidentiality: Restricted
authentication-results: ietf.org; dkim=none (message not signed) header.d=none;ietf.org; dmarc=none action=none header.from=siemens.com;
x-originating-ip: [147.161.170.252]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: acb4ca46-b494-4db2-ecd1-08d93bc7a291
x-ms-traffictypediagnostic: AM0PR10MB1908:
x-ld-processed: 38ae3bcd-9579-4fd4-adda-b42e1495d55a,ExtAddr
x-ms-exchange-transport-forked: True
x-microsoft-antispam-prvs: <AM0PR10MB19082B8D903BE6601E8EF87AFE019@AM0PR10MB1908.EURPRD10.PROD.OUTLOOK.COM>
x-ms-oob-tlc-oobclassifiers: OLM:7219;
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:AM0PR10MB2418.EURPRD10.PROD.OUTLOOK.COM; PTR:; CAT:NONE; SFS:(4636009)(366004)(346002)(376002)(136003)(39860400002)(396003)(26005)(4326008)(9686003)(52536014)(33656002)(966005)(7696005)(2906002)(66446008)(66476007)(107886003)(5660300002)(66556008)(186003)(64756008)(55016002)(6506007)(316002)(71200400001)(38100700002)(8676002)(86362001)(478600001)(45080400002)(122000001)(6916009)(76116006)(66946007)(8936002)(54906003)(83380400001)(66574015); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-OriginatorOrg: siemens.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: AM0PR10MB2418.EURPRD10.PROD.OUTLOOK.COM
X-MS-Exchange-CrossTenant-Network-Message-Id: acb4ca46-b494-4db2-ecd1-08d93bc7a291
X-MS-Exchange-CrossTenant-originalarrivaltime: 30 Jun 2021 13:04:46.1129 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 38ae3bcd-9579-4fd4-adda-b42e1495d55a
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: Tn5+DzvEvve/EerE+QF2lHjAIG2doPUqnxkAcgGvW1bSywn++qYZfBj84NHHMcwJRa9zwpjASoBO/IiixPfBr+77X5vMwT2E+d+M8C0A1tU=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: AM0PR10MB1908
Archived-At: <https://mailarchive.ietf.org/arch/msg/spasm/iURzmHhxjTifb5AQYhakTc_2SfA>
Subject: Re: [lamps] I-D Action: draft-ietf-lamps-cmp-algorithms-06.txt
X-BeenThere: spasm@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "This is a venue for discussion of doing Some Pkix And SMime \(spasm\) work." <spasm.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/spasm>, <mailto:spasm-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/spasm/>
List-Post: <mailto:spasm@ietf.org>
List-Help: <mailto:spasm-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/spasm>, <mailto:spasm-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 30 Jun 2021 13:04:57 -0000
Hi
I just submitted an update of CMP Algorithms draft containing the following changes.
* Added text to Section 2 and Section 3.3 to clearly specify the
hash algorithm to use for certConf messages for certificates
signed with EdDSA (see thread "[CMP Updates] Hash algorithm to us
for calculating certHash")
* Updated new RFC numbers for I-D.ietf-lamps-cms-aes-gmac-alg and I-
D.ietf-lamps-crmf-update-algs
Many thanks to all of you for your support and contribution to the document.
Any further feedback is welcome.
Hendrik
> Von: Spasm <spasm-bounces@ietf.org> Im Auftrag von internet-drafts@ietf.org
> Gesendet: Mittwoch, 30. Juni 2021 14:24
>
>
> A New Internet-Draft is available from the on-line Internet-Drafts directories.
> This draft is a work item of the Limited Additional Mechanisms for PKIX and
> SMIME WG of the IETF.
>
> Title : Certificate Management Protocol (CMP) Algorithms
> Authors : Hendrik Brockhaus
> Hans Aschauer
> Mike Ounsworth
> John Gray
> Filename : draft-ietf-lamps-cmp-algorithms-06.txt
> Pages : 29
> Date : 2021-06-30
>
> Abstract:
> This document describes the conventions for using concrete
> cryptographic algorithms with the Certificate Management Protocol
> (CMP). CMP is used to enroll and further manage the lifecycle of
> X.509 certificates.
>
>
> The IETF datatracker status page for this draft is:
> https://eur01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fdatatrac
> ker.ietf.org%2Fdoc%2Fdraft-ietf-lamps-cmp-
> algorithms%2F&data=04%7C01%7Chendrik.brockhaus%40siemens.com%7
> C38d845c94f9846d95aec08d93bc21698%7C38ae3bcd95794fd4addab42e1495d
> 55a%7C1%7C0%7C637606527054746672%7CUnknown%7CTWFpbGZsb3d8eyJ
> WIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C
> 1000&sdata=Pw1gait3rnKqeR5ZMfaofE1b84bmK425yvkEDSSGPoo%3D&a
> mp;reserved=0
>
> There is also an HTML version available at:
> https://eur01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.ietf
> .org%2Farchive%2Fid%2Fdraft-ietf-lamps-cmp-algorithms-
> 06.html&data=04%7C01%7Chendrik.brockhaus%40siemens.com%7C38d84
> 5c94f9846d95aec08d93bc21698%7C38ae3bcd95794fd4addab42e1495d55a%7C
> 1%7C0%7C637606527054751663%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4
> wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&am
> p;sdata=xNNVHNNGwTXHC2GZ034bcpYwsldtKSaQ1It6HzmVhKI%3D&reser
> ved=0
>
> A diff from the previous version is available at:
> https://eur01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.ietf
> .org%2Frfcdiff%3Furl2%3Ddraft-ietf-lamps-cmp-algorithms-
> 06&data=04%7C01%7Chendrik.brockhaus%40siemens.com%7C38d845c94f
> 9846d95aec08d93bc21698%7C38ae3bcd95794fd4addab42e1495d55a%7C1%7C
> 0%7C637606527054751663%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjA
> wMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sda
> ta=4QIuD7voyftHA1MwXGW%2B79dvHtofEVmnk3zV7u4RnJs%3D&reserve
> d=0
>
>
> Internet-Drafts are also available by anonymous FTP at:
> https://eur01.safelinks.protection.outlook.com/?url=ftp%3A%2F%2Fftp.ietf.org
> %2Finternet-
> drafts%2F&data=04%7C01%7Chendrik.brockhaus%40siemens.com%7C38d
> 845c94f9846d95aec08d93bc21698%7C38ae3bcd95794fd4addab42e1495d55a%
> 7C1%7C0%7C637606527054751663%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiM
> C4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&a
> mp;sdata=9lUptqZ9jzpX46ylxEc7RxgMDYde9W3x0N1VRgjBmWo%3D&rese
> rved=0
>
>
> _______________________________________________
> Spasm mailing list
> Spasm@ietf.org
> https://eur01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.ietf
> .org%2Fmailman%2Flistinfo%2Fspasm&data=04%7C01%7Chendrik.brockha
> us%40siemens.com%7C38d845c94f9846d95aec08d93bc21698%7C38ae3bcd957
> 94fd4addab42e1495d55a%7C1%7C0%7C637606527054751663%7CUnknown%7
> CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJ
> XVCI6Mn0%3D%7C1000&sdata=ywn2XXchCCA9e1Y3jck4M0opLl9kPD4uA4
> OILO9z9EU%3D&reserved=0
- [lamps] I-D Action: draft-ietf-lamps-cmp-algorith… internet-drafts
- Re: [lamps] I-D Action: draft-ietf-lamps-cmp-algo… Brockhaus, Hendrik