[lamps] Composite Keys and Signatures looking for WG Adoption
Mike Ounsworth <Mike.Ounsworth@entrust.com> Wed, 08 June 2022 16:33 UTC
Return-Path: <Mike.Ounsworth@entrust.com>
X-Original-To: spasm@ietfa.amsl.com
Delivered-To: spasm@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7DA17C157B41 for <spasm@ietfa.amsl.com>; Wed, 8 Jun 2022 09:33:23 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.109
X-Spam-Level:
X-Spam-Status: No, score=-2.109 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=entrust.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id o_jdHzkjOinL for <spasm@ietfa.amsl.com>; Wed, 8 Jun 2022 09:33:19 -0700 (PDT)
Received: from mx08-0015a003.pphosted.com (mx08-0015a003.pphosted.com [185.183.30.227]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 69148C157B3B for <spasm@ietf.org>; Wed, 8 Jun 2022 09:33:19 -0700 (PDT)
Received: from pps.filterd (m0242863.ppops.net [127.0.0.1]) by mx08-0015a003.pphosted.com (8.17.1.5/8.17.1.5) with ESMTP id 2583ef0T008158 for <spasm@ietf.org>; Wed, 8 Jun 2022 11:33:16 -0500
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=entrust.com; h=from : to : subject : date : message-id : content-type : content-transfer-encoding : mime-version; s=mail1; bh=hYQYVYhFy72SZWmQO64s3d0IFvbK6oi87zFRytdMF4U=; b=IjHhSobg+/R6ay67djcApLZNctbYdZ2tFHeqIjPv5n4idOXGEdBMRT2FcinsdqKxBEO1 Y8hkNXArDzcFFSCkTJF27uK255MZ1SDQgyUd5TiENul2bORlEQeuMQZT9LpzwMssKhtt 9TyUCk/bAxZnSFRt7/AmafjwwflliTZLqnlIBlyRWOqFuyqkqSw+3Sft2DtXKYoLm5As gzQ2HCA/HBipboTdQ2pO18vRMVuBpu73rV5F93uQEw9N1Fv5OGidaiG1eZNlGel/DmSu F9RbVjtKhqXp5oeUQVj9NsMViFJOcsvU5yvWhdifMHa6KAPRW3ZxUVAkVX91R6cT8U4u lA==
Received: from nam12-bn8-obe.outbound.protection.outlook.com (mail-bn8nam12lp2170.outbound.protection.outlook.com [104.47.55.170]) by mx08-0015a003.pphosted.com (PPS) with ESMTPS id 3gg2cr4fe7-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT) for <spasm@ietf.org>; Wed, 08 Jun 2022 11:33:16 -0500
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=kp/vhPjwj25Bqh/vd2oXkn47/GleNhOCvEUqtVdqiBp1OfauF7hRysMEJvM3qXurpvxCjf10VwsUQhEfq6TUc74T3xY6LoKkuc8wYk5ohRk34NhIsIkZX1Idv9xzktj/CagWwRPV7xYFjkMYTVXV1dTHR6vXSIztVJjqtPD+S2fz5+upzhqIMuTV2y39xt55z0gv2ViU47zmweBwoTr2lynR6y/4JJDcPPGuydFwLjiNpD1LxJY0pci4jG7aBRcnlUfEeLw2qMWnFtQVjYULWiCpHhQO6r9BTo5XkBle6TVwtyEoLVj/OP2zncZYAugT5Q6Bw39b6xz9cheibB0jEQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=hYQYVYhFy72SZWmQO64s3d0IFvbK6oi87zFRytdMF4U=; b=grpn3bgwuQzxyOFQ2fLT6Op90SWIq4y5B/XQu527j5eqI+fH733wWXRSCSOkobVpB8VDDwN/ez5WV8yzj6+b4RryR9IyZdN9hm3xaGe1MOLeyAg3Az3QcEmJ/svWN1Ulkz8OCEzv/OrFAwYdh2DjEvD1axysWmaBBbt+ku9qWNowAnWJuTLpMuEIQSWTLJtDQoTf4sslCzXcG2jpeDM1GLmgAMbYeNJaB1rBV1ByqA3cBKNzcFLBS1bCkI7lLjFU1lMDPaRRz3moEDVBcOO6qFjXXfYPpaJeNb6vrs1dI75lgPUNYKM3yEwSLV/PgrYUEjpdGfxVING8D1W36DfllA==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=entrust.com; dmarc=pass action=none header.from=entrust.com; dkim=pass header.d=entrust.com; arc=none
Received: from CH0PR11MB5739.namprd11.prod.outlook.com (2603:10b6:610:100::20) by BL1PR11MB5383.namprd11.prod.outlook.com (2603:10b6:208:318::20) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.5314.12; Wed, 8 Jun 2022 16:33:14 +0000
Received: from CH0PR11MB5739.namprd11.prod.outlook.com ([fe80::610d:1832:5a42:40ad]) by CH0PR11MB5739.namprd11.prod.outlook.com ([fe80::610d:1832:5a42:40ad%6]) with mapi id 15.20.5314.019; Wed, 8 Jun 2022 16:33:14 +0000
From: Mike Ounsworth <Mike.Ounsworth@entrust.com>
To: 'LAMPS' <spasm@ietf.org>
Thread-Topic: Composite Keys and Signatures looking for WG Adoption
Thread-Index: Adh7Uo0kcYpJwT4RTzaJbuckZPkc4g==
Date: Wed, 08 Jun 2022 16:33:14 +0000
Message-ID: <CH0PR11MB5739AA7D39C852B242CC3A5D9FA49@CH0PR11MB5739.namprd11.prod.outlook.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 43f9654a-d0ce-4c14-acd5-08da496c95d1
x-ms-traffictypediagnostic: BL1PR11MB5383:EE_
x-microsoft-antispam-prvs: <BL1PR11MB53830CA9122F54465E4B121F9FA49@BL1PR11MB5383.namprd11.prod.outlook.com>
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: laonOHMdp5v3QBU66Mx8NZUazgBkpfCXjArlle0u7BX8GiVm+0N8wdqGPTVwtO/GP9VHOwpCtcUDJ5OlFMceluMRTwPRzaDh80RGfjhZAiig2zYFmk5TDhjjuHqcPfZhavqwoXQ5MZtDwKxnzxQwLdQHZ6MsyZBR0MKZoZtFeDQW8YJj2/ZjriMfnDLnICIzpSZfCPLk3r5nkWJS/9vpEsG5eTLPn7Hg3OAOLTKLlzNViBz6NNcTQsIB/aPlOfM+g4Owz42HAPfWX/mjCY/Ix3jd+7xM8HiqSiS5K/GAESCycWTJ7bW/3CSPOe5codj+P8kucdB/2SV4eauTH9lQmRPtw82ZgTuG+y03u0TqgfLCjMeMiMTuriEgg9ZP2OEm20879B4jSJb52apeLPCtMsCrMMi/feS0w34lPoctfHiBqZ2WBeZjN4LAM4r6gwARyiW7uoKQQwHI+2v818GQg0NwY1yrR+U7YFyDTinyfFHthR8dwoaw4+Bf2m73MVjAm88GZPsKf+SYuxhUsrqK+xyk0u1MWEb6pG1BbOXMr4uP7TGcOcqD8VsRAB1R50xqq5H5WMGVwgZDXgun/shA0OC5uVuQPSp05aKJ3twivNfx+fnHB5WGY2Xv0UHW0+7FXgCWi3N/3jhFdvP+61T+jzwTBaXCQthDR/uOiWzC9dUQtVqJOh2WHi58pyzpHemP0E1Z0UeGzi95YyN63M/Ykw==
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:CH0PR11MB5739.namprd11.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230001)(366004)(6916009)(316002)(71200400001)(33656002)(52536014)(8936002)(55016003)(26005)(9686003)(86362001)(83380400001)(6506007)(7696005)(66946007)(66476007)(38100700002)(66446008)(64756008)(66556008)(186003)(5660300002)(122000001)(38070700005)(508600001)(2906002)(76116006)(8676002); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 996IJyYxWlV3pTCj7GvS1/q8TWJjtPdzZcY/HiJs+Xc+XN6DwErMg/fXUQUgo+4svIjGjkHkiOIpgO3m8cd5x3EDx6h+crMKKJ8ONDAY6YhM4pMdH6fgM58ySvY7Gr7lShPab2gSeFAxlcX1m8p2H020riGsvZexsHueB9cplJHzOknmKYqbl7Z5WOLD0wQUpezkEsmmT/TgA5oq0MQfK55NUqIFGgsv8g5T4rxJN7K8rJEpUNE77zOkM38zOwyZnFrzQEfa7wvBQjwlUHwBXQyTlIhIgUBkqoM4rwrkNVk0EpAY6FTaoFNpSIaemFtB5XnepCCXyGDseAlyvhWNWqw9jxvQB5G61RWpj4mf0OeVdl8vnG4IYLrxTu4GcG7M919KuYl7GZmM148lFxTMu/qs//1/+JFkAM7g+zyWT6MfJHLDLwbNMoB6yYN0uJTPF1LnAL+AzUrJckoNIb/EWrH6BDvlPh06CscP7SlFSG7lQza4Jd9N8sZDeEdzTHxHu9bvbb9O7i8feu6d7nxYYcHwhnUgY2ZPGT/lpGygIj3H0CLXxY1o/G2CPQMluWQJCGEXH2fQ/Un5hCGcoezteZU2iIfMqd/OykMSCOyYKDaTyOYTL8z9viPo2QCnmlhar80ybEhIK+qp0jm90bhGaciJK9DVqT8DM0eAHX9WTz/Hb5hgJ/oOIBddA30OirQa2zq4B5yoUhsS75eZA2Iv6MFWfXQ2pQ7KczpEDbD4gJZmXrEGAZZy4Fx8jUdCyfD/qJYBl6wjCEtt1HiilGHcdGGbDIbR4fmyXXSCxcywZMhSW09rMGbsOQegW8aglrMmGzVt/b6IOhoGaYS9yDZPb746uMk5CQq0Vi44LtVhd68UW7NYvQaBOsyMrJNahQEPjq9P5TJhKy7cMvQ/NJ7ZITGBI0sppub9AA/6JUBn6XpR/bVu742ZwADx4fTdjxkCWEJ6aICyzKcJMmUX/Txtv9pMDP+m6lCkfQ5aK3pu9xfQJ7JkmGDxPpHeIpfy41s1x9jtScW/WyOAZcL2z2QYYHksg2J5ugvT2T/85GsaRrCi88kP0wfyAG/kMQEe+jsJEi6qCE4zl513u7ZnspS6kT9FdOflfWGRCz4y4P3sc4fBqBfd5SO64U/othVofItcW9TU+RxUgNDYVFEzhgfggKejCwnrMtQvgpJEj7EgJtzvd8CkUxIK1x7s9OoBZmW5tXqgeH+dqiPaBT+4MfnYKkLeNtwaFqQC1oW+/Ug1TMyhi4VXeI2Ow7xrsvfOdOQ2bUl0ufIJHQIffNrw7Y14U8Zf6IK9Ix7LowvLfUqhwFEekJMG650Fg33IpFx970Jh1HcGndP4HBpRN1unsJI5qpk0J++zShbUFSqiTqjiksc5Gh9cq+ZzBYFybgeB3i+4bJic/I9SNPgQmVc8DtfCX1Yv4FY7+fcCb92ABH2PSLVhKrNIwHD6oiDKDnCM427V5khFfs8vW0eUsZctFhK/PViTcxL7pH4p30Bn04/WdGmMWlzxm3exAKeTTDCLG9ntVV0ZL3eLJr2tdbrZ7/kJns0T7ftWRT3WS+DQl4ZhOvrBxklXQpsGUkoeUhDKK2SLjpoUdQ7VbrrYpGq2zXKZOc5lQXVaOI6Sc3hQ6d+1BYuTGuXVrPI/4b2+YQCBLHEjPeE3zpla4psXxDcGkZWtN6M9zMVGTlLuX/R7+G+cWKQOUemvFX7rJOEwhvI/r41frC2KP/p7ycl/a18pVFtNUQ==
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-OriginatorOrg: entrust.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: CH0PR11MB5739.namprd11.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 43f9654a-d0ce-4c14-acd5-08da496c95d1
X-MS-Exchange-CrossTenant-originalarrivaltime: 08 Jun 2022 16:33:14.4563 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: f46cf439-27ef-4acf-a800-15072bb7ddc1
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: C/YIP6byYMKb5sz71BSycnW911Nz7o0t5NnOs34FggzSj4i8MicVhGjEmYBP69wDO+jRHtpz0UWUUIEkuutAueRLzWXFxEjcSqha5qal4ro=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BL1PR11MB5383
X-Proofpoint-GUID: Tlai4H_QUU7SAZAWRYrTJpaun9XCJuhS
X-Proofpoint-ORIG-GUID: Tlai4H_QUU7SAZAWRYrTJpaun9XCJuhS
X-Proofpoint-Virus-Version: vendor=baseguard engine=ICAP:2.0.205,Aquarius:18.0.874,Hydra:6.0.517,FMLib:17.11.64.514 definitions=2022-06-08_05,2022-06-07_02,2022-02-23_01
X-Proofpoint-Spam-Details: rule=outbound_notspam policy=outbound score=0 mlxscore=0 priorityscore=1501 suspectscore=0 malwarescore=0 mlxlogscore=599 bulkscore=0 spamscore=0 adultscore=0 impostorscore=0 clxscore=1015 phishscore=0 lowpriorityscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.12.0-2204290000 definitions=main-2206080067
Archived-At: <https://mailarchive.ietf.org/arch/msg/spasm/b9YeGtvThnik4TSvyqKJAB7B6mc>
Subject: [lamps] Composite Keys and Signatures looking for WG Adoption
X-BeenThere: spasm@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "This is a venue for discussion of doing Some Pkix And SMime \(spasm\) work." <spasm.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/spasm>, <mailto:spasm-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/spasm/>
List-Post: <mailto:spasm@ietf.org>
List-Help: <mailto:spasm-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/spasm>, <mailto:spasm-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 08 Jun 2022 16:33:23 -0000
Hi LAMPS! Thanks to everyone who has given us feedback during and since 113! I think at this point we have incorporated all feedback and we feel these two drafts are ready for WG Adoption. - draft-ounsworth-pq-composite-keys-02 - draft-ounsworth-pq-composite-sigs-07 The major changes since previous versions are: - Merging into one draft Generic Composite (where you put the OID id-composite-key / sa-CompositeSignature and can put in any component algs you want), and Explicit Composite (where you register an OID to represent a specific combination of algs). Generic and Explicit now share a wire encoding and only differ in the OIDs used. - We have simplified by removing OR and KofN modes. There are usecases that need them, so we'll need to put them back somewhere. They probably belong with the signature algorithm rather than the public key, but that can be a topic for future discussion. - Lots of editorial changes to the text, in particular Implementation Considerations and Security Considerations. P.S. We have a re-vamped version of Composite Encryption in the works, but we've been focusing on Key / Signatures because encryption in PKIX still needs certs first. --- Mike Ounsworth Software Security Architect, Entrust Any email and files/attachments transmitted with it are confidential and are intended solely for the use of the individual or entity to whom they are addressed. If this message has been sent to you in error, you must not copy, distribute or disclose of the information it contains. Please notify Entrust immediately and delete the message from your system.
- [lamps] Composite Keys and Signatures looking for… Mike Ounsworth