Re: [lamps] Default values for PKIX and CMS w/ SHAKE
"Panos Kampanakis (pkampana)" <pkampana@cisco.com> Thu, 08 November 2018 04:08 UTC
Return-Path: <pkampana@cisco.com>
X-Original-To: spasm@ietfa.amsl.com
Delivered-To: spasm@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id F3838130DFF for <spasm@ietfa.amsl.com>; Wed, 7 Nov 2018 20:08:51 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -14.501
X-Spam-Level:
X-Spam-Status: No, score=-14.501 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_MED=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_HI=-5, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id JVYuBOYWf7kf for <spasm@ietfa.amsl.com>; Wed, 7 Nov 2018 20:08:49 -0800 (PST)
Received: from rcdn-iport-1.cisco.com (rcdn-iport-1.cisco.com [173.37.86.72]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 104D512958B for <spasm@ietf.org>; Wed, 7 Nov 2018 20:08:48 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=2659; q=dns/txt; s=iport; t=1541650129; x=1542859729; h=from:to:subject:date:message-id:references:in-reply-to: content-transfer-encoding:mime-version; bh=m67kPly6Kdnltni9orCAb9pZ96offNXiJTzzIILkORg=; b=FZhnITM7WT2S3+oGhR9XRWmuPozKsOVw9xSd5sBt1z2wxC0wXRsX7J/z io2rf//Z/53YDpuTRrAI/zsEa31vv4PI7SId2Ko1TU2KFNRrKK9+7pW/F Xz2jL50LH98o4GtGfnGX0IZ9oa14daPxoFUFzolrHlkrbREAYXMwXHIQP U=;
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: A0AHAAAZtuNb/5BdJa1jGQEBAQEBAQEBAQEBAQcBAQEBAQGBUwIBAQEBAQsBggNmgQInCpgCgg2XMIF6CwEBGAuESQKDCSI2Cw0BAwEBAgEBAm0cDIU6AQEBAQMBATg0FwQCAQgOAwQBAR8QJwsdCAEBBAESCIMaggEPqSuBOIh3BYt4F4FBP4ERgmQugxsBAYc8Aok7lgcJApEIIIFXhQGKEJdCAhEUgSYkByqBVXAVO4JsgicXiF6FPkExjDOBHwEB
X-IronPort-AV: E=Sophos;i="5.54,478,1534809600"; d="scan'208";a="478397784"
Received: from rcdn-core-8.cisco.com ([173.37.93.144]) by rcdn-iport-1.cisco.com with ESMTP/TLS/DHE-RSA-AES256-GCM-SHA384; 08 Nov 2018 04:08:47 +0000
Received: from XCH-RCD-006.cisco.com (xch-rcd-006.cisco.com [173.37.102.16]) by rcdn-core-8.cisco.com (8.15.2/8.15.2) with ESMTPS id wA848lEp007391 (version=TLSv1.2 cipher=AES256-SHA bits=256 verify=FAIL); Thu, 8 Nov 2018 04:08:47 GMT
Received: from xch-aln-010.cisco.com (173.36.7.20) by XCH-RCD-006.cisco.com (173.37.102.16) with Microsoft SMTP Server (TLS) id 15.0.1395.4; Wed, 7 Nov 2018 22:08:47 -0600
Received: from xch-aln-010.cisco.com ([173.36.7.20]) by XCH-ALN-010.cisco.com ([173.36.7.20]) with mapi id 15.00.1395.000; Wed, 7 Nov 2018 22:08:46 -0600
From: "Panos Kampanakis (pkampana)" <pkampana@cisco.com>
To: Jim Schaad <ietf@augustcellars.com>, 'SPASM' <spasm@ietf.org>
Thread-Topic: [lamps] Default values for PKIX and CMS w/ SHAKE
Thread-Index: AdR1jRDrB14kgPKHSTGVC5OH4N5uGABg69Gw
Date: Thu, 08 Nov 2018 04:08:46 +0000
Message-ID: <19e46bb150bc4fe1a038f54750ec520c@XCH-ALN-010.cisco.com>
References: <016101d4758e$415bad40$c41307c0$@augustcellars.com>
In-Reply-To: <016101d4758e$415bad40$c41307c0$@augustcellars.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-ms-exchange-transport-fromentityheader: Hosted
x-originating-ip: [10.82.213.42]
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-Outbound-SMTP-Client: 173.37.102.16, xch-rcd-006.cisco.com
X-Outbound-Node: rcdn-core-8.cisco.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/spasm/mWDKD3mBXNAK1x9LMlFnNjvGUoc>
Subject: Re: [lamps] Default values for PKIX and CMS w/ SHAKE
X-BeenThere: spasm@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "This is a venue for discussion of doing Some Pkix And SMime \(spasm\) work." <spasm.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/spasm>, <mailto:spasm-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/spasm/>
List-Post: <mailto:spasm@ietf.org>
List-Help: <mailto:spasm-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/spasm>, <mailto:spasm-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 08 Nov 2018 04:08:52 -0000
Hi Jim,
Thanks for keeping us honest.
I just noticed that in the text we say
" When the id-KmacWithSHAKE128 or id-KmacWithSHAKE256 algorithm
identifier is used as the KMAC algorithm identifier, the parameters
field MUST be absent."
That is indeed inaccurate. We will fix it.
I see your point about the params being required in ASN.1. I will change it to something like
-- KMAC with SHAKE256
KMACwithSHAKE256 MAC-ALGORITHM ::= {
IDENTIFIER id-KMACWithSHAKE256
PARAMS TYPE KMACwithSHAKE256-params ARE optional
-- If KMACwithSHAKE256-params parameters are absent
-- the SHAKE256 output length used in KMAC is 512 bits
-- and the customization string is an empty string.
}
id-KMACWithSHAKE256 OBJECT IDENTIFIER ::= { joint-iso-itu-t(2)
country(16) us(840) organization(1)
gov(101) csor(3) nistAlgorithm(4)
hashAlgs(2) 20 }
KMACwithSHAKE256-params ::= SEQUENCE {
KMACOutputLength INTEGER DEFAULT 512, -- Output length in bits
customizationString OCTET STRING DEFAULT ''
}
Makes sense?
Please keep us honest with both the PKIX and the CMS (not yet completed) ASN.1.
Panos
-----Original Message-----
From: Spasm <spasm-bounces@ietf.org> On Behalf Of Jim Schaad
Sent: Tuesday, November 06, 2018 12:05 AM
To: 'SPASM' <spasm@ietf.org>
Subject: [lamps] Default values for PKIX and CMS w/ SHAKE
In running through the ASN.1 module I came up with a question about default values. There are two different ways that the defaults could be done for
id-KMACWithSHAKE256
1. Use default values for the fields in the structure. This ends up with the following
SEQUENCE {
OID id-KMACWithSHAKE256,
SEQUENCE {
}
}
2. Use a default value for the parameters as a whole. This ends up with the following
SEQUENCE {
OID id-KMACWithSHAKE256
}
The document currently says that the parameters are required to be absent.
This is implies fixed values for some fields and does not map to either option above but would have the same encoding as option 2.
The first is what is currently in the document and seems to be an odd way to do things.
The second corresponds to what happens today with RSASSA-PSS as defined in
4055 where there are a set of default values, but one can change the values if one wishes to.
Jim
_______________________________________________
Spasm mailing list
Spasm@ietf.org
https://www.ietf.org/mailman/listinfo/spasm
- [lamps] Default values for PKIX and CMS w/ SHAKE Jim Schaad
- Re: [lamps] Default values for PKIX and CMS w/ SH… Panos Kampanakis (pkampana)