Re: [stir] [Technical Errata Reported] RFC8224 (6499)
Marc Petit-Huguenin <marc@petit-huguenin.org> Wed, 31 March 2021 19:16 UTC
Return-Path: <marc@petit-huguenin.org>
X-Original-To: stir@ietfa.amsl.com
Delivered-To: stir@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 026513A3326 for <stir@ietfa.amsl.com>; Wed, 31 Mar 2021 12:16:05 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.901
X-Spam-Level:
X-Spam-Status: No, score=-1.901 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, NICE_REPLY_A=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id WLuYSLqiKXIj for <stir@ietfa.amsl.com>; Wed, 31 Mar 2021 12:16:00 -0700 (PDT)
Received: from implementers.org (implementers.org [92.243.22.217]) (using TLSv1.2 with cipher ADH-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 20FDC3A332B for <stir@ietf.org>; Wed, 31 Mar 2021 12:15:59 -0700 (PDT)
Received: from [IPv6:2601:648:8400:8e7d:d250:99ff:fedf:93cd] (unknown [IPv6:2601:648:8400:8e7d:d250:99ff:fedf:93cd]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "Marc Petit-Huguenin", Issuer "implementers.org" (verified OK)) by implementers.org (Postfix) with ESMTPS id 4A9FEAE255; Wed, 31 Mar 2021 21:15:53 +0200 (CEST)
To: Russ Housley <housley@vigilsec.com>, IETF STIR Mail List <stir@ietf.org>, "Murray S. Kucherawy" <superuser@gmail.com>, Francesca Palombini <francesca.palombini@ericsson.com>
Cc: Cullen Jennings <fluffy@cisco.com>, Eric Rescorla <ekr@rtfm.com>, Jon Peterson <jon.peterson@neustar.biz>, Chris Wendt <chris-ietf@chriswendt.net>, Robert Sparks <rjsparks@nostrum.com>
References: <20210327204839.06FA2F4076D@rfc-editor.org> <F39D942E-717B-4CE8-833C-F7D25CF6D600@vigilsec.com>
From: Marc Petit-Huguenin <marc@petit-huguenin.org>
Message-ID: <3c12bfe6-7ab1-3dbf-1821-1a4bf16640d4@petit-huguenin.org>
Date: Wed, 31 Mar 2021 12:15:51 -0700
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:78.0) Gecko/20100101 Thunderbird/78.9.0
MIME-Version: 1.0
In-Reply-To: <F39D942E-717B-4CE8-833C-F7D25CF6D600@vigilsec.com>
Content-Type: text/plain; charset="utf-8"; format="flowed"
Content-Language: en-US
Content-Transfer-Encoding: 8bit
Archived-At: <https://mailarchive.ietf.org/arch/msg/stir/ScnY0ex3xllY3ouT_gMXOFwwB5s>
Subject: Re: [stir] [Technical Errata Reported] RFC8224 (6499)
X-BeenThere: stir@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Secure Telephone Identity Revisited <stir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/stir>, <mailto:stir-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/stir/>
List-Post: <mailto:stir@ietf.org>
List-Help: <mailto:stir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/stir>, <mailto:stir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 31 Mar 2021 19:16:05 -0000
The errata may be incomplete. Section 4 says: "The signed-identity-digest contains a base64 encoding of a PASSporT [RFC8225]." I understand that as similar to what Cullen said, i.e. `base64(base64Url(header).base64url(payload).base64url(sig))`. I think the errata should change that to: "The signed-identity-digest contains a PASSporT which is encoded as specified in [RFC8225]." On 3/28/21 9:48 AM, Russ Housley wrote: > I think this errata should be approved. > > Russ > >> On Mar 27, 2021, at 4:48 PM, RFC Errata System <rfc-editor@rfc-editor.org> wrote: >> >> The following errata report has been submitted for RFC8224, >> "Authenticated Identity Management in the Session Initiation Protocol (SIP)". >> >> -------------------------------------- >> You may review the report below and at: >> https://www.rfc-editor.org/errata/eid6499 >> >> -------------------------------------- >> Type: Technical >> Reported by: Marc Petit-Huguenin <marc@petit-huguenin.org> >> >> Section: 4 >> >> Original Text >> ------------- >> Identity = "Identity" HCOLON signed-identity-digest SEMI >> ident-info *( SEMI ident-info-params ) >> signed-identity-digest = 1*(base64-char / ".") >> ident-info = "info" EQUAL ident-info-uri >> ident-info-uri = LAQUOT absoluteURI RAQUOT >> ident-info-params = ident-info-alg / ident-type / >> ident-info-extension >> ident-info-alg = "alg" EQUAL token >> ident-type = "ppt" EQUAL token >> ident-info-extension = generic-param >> >> base64-char = ALPHA / DIGIT / "/" / "+" >> >> >> Corrected Text >> -------------- >> Identity = "Identity" HCOLON signed-identity-digest SEMI >> ident-info *( SEMI ident-info-params ) >> signed-identity-digest = 1*(base64url-char / ".") >> ident-info = "info" EQUAL ident-info-uri >> ident-info-uri = LAQUOT absoluteURI RAQUOT >> ident-info-params = ident-info-alg / ident-type / >> ident-info-extension >> ident-info-alg = "alg" EQUAL token >> ident-type = "ppt" EQUAL token >> ident-info-extension = generic-param >> >> base64url-char = ALPHA / DIGIT / "-" / "_" >> >> >> Notes >> ----- >> RFC 8225 makes it clear that the encoding is BASE4URL, not the standard BASE64 encoding. >> >> Instructions: >> ------------- >> This erratum is currently posted as "Reported". If necessary, please >> use "Reply All" to discuss whether it should be verified or >> rejected. When a decision is reached, the verifying party >> can log in to change the status and edit the report, if necessary. >> >> -------------------------------------- >> RFC8224 (draft-ietf-stir-rfc4474bis-16) >> -------------------------------------- >> Title : Authenticated Identity Management in the Session Initiation Protocol (SIP) >> Publication Date : February 2018 >> Author(s) : J. Peterson, C. Jennings, E. Rescorla, C. Wendt >> Category : PROPOSED STANDARD >> Source : Secure Telephone Identity Revisited >> Area : Applications and Real-Time >> Stream : IETF >> Verifying Party : IESG >> >> _______________________________________________ >> stir mailing list >> stir@ietf.org >> https://www.ietf.org/mailman/listinfo/stir > > _______________________________________________ > stir mailing list > stir@ietf.org > https://www.ietf.org/mailman/listinfo/stir > -- Marc Petit-Huguenin Email: marc@petit-huguenin.org Blog: https://marc.petit-huguenin.org Profile: https://www.linkedin.com/in/petithug
- [stir] [Technical Errata Reported] RFC8224 (6499) RFC Errata System
- Re: [stir] [Technical Errata Reported] RFC8224 (6… Russ Housley
- Re: [stir] [Technical Errata Reported] RFC8224 (6… Cullen Jennings
- Re: [stir] [Technical Errata Reported] RFC8224 (6… Marc Petit-Huguenin
- Re: [stir] [Technical Errata Reported] RFC8224 (6… Chris Wendt
- Re: [stir] [Technical Errata Reported] RFC8224 (6… Marc Petit-Huguenin
- Re: [stir] [Technical Errata Reported] RFC8224 (6… Christer Holmberg
- Re: [stir] [Technical Errata Reported] RFC8224 (6… Cullen Jennings