IETF Logo Mail Archive

Re: [lamps] Francesca Palombini's No Objection on draft-ietf-lamps-crmf-update-algs-05: (with COMMENT)

Francesca Palombini <francesca.palombini@ericsson.com> Mon, 05 April 2021 16:31 UTC

Return-Path: <francesca.palombini@ericsson.com>
X-Original-To: spasm@ietfa.amsl.com
Delivered-To: spasm@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E1F013A1ECD; Mon, 5 Apr 2021 09:31:31 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.102
X-Spam-Level:
X-Spam-Status: No, score=-2.102 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ericsson.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id xmH-IleCQ3Hh; Mon, 5 Apr 2021 09:31:27 -0700 (PDT)
Received: from EUR04-HE1-obe.outbound.protection.outlook.com (mail-eopbgr70041.outbound.protection.outlook.com [40.107.7.41]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D7CB03A1ECE; Mon, 5 Apr 2021 09:31:26 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=CLs/nZIojfpIfqy3gopPTDMRjUuuC6LCoNL409g9Lq2ZthyBUfiTiUyXyRW98xrHIMdlwbdM3ykGgQ0OrUiLOa0X4IITX/ESFOI79ftdmay/3M8ulNbPTgIQAF0LRzqEXeS764KJIH0hlILfEAsiUpfsvgoNgCKF818579ItRCDnnT1oiYJ+jmaSRjfb7YtO9uZ01oYZF1zROd2GVr87JB65l6vZTLlM/PFmEwByJZl8EKqwmpcBnIUhs6dH79wIKl5aYQVJjyKMKEILB8+WiVceIOLE175wmemAUcfKkVvOjNLm9KyWijXkANjRiHfZOOkl1eQyQKj4C40TDLXzTA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=738qMDkgBkWX1D8+UQ1BhGt7A38Vx3rkjNdp1OKob8s=; b=Ud9fXyIFfqUGjC0D8oDvNgl/gzIX0+85ts8ZwjU9kI9BXiGBXDGeix0vQbtnw2alRgvvXFUrEuWvg6lGb2KbNRM6bJwlJKEQGy7WBwDklt0t5h1KqpAmvn6qpnHjqELXO3KeLl+qrUjkJPw3fWVSw0X0dByy9R84IGH2XDngvXoyfaE0ZQ4f3hRLFeW55/C9A3DSG7IEdhwy6zKMoY+WSSKn9bXvGhvDj95VloqxKpTMu8cfomgG7MJ9M3EKU4yoKNRIbawhHsXpzmn1zOtX3te+6YtxUTcv/yCVbXMshjCMwhT+rcjXpZYpkstlFvq2v/+1UBfBBQTZG2O4V+N2YQ==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=ericsson.com; dmarc=pass action=none header.from=ericsson.com; dkim=pass header.d=ericsson.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ericsson.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=738qMDkgBkWX1D8+UQ1BhGt7A38Vx3rkjNdp1OKob8s=; b=CwI2nBN0rqwJlZOv4wU8DqAulwlZ4ANd+hG+ZtXAgBqv6GM80vFJfqY/6CE9wvMc7tMJO8MwXRvl2aHalI4fYA+gQGlB9ujgjpKdalM7hCe1aEHBp7rcQLjd3eZa7qhnEFiytUM8045/U+wheSkF0IuekLugvXYrKaFEBU2aSQ8=
Received: from HE1PR07MB4217.eurprd07.prod.outlook.com (2603:10a6:7:96::33) by HE1PR0701MB2684.eurprd07.prod.outlook.com (2603:10a6:3:8f::12) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.4020.8; Mon, 5 Apr 2021 16:31:23 +0000
Received: from HE1PR07MB4217.eurprd07.prod.outlook.com ([fe80::593:f4fd:94e3:d90b]) by HE1PR07MB4217.eurprd07.prod.outlook.com ([fe80::593:f4fd:94e3:d90b%5]) with mapi id 15.20.4020.015; Mon, 5 Apr 2021 16:31:23 +0000
From: Francesca Palombini <francesca.palombini@ericsson.com>
To: Russ Housley <housley@vigilsec.com>
CC: IESG <iesg@ietf.org>, LAMPS <spasm@ietf.org>, Tim Hollebeek <tim.hollebeek@digicert.com>
Thread-Topic: [lamps] Francesca Palombini's No Objection on draft-ietf-lamps-crmf-update-algs-05: (with COMMENT)
Thread-Index: AQHXKi5ua/fdOu/5TU+JCEsJNcu9JqqmF4uAgAAn2oA=
Date: Mon, 05 Apr 2021 16:31:23 +0000
Message-ID: <BC372F0F-14CE-4E79-88E6-4086C43F9898@ericsson.com>
References: <161763568043.428.1549139655189448444@ietfa.amsl.com> <E555AA10-6513-4E46-B397-EB719515A746@vigilsec.com>
In-Reply-To: <E555AA10-6513-4E46-B397-EB719515A746@vigilsec.com>
Accept-Language: en-GB, en-US
Content-Language: en-GB
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/16.47.21031401
authentication-results: vigilsec.com; dkim=none (message not signed) header.d=none;vigilsec.com; dmarc=none action=none header.from=ericsson.com;
x-originating-ip: [62.63.203.117]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 5686771e-4a56-40f3-8bba-08d8f85040ae
x-ms-traffictypediagnostic: HE1PR0701MB2684:
x-microsoft-antispam-prvs: <HE1PR0701MB26843C57CF31062B9B39FB0F98779@HE1PR0701MB2684.eurprd07.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:10000;
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:HE1PR07MB4217.eurprd07.prod.outlook.com; PTR:; CAT:NONE; SFS:(4636009)(376002)(346002)(396003)(39860400002)(366004)(136003)(44832011)(76116006)(66946007)(86362001)(66476007)(15650500001)(66446008)(64756008)(66556008)(91956017)(2906002)(5660300002)(6486002)(8676002)(4326008)(186003)(8936002)(54906003)(26005)(33656002)(6916009)(6506007)(316002)(478600001)(36756003)(83380400001)(71200400001)(38100700001)(6512007)(2616005)(45980500001); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata: 4oZS2063fZY9IzVtKK+QTIFMz7Mpn0aL/4VQFH9ttSiGe7inKNcvKiA5L1ZdgvxQ+UvwL7nAS5P+pKib1mU0B/VGgzpml2tGFOAl9w++8EqsOJG8BEsahEFiFFvAKtJKYT+BB3k60NG2EkzLCseG0OvIfXdA2+HiDD7yxTvuSGf9wardUTONPyJB/EfN2oxE2FHtmk474lXFGZ5T2yu5uIUApwiyuV9YJNFMi47pBjtU+F0Wn0bK+knNPz5j1ecDoXF8wWbozqJbQIMqJSVFFzNa/AQEeqoShxLe2MgZ1FwYi7plGviJOJgP3A1XiP161McoGzxazBVFxHXcVvNG2w0/o/LrKMRHxEUjZpHYzICe/qLSJMQ4bFEYHG+VnRt5HV5tktxcZulP414f5O/bMfwAsyvFSprUkv7oh7JVAA0CawTKsTt+7jClhz0g0anYX8eHvRjkyfEGXmMkoeXi7ATulNvsdAZ0U5unzw7t1fcS89M8yBBs3Zrhn/3McyBAc4m286rDjhQvuedDWqbtKLDCOf4v6KWy58aGK65tdRM2s9qosDB5gEyVgfiEhOdJKIISlmfItamX7C882WVIY/3VJro6pqTEQeXrGKlQDTRffyZqL1PDUPxJJay0q9g7NDvSzIEsUIx1l235EWOnWX3rRbgOt4dN9t3DLedw4u7Eh8BLE2JyCBIoWwOShHMcgilSyib+wtof9Sd9HYZuXl8FvUYvtHiucG+WZ0uEpBEOb8LtzFGjL6iP0Yxfcf0OYAh58ImJl9PyWA5HULvcBIvZvmr/fYK/qTAigECTVavahx8Qp0v8arFJCJzCKkzhmAaFdv9jOeiCasV0ZrrGOk+YRiYwWo9aKcQs3JM51OCg6TC5ou3mwvuqVahNRRl2lfVhgBw01gJf7wA2AM8VFMzhHGMdXzPPFz7t6sQgDzJUqPLPYwri3kePkB3vLqG3QbZKezzOoTT/1Iu82ofeRriQeVYmOlbwbZiW9dSHV2Jhvhph0xgqv97YlUg51cO8U99ZL0i2zgvqskuOnb6l2Vub++palvbyHgsC/josNlixK4uNlvbN/MVk6vvsyBSxu0fJUqtf1lt2XkAlkHVGqxiNkP1b2VWWvM4ocYG4AqGmV8X6yY6emuDV5wqTlvz0PR1P4fXC6HsqyNDXjQHrDK7keK9aEwcn0BrB7CktkJy5oCy/0H71npN5xcxh86eaGfoulWZ2UfshNLxSETdC0NScGIHpcgyrSUltjxIfk9p+8WB59AjMsNyl2zur6s4Pbn1n3aWkITMMN+uFQscjwIu7bU3fmP1vb9FUnBZMaf7y8vwQD++KkwtI674JnTc7
x-ms-exchange-transport-forked: True
Content-Type: text/plain; charset="utf-8"
Content-ID: <0F7E1E005D579647AEA181E02DD72AD3@eurprd07.prod.outlook.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: ericsson.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: HE1PR07MB4217.eurprd07.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 5686771e-4a56-40f3-8bba-08d8f85040ae
X-MS-Exchange-CrossTenant-originalarrivaltime: 05 Apr 2021 16:31:23.8398 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 92e84ceb-fbfd-47ab-be52-080c6b87953f
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: UERyil1pfv0gkhDUgMtMdxKuP4k2gfKHdAyjA39zkYTY9HfSZXc5ZgEbmcdDdEDKdEEgHi8fJNYVw5BPI27f5cnkHrOxlV0HL2aeyzMMldE1c2cH8n6hL73s/yXSv/Hh
X-MS-Exchange-Transport-CrossTenantHeadersStamped: HE1PR0701MB2684
Archived-At: <https://mailarchive.ietf.org/arch/msg/spasm/li2W-f1WnL5OrJjxHKp9WKpyo_s>
Subject: Re: [lamps] Francesca Palombini's No Objection on draft-ietf-lamps-crmf-update-algs-05: (with COMMENT)
X-BeenThere: spasm@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "This is a venue for discussion of doing Some Pkix And SMime \(spasm\) work." <spasm.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/spasm>, <mailto:spasm-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/spasm/>
List-Post: <mailto:spasm@ietf.org>
List-Help: <mailto:spasm-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/spasm>, <mailto:spasm-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 05 Apr 2021 16:31:32 -0000

Hi Russ,

I see. My point was to add some text about ASN.1 being used (and possibly a reference to it?), as ASN.1 is not even mentioned in the draft right now, but its syntax is used. However, since this is an update to a document which clearly mentions ASN.1, I leave it to you to decide if it would improve the text or not.

Thanks,
Francesca

On 05/04/2021, 18:08, "Russ Housley" <housley@vigilsec.com> wrote:

    Francesca:

    > Thank you for the work on this document. I only have one typo and one very
    > minor comment, feel free to take them or leave them.
    > 
    > Francesca
    > 
    > 1. -----
    > 
    >   *  HMAC-SHA1 [HMAC][SHS] is not boken yet, but there are much
    > 
    > FP: s/boken/broken

    Clearly, this will be fixed.  But if this is the only comment, we may wait until AUTH48.

    > 2. -----
    > 
    >   The algorithm identifier for HMAC-SHA256 is defined in [RFC4231]:
    > 
    >   The algorithm identifier for AES-GMAC [AES][GMAC] with a 128-bit key
    > 
    > FP: suggestion to replace "identifier" with "ASN.1 object identifier"

    I used "algorithm identifier" to include the parameters as well as the OID.

    Russ

v2.23.0 | Report a Bug | By Email