Re: [lamps] draft-ietf-lamps-samples: PKCS12 expertise needed (including objects for comparison)
"Blumenthal, Uri - 0553 - MITLL" <uri@ll.mit.edu> Sun, 01 August 2021 18:03 UTC
Return-Path: <prvs=7847f4ab7d=uri@ll.mit.edu>
X-Original-To: spasm@ietfa.amsl.com
Delivered-To: spasm@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A283C3A0764 for <spasm@ietfa.amsl.com>; Sun, 1 Aug 2021 11:03:59 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.895
X-Spam-Level:
X-Spam-Status: No, score=-1.895 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_NONE=0.001, UNPARSEABLE_RELAY=0.001, URIBL_BLOCKED=0.001] autolearn=unavailable autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id BxZPoj_zJ13k for <spasm@ietfa.amsl.com>; Sun, 1 Aug 2021 11:03:55 -0700 (PDT)
Received: from llmx3.ll.mit.edu (llmx3.ll.mit.edu [129.55.12.49]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 5944E3A0765 for <spasm@ietf.org>; Sun, 1 Aug 2021 11:03:55 -0700 (PDT)
Received: from LLE2K16-HYBRD01.mitll.ad.local (LLE2K16-HYBRD01.mitll.ad.local) by llmx3.ll.mit.edu (unknown) with ESMTPS id 171I3ooA042584; Sun, 1 Aug 2021 14:03:50 -0400
ARC-Seal: i=1; a=rsa-sha256; s=arcselector5401; d=microsoft.com; cv=none; b=mWMW8VZli5wUB2jNX8VoxR1V3rQ7CNmnd/DcJhpvBRfErg9jmnsz7LovR1o5++5Gu9ph2RWDXzJ2mPBFNKjm6vjc7TueAw/YlILM6exw/6wmYfg52QqiF+WiUlXQssfEBFyzoyKeugpT4UjlUXxG1wnqX+z+C7vuVmQPHGGLQXGiTAcy1l8dc67Xlbk0EzFiRwcDo+WUG4afa9P+goxW9dFysPShj6WJihfZ6W3Aextb9biV9ObzVjpGumNcOsW+6dOZcvNOaODE4jIR0jZjlDuUsMVS3w6lAQxMFT+fjL1JPoWJltpe/jJctgCPb4Wo6L180C54HIo27d7miCZLyQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector5401; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=SPUm1XoW6t7xSCQsH//KK8uZyOc+f/pLV2aytxibCZc=; b=kJkOlFmFJvU4VU/Kven+xanj/iYMPpl8mMafzCtyt+WBM20Lfn8p2dPsarNmmZLLz42JyS7tkzsbb9K6GlWwBReUTLvZyS2MOnuWrht0fMFz+l1exaqYEBjNBDhq+0qSELMGlepkQLo+Kb/lLaTjDYFwiifgfDOO8JKgqLISAL3VvrKzWY9W77734tE1L0C2iGXPPDbdotPqvc2tk0xCyA7Fz3EjVRsUFP/WLd2Lt0h5xSQ7+qkCIccaKqdj3ZPimuYo+uZ0wRrowPD6ls8tkBMwf/dk61v0bXARLMsUR57MqCKJR9ZLrz49tVV5B50GOAOU2DcJOE4nWjpEV5ousA==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=ll.mit.edu; dmarc=pass action=none header.from=ll.mit.edu; dkim=pass header.d=ll.mit.edu; arc=none
From: "Blumenthal, Uri - 0553 - MITLL" <uri@ll.mit.edu>
To: "Salz, Rich" <rsalz=40akamai.com@dmarc.ietf.org>
CC: Ryan Sleevi <ryan-ietf@sleevi.com>, Daniel Kahn Gillmor <dkg@fifthhorseman.net>, LAMPS WG <spasm@ietf.org>
Thread-Topic: [lamps] draft-ietf-lamps-samples: PKCS12 expertise needed (including objects for comparison)
Thread-Index: AQHXhNAH7j97rn/mLk+L5HJAqzqW96tbnMqAgADw7ICAAU3ZAIAA5aAAgAA0VIA=
Date: Sun, 01 Aug 2021 18:03:46 +0000
Message-ID: <96E719C5-6029-4308-BB74-E61B8439C812@ll.mit.edu>
References: <3B9F485F-9C95-4C75-B4A1-8AFA9A9F80D6@akamai.com>
In-Reply-To: <3B9F485F-9C95-4C75-B4A1-8AFA9A9F80D6@akamai.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach: yes
X-MS-TNEF-Correlator:
authentication-results: sleevi.com; dkim=none (message not signed) header.d=none;sleevi.com; dmarc=none action=none header.from=ll.mit.edu;
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: f471d234-79f5-4781-7e42-08d95516b541
x-ms-traffictypediagnostic: SN5P110MB0413:
x-microsoft-antispam-prvs: <SN5P110MB0413A42594D1B10D1663D69790EE9@SN5P110MB0413.NAMP110.PROD.OUTLOOK.COM>
x-ms-oob-tlc-oobclassifiers: OLM:7691;
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:SN5P110MB0560.NAMP110.PROD.OUTLOOK.COM; PTR:; CAT:NONE; SFS:(4636009)(396003)(366004)(376002)(346002)(39840400004)(136003)(6512007)(75432002)(33656002)(478600001)(966005)(99936003)(2616005)(54906003)(122000001)(38070700005)(6506007)(53546011)(64756008)(2906002)(71200400001)(316002)(5660300002)(8936002)(86362001)(66476007)(66616009)(66556008)(8676002)(4326008)(66446008)(186003)(6486002)(4744005)(66946007)(76116006)(83380400001)(45980500001); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
x-ms-exchange-transport-forked: True
Content-Type: multipart/signed; boundary="Apple-Mail-3DFAA73C-E4CD-441F-B7B3-580CDCAFF748"; protocol="application/pkcs7-signature"; micalg="sha-256"
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: SN5P110MB0560.NAMP110.PROD.OUTLOOK.COM
X-MS-Exchange-CrossTenant-Network-Message-Id: f471d234-79f5-4781-7e42-08d95516b541
X-MS-Exchange-CrossTenant-originalarrivaltime: 01 Aug 2021 18:03:46.7146 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 83d1efe3-698e-4819-911b-0a8fbe79d01c
X-MS-Exchange-Transport-CrossTenantHeadersStamped: SN5P110MB0413
X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:6.0.391, 18.0.790 definitions=2021-08-01_02:2021-07-30, 2021-08-01 signatures=0
X-Proofpoint-Spam-Details: rule=notspam policy=default score=0 suspectscore=0 malwarescore=0 phishscore=0 bulkscore=0 spamscore=0 mlxscore=0 mlxlogscore=999 adultscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.0.1-2103310000 definitions=main-2108010129
Archived-At: <https://mailarchive.ietf.org/arch/msg/spasm/ifgiPOBD4o5u7jQMzmEyYNTm1dE>
Subject: Re: [lamps] draft-ietf-lamps-samples: PKCS12 expertise needed (including objects for comparison)
X-BeenThere: spasm@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "This is a venue for discussion of doing Some Pkix And SMime \(spasm\) work." <spasm.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/spasm>, <mailto:spasm-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/spasm/>
List-Post: <mailto:spasm@ietf.org>
List-Help: <mailto:spasm-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/spasm>, <mailto:spasm-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 01 Aug 2021 18:04:00 -0000
+1 on mandating DER for PKCS12. Modern crypto won't hurt either, but DER is crucial. Regards, Uri > On Aug 1, 2021, at 10:57, Salz, Rich <rsalz=40akamai.com@dmarc.ietf.org> wrote: > > > I agree with Ryan, the contortions OpenSSL has to go through to get those old broken algorithms supported… shudder. > > Perhaps an update to PKCS12 that specifies DER and modern crypto makes sense? > _______________________________________________ > Spasm mailing list > Spasm@ietf.org > https://www.ietf.org/mailman/listinfo/spasm
- [lamps] draft-ietf-lamps-samples: PKCS12 expertis… Daniel Kahn Gillmor
- Re: [lamps] draft-ietf-lamps-samples: PKCS12 expe… Ryan Sleevi
- Re: [lamps] draft-ietf-lamps-samples: PKCS12 expe… Russ Housley
- Re: [lamps] draft-ietf-lamps-samples: PKCS12 expe… Daniel Kahn Gillmor
- Re: [lamps] draft-ietf-lamps-samples: PKCS12 expe… Ryan Sleevi
- Re: [lamps] draft-ietf-lamps-samples: PKCS12 expe… Salz, Rich
- Re: [lamps] draft-ietf-lamps-samples: PKCS12 expe… Russ Housley
- Re: [lamps] draft-ietf-lamps-samples: PKCS12 expe… Blumenthal, Uri - 0553 - MITLL
- Re: [lamps] draft-ietf-lamps-samples: PKCS12 expe… Michael Richardson
- Re: [lamps] draft-ietf-lamps-samples: PKCS12 expe… Ryan Sleevi
- Re: [lamps] draft-ietf-lamps-samples: PKCS12 expe… Deb Cooley
- Re: [lamps] draft-ietf-lamps-samples: PKCS12 expe… Daniel Kahn Gillmor
- Re: [lamps] draft-ietf-lamps-samples: PKCS12 expe… Tomas Gustavsson
- Re: [lamps] draft-ietf-lamps-samples: PKCS12 expe… David Woodhouse
- Re: [lamps] draft-ietf-lamps-samples: PKCS12 expe… Dmitry Belyavsky
- Re: [lamps] draft-ietf-lamps-samples: PKCS12 expe… Michael Richardson
- Re: [lamps] draft-ietf-lamps-samples: PKCS12 expe… Daniel Kahn Gillmor
- Re: [lamps] draft-ietf-lamps-samples: PKCS12 expe… Daniel Kahn Gillmor
- Re: [lamps] draft-ietf-lamps-samples: PKCS12 expe… Ryan Sleevi
- Re: [lamps] draft-ietf-lamps-samples: PKCS12 expe… Michael Richardson
- Re: [lamps] draft-ietf-lamps-samples: PKCS12 expe… Blumenthal, Uri - 0553 - MITLL
- Re: [lamps] draft-ietf-lamps-samples: PKCS12 expe… Daniel Kahn Gillmor
- [lamps] On the need for standardization of softwa… Daniel Kahn Gillmor
- Re: [lamps] On the need for standardization of so… Stephen Farrell
- Re: [lamps] On the need for standardization of so… Tomas Gustavsson
- Re: [lamps] draft-ietf-lamps-samples: PKCS12 expe… Dmitry Belyavsky
- Re: [lamps] On the need for standardization of so… Carl Wallace
- Re: [lamps] On the need for standardization of so… Dmitry Belyavsky
- Re: [lamps] On the need for standardization of so… Carl Wallace
- Re: [lamps] On the need for standardization of so… Blumenthal, Uri - 0553 - MITLL
- Re: [lamps] On the need for standardization of so… Eliot Lear
- Re: [lamps] draft-ietf-lamps-samples: PKCS12 expe… Ryan Sleevi
- Re: [lamps] On the need for standardization of so… Blumenthal, Uri - 0553 - MITLL
- Re: [lamps] On the need for standardization of so… Michael Richardson
- Re: [lamps] On the need for standardization of so… Michael Richardson
- Re: [lamps] On the need for standardization of so… Michael Richardson
- Re: [lamps] On the need for standardization of so… Carl Wallace
- Re: [lamps] On the need for standardization of so… Salz, Rich
- Re: [lamps] On the need for standardization of so… Blumenthal, Uri - 0553 - MITLL
- Re: [lamps] On the need for standardization of so… Michael Richardson
- Re: [lamps] On the need for standardization of so… Michael Richardson
- Re: [lamps] On the need for standardization of so… Bernie Hoeneisen
- Re: [lamps] On the need for standardization of so… Carl Wallace
- Re: [lamps] On the need for standardization of so… Ryan Sleevi
- Re: [lamps] On the need for standardization of so… Michael Richardson
- Re: [lamps] On the need for standardization of so… Daniel Kahn Gillmor
- Re: [lamps] On the need for standardization of so… Daniel Kahn Gillmor
- Re: [lamps] On the need for standardization of so… Daniel Kahn Gillmor
- Re: [lamps] draft-ietf-lamps-samples: PKCS12 expe… Daniel Kahn Gillmor
- [lamps] Transferring cryptographic information in… Daniel Kahn Gillmor
- Re: [lamps] draft-ietf-lamps-samples: PKCS12 expe… Dmitry Belyavsky
- Re: [lamps] On the need for standardization of so… David Woodhouse
- Re: [lamps] On the need for standardization of so… David Woodhouse
- Re: [lamps] On the need for standardization of so… Stephen Farrell
- Re: [lamps] On the need for standardization of so… Ryan Sleevi
- Re: [lamps] On the need for standardization of so… Michael Richardson
- Re: [lamps] Transferring cryptographic informatio… Michael Richardson
- Re: [lamps] On the need for standardization of so… Dmitry Belyavsky
- Re: [lamps] On the need for standardization of so… Michael Richardson
- Re: [lamps] draft-ietf-lamps-samples: PKCS12 expe… Daniel Kahn Gillmor
- Re: [lamps] draft-ietf-lamps-samples: PKCS12 expe… Blumenthal, Uri - 0553 - MITLL
- Re: [lamps] draft-ietf-lamps-samples: PKCS12 expe… Daniel Kahn Gillmor
- Re: [lamps] draft-ietf-lamps-samples: PKCS12 expe… Ryan Sleevi
- Re: [lamps] On the need for standardization of so… Jonathan Hammell
- Re: [lamps] On the need for standardization of so… Russ Housley
- Re: [lamps] draft-ietf-lamps-samples: PKCS12 expe… Russ Housley
- Re: [lamps] draft-ietf-lamps-samples: PKCS12 expe… Daniel Kahn Gillmor
- Re: [lamps] On the need for standardization of so… Daniel Kahn Gillmor
- Re: [lamps] On the need for standardization of so… Russ Housley
- Re: [lamps] On the need for standardization of so… Deb Cooley
- Re: [lamps] On the need for standardization of so… Carl Wallace
- Re: [lamps] On the need for standardization of so… Deb Cooley
- Re: [lamps] On the need for standardization of so… Russ Housley
- Re: [lamps] On the need for standardization of so… Dmitry Belyavsky
- [lamps] advertising multiple S/MIME encryption-ca… Daniel Kahn Gillmor