[lamps] draft-ietf-lamps-cmp-updates section 3.8 using pkcs-9-at-localKeyId containing a revocation passphrase hint
"Brockhaus, Hendrik" <hendrik.brockhaus@siemens.com> Wed, 06 May 2020 09:43 UTC
Return-Path: <hendrik.brockhaus@siemens.com>
X-Original-To: spasm@ietfa.amsl.com
Delivered-To: spasm@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C15553A07A8 for <spasm@ietfa.amsl.com>; Wed, 6 May 2020 02:43:00 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.901
X-Spam-Level:
X-Spam-Status: No, score=-1.901 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=siemens.onmicrosoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 68UpTVoiviOm for <spasm@ietfa.amsl.com>; Wed, 6 May 2020 02:42:59 -0700 (PDT)
Received: from EUR03-VE1-obe.outbound.protection.outlook.com (mail-eopbgr50070.outbound.protection.outlook.com [40.107.5.70]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id DBC963A07BB for <spasm@ietf.org>; Wed, 6 May 2020 02:42:58 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=CF2pjnHChidI4S2sx86kCx7wUJqC7286HEo6wmWuS+1X+58SeE4iun5p9zKcX/pYm1tHxo7R/WzsOn93iTxGIkwjZ3UssKnNXQN3CPWQyEk6+reo4uTMCimxqxOTjhkAtDhxGY22Ghatwj3Br/nnocHYfDQiHJGoKkMFRAdlh3xgh3FTOukB9inE3LqpsZLfLIdXVXlPzPmviGsVX63dPdTVCImWP69UB5IoTnc8nj6idMYj67xa/36aGL3ZfDNJL4W1kLXX2Mbys1wtDIfuE9kLbP6LRN4QFTvQ6PqXTTS6o9s45V44TTgVmUAx6ZLiZF4YFR8kFG8boUtC4vUXBg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=slaZA22/wOt3WcQ+dJZ60EjZ728xxGaLGotTubxcCv4=; b=g0DzwY+aWiwGvHlf4zweK6ffKgzGGMZcxkLYHykFD/3nxeas3YoLzw2bcI6kZiKkt+EttLH5sUz72B85rtuzmIv7cD2sKq0dSLzmfrwBUf9ucPSfMyNKIaqZnyOnvPRdu9qcL0ilIocZ/NlWSbntgWOgUlzZjSp8/2FG8nMg3pWj1OctuAEqcBp7HA7rM+8QO82KK/pxZiLDWOD9YaP1wTN5n4M2Gi1xzxTcx/gn5lJl3tUIlhvjyYkPAOUcUmbpGaH+UcF+uxA12VIwvMl2KZip/PEus8o9Yj4ycNiVC1PsVL291SQV7jPIZCSxN9IY/YHA0pC+gbZY3Gjqke13ug==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=siemens.com; dmarc=pass action=none header.from=siemens.com; dkim=pass header.d=siemens.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=siemens.onmicrosoft.com; s=selector1-siemens-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=slaZA22/wOt3WcQ+dJZ60EjZ728xxGaLGotTubxcCv4=; b=EpM/GtDUmcU/kncrpofluVCs7pan2LC8tZSkuJE06nmc9/YaJnzM8XwyFgFHTnR0M/TkULciuuByIpL6T1+CQ+/7AsRY1EtENXYZpRz2B72kwV5Q0vdGsCBCGeSTyt+OISXPxF58b3AyzDahM1bVI2AhMO0eAOOIO5y1N+ufhdI=
Received: from AM0PR10MB2402.EURPRD10.PROD.OUTLOOK.COM (2603:10a6:208:e2::32) by AM0PR10MB3475.EURPRD10.PROD.OUTLOOK.COM (2603:10a6:20b:15d::10) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2979.28; Wed, 6 May 2020 09:42:56 +0000
Received: from AM0PR10MB2402.EURPRD10.PROD.OUTLOOK.COM ([fe80::85a4:2ab:a6b9:e1a3]) by AM0PR10MB2402.EURPRD10.PROD.OUTLOOK.COM ([fe80::85a4:2ab:a6b9:e1a3%6]) with mapi id 15.20.2958.030; Wed, 6 May 2020 09:42:56 +0000
From: "Brockhaus, Hendrik" <hendrik.brockhaus@siemens.com>
To: LAMPS WG <spasm@ietf.org>, Jim Schaad <ietf@augustcellars.com>
CC: "steffen.fries@siemens.com" <steffen.fries@siemens.com>
Thread-Topic: draft-ietf-lamps-cmp-updates section 3.8 using pkcs-9-at-localKeyId containing a revocation passphrase hint
Thread-Index: AdYjiqD70iVEvJBYSCuMsO7kBTpDbw==
Date: Wed, 06 May 2020 09:42:56 +0000
Message-ID: <AM0PR10MB2402173DFBD40DFF043AE839FEA40@AM0PR10MB2402.EURPRD10.PROD.OUTLOOK.COM>
Accept-Language: de-DE, en-US
Content-Language: de-DE
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: ietf.org; dkim=none (message not signed) header.d=none;ietf.org; dmarc=none action=none header.from=siemens.com;
x-originating-ip: [165.225.200.175]
x-ms-publictraffictype: Email
x-ms-office365-filtering-ht: Tenant
x-ms-office365-filtering-correlation-id: 2b25c15e-77f4-46e9-e700-08d7f1a1db3a
x-ms-traffictypediagnostic: AM0PR10MB3475:|AM0PR10MB3475:
x-ld-processed: 38ae3bcd-9579-4fd4-adda-b42e1495d55a,ExtAddr
x-ms-exchange-transport-forked: True
x-microsoft-antispam-prvs: <AM0PR10MB3475D6DA319F6E799D14DEC8FEA40@AM0PR10MB3475.EURPRD10.PROD.OUTLOOK.COM>
x-ms-oob-tlc-oobclassifiers: OLM:7691;
x-forefront-prvs: 03950F25EC
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:AM0PR10MB2402.EURPRD10.PROD.OUTLOOK.COM; PTR:; CAT:NONE; SFTY:; SFS:(4636009)(136003)(396003)(376002)(366004)(346002)(39860400002)(33430700001)(71200400001)(33656002)(5660300002)(478600001)(186003)(4744005)(33440700001)(19627235002)(7696005)(26005)(8936002)(8676002)(52536014)(64756008)(316002)(66556008)(66446008)(86362001)(66476007)(66946007)(76116006)(2906002)(55016002)(55236004)(4326008)(107886003)(9686003)(6506007)(110136005); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata: 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
Content-Type: multipart/alternative; boundary="_000_AM0PR10MB2402173DFBD40DFF043AE839FEA40AM0PR10MB2402EURP_"
MIME-Version: 1.0
X-OriginatorOrg: siemens.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 2b25c15e-77f4-46e9-e700-08d7f1a1db3a
X-MS-Exchange-CrossTenant-originalarrivaltime: 06 May 2020 09:42:56.4834 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 38ae3bcd-9579-4fd4-adda-b42e1495d55a
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: bNCAiteb2yJ2n6SDRMQJVcHsJRnz2yhFdWDx7T1giKUXR0d/gZmuqP+04NJwKhDQVzwH9dhRjCQ8d3bwk9RHLMtOFkebBzz1Xea0aIZN6pY=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: AM0PR10MB3475
Archived-At: <https://mailarchive.ietf.org/arch/msg/spasm/8yysc0d_lXAPAniBmJVgz_Xq9B4>
Subject: [lamps] draft-ietf-lamps-cmp-updates section 3.8 using pkcs-9-at-localKeyId containing a revocation passphrase hint
X-BeenThere: spasm@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "This is a venue for discussion of doing Some Pkix And SMime \(spasm\) work." <spasm.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/spasm>, <mailto:spasm-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/spasm/>
List-Post: <mailto:spasm@ietf.org>
List-Help: <mailto:spasm-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/spasm>, <mailto:spasm-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 06 May 2020 09:43:01 -0000
During IETF 107 we discussed whether to use pkcs-9-at-friendlyName or pkcs-9-at-localKeyId as specified in RFC 2985 section 5.5 in envelopedData to transport an identifier for the revocation passphrase. The WG seemed to prefer the localKeyId. @Jim, did you manage to take a look on this and do you have a different opinion? -- Hendrik
- [lamps] draft-ietf-lamps-cmp-updates section 3.8 … Brockhaus, Hendrik
- Re: [lamps] draft-ietf-lamps-cmp-updates section … Jim Schaad
- Re: [lamps] draft-ietf-lamps-cmp-updates section … Brockhaus, Hendrik
- Re: [lamps] draft-ietf-lamps-cmp-updates section … Russ Housley
- [lamps] draft-ietf-lamps-cmp-updates Russ Housley
- Re: [lamps] draft-ietf-lamps-cmp-updates Brockhaus, Hendrik
- Re: [lamps] draft-ietf-lamps-cmp-updates Russ Housley
- Re: [lamps] draft-ietf-lamps-cmp-updates Brockhaus, Hendrik
- Re: [lamps] draft-ietf-lamps-cmp-updates Russ Housley
- Re: [lamps] draft-ietf-lamps-cmp-updates Brockhaus, Hendrik
- [lamps] draft-ietf-lamps-cmp-updates and the ASN.… Russ Housley
- Re: [lamps] draft-ietf-lamps-cmp-updates and the … Brockhaus, Hendrik