Re: [Suit] Fwd: New Version Notification for draft-housley-suit-cose-hash-sig-03.txt
Tony Putman <Tony.Putman@dyson.com> Mon, 02 July 2018 16:36 UTC
Return-Path: <prvs=714a61a26=Tony.Putman@dyson.com>
X-Original-To: suit@ietfa.amsl.com
Delivered-To: suit@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id F3EE0130EDD for <suit@ietfa.amsl.com>; Mon, 2 Jul 2018 09:36:52 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.6
X-Spam-Level:
X-Spam-Status: No, score=-2.6 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id NPHsRDZ5Gf_7 for <suit@ietfa.amsl.com>; Mon, 2 Jul 2018 09:36:51 -0700 (PDT)
Received: from esa3.dyson.c3s2.iphmx.com (esa3.dyson.c3s2.iphmx.com [68.232.139.42]) (using TLSv1.2 with cipher RC4-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 6927C130ECA for <suit@ietf.org>; Mon, 2 Jul 2018 09:36:50 -0700 (PDT)
X-IronPort-SPF: SKIP
X-IronPort-AV: E=McAfee;i="5900,7806,8942"; a="34096438"
X-IronPort-AV: E=Sophos;i="5.51,299,1526338800"; d="scan'208";a="34096438"
Received: from unknown (HELO uk-dlp-smtp-01.dyson.global.corp) ([62.189.202.16]) by esa3.dyson.c3s2.iphmx.com with ESMTP; 02 Jul 2018 17:55:51 +0100
Received: from uk-dlp-smtp-01.dyson.global.corp (uk-dlp-smtp-01.dyson.global.corp [127.0.0.1]) by uk-dlp-smtp-01.dyson.global.corp (Service) with ESMTP id 19201FA1A; Mon, 2 Jul 2018 14:43:17 +0000 (GMT)
Received: from UK-MAL-CAS-01.dyson.global.corp (unknown [10.1.108.2]) by uk-dlp-smtp-01.dyson.global.corp (Service) with ESMTP id D19A4FA19; Mon, 2 Jul 2018 14:43:16 +0000 (GMT)
Received: from UK-MAL-OWA-02.dyson.global.corp (10.1.108.7) by UK-MAL-CAS-01.dyson.global.corp (10.1.108.2) with Microsoft SMTP Server (TLS) id 14.3.319.2; Mon, 2 Jul 2018 17:36:46 +0100
Received: from UK-MAL-MBOX-01.dyson.global.corp ([fe80::3975:cbc9:490b:523a]) by UK-MAL-OWA-02.dyson.global.corp ([fe80::f9b6:1719:a6d9:1eca%10]) with mapi id 14.03.0319.002; Mon, 2 Jul 2018 17:36:46 +0100
From: Tony Putman <Tony.Putman@dyson.com>
To: Russ Housley <housley@vigilsec.com>
CC: suit <suit@ietf.org>
Thread-Topic: [Suit] Fwd: New Version Notification for draft-housley-suit-cose-hash-sig-03.txt
Thread-Index: AQHUEWzL4YFl7eL2YE+FR60dtiJF9aR7p6wggABFuQCAACLyoP//+5uAgAAWl9A=
Date: Mon, 02 Jul 2018 16:36:46 +0000
Message-ID: <140080C241BAA1419B58F093108F9EDC1E3CD487@UK-MAL-MBOX-01.dyson.global.corp>
References: <153046889224.27492.15820564704742618394.idtracker@ietfa.amsl.com> <BA07CDB6-CF77-4D68-9B00-601B69380085@vigilsec.com> <140080C241BAA1419B58F093108F9EDC1E3CD29B@UK-MAL-MBOX-01.dyson.global.corp> <B9E594C9-8C61-4F61-A634-3F289F8A0064@vigilsec.com> <140080C241BAA1419B58F093108F9EDC1E3CD428@UK-MAL-MBOX-01.dyson.global.corp> <46953690-8BA5-476E-885F-8E8D850A0946@vigilsec.com>
In-Reply-To: <46953690-8BA5-476E-885F-8E8D850A0946@vigilsec.com>
Accept-Language: en-GB, en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [10.1.108.27]
Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0
Content-Transfer-Encoding: quoted-printable
Archived-At: <https://mailarchive.ietf.org/arch/msg/suit/ChBOUehXs4a3mWnksMp2dM9HxMQ>
Subject: Re: [Suit] Fwd: New Version Notification for draft-housley-suit-cose-hash-sig-03.txt
X-BeenThere: suit@ietf.org
X-Mailman-Version: 2.1.26
Precedence: list
List-Id: Software Updates for Internet of Things <suit.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/suit>, <mailto:suit-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/suit/>
List-Post: <mailto:suit@ietf.org>
List-Help: <mailto:suit-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/suit>, <mailto:suit-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 02 Jul 2018 16:36:53 -0000
Sounds good to me. The "and" after the first comma seems odd to me, but that's an editorial nit.
-- Tony
-----Original Message-----
From: Suit [mailto:suit-bounces@ietf.org] On Behalf Of Russ Housley
Sent: 02 July 2018 17:15
To: Tony Putman
Cc: suit
Subject: Re: [Suit] Fwd: New Version Notification for draft-housley-suit-cose-hash-sig-03.txt
I think I understand now.
How about:
o If the 'kid' field is present, and it MAY be used to identify
the top of the HSS tree. In [HASHSIG], this identifier is
called 'I', and it is the 16-byte identifier of the LMS
public key for the tree.
Russ
> On Jul 2, 2018, at 11:59 AM, Tony Putman <Tony.Putman@dyson.com> wrote:
>
> Russ,
>
> You say:
>> I think the kid would identify a tree, not a node in the tree. The signature value itself contains the information necessary to locate the node within the tree.
>
> Which I fully agree with, so I guess my text was off. How about:
> "If the 'kid' field is present, then it MAY contain the identity of the top-level HSS tree. This is called 'I' in [HASHSIG] and is contained in the public key which corresponds to this tree."
>
> Without this hint, the verifier would potentially have to try the verification step for each of the trust anchors that it knows of (though only as far as verifying the next public key in the chain); there is no direct way to obtain 'I' from the signature and it is a parameter in the verification process. 'I' is present in the public key, but you're right that it's not the identity of the key, but rather the identity of the tree as a whole.
>
> Tony
>
> Dyson Technology Limited, company number 01959090, Tetbury Hill, Malmesbury, SN16 0RP, UK.
> This message is intended solely for the addressee and may contain confidential information. If you have received this message in error, please immediately and permanently delete it, and do not use, copy or disclose the information contained in this message or in any attachment.
> Dyson may monitor email traffic data and content for security & training.
>
_______________________________________________
Suit mailing list
Suit@ietf.org
https://www.ietf.org/mailman/listinfo/suit
Dyson Technology Limited, company number 01959090, Tetbury Hill, Malmesbury, SN16 0RP, UK.
This message is intended solely for the addressee and may contain confidential information. If you have received this message in error, please immediately and permanently delete it, and do not use, copy or disclose the information contained in this message or in any attachment.
Dyson may monitor email traffic data and content for security & training.
- [Suit] Fwd: New Version Notification for draft-ho… Russ Housley
- Re: [Suit] Fwd: New Version Notification for draf… Tony Putman
- Re: [Suit] Fwd: New Version Notification for draf… Russ Housley
- Re: [Suit] Fwd: New Version Notification for draf… Russ Housley
- Re: [Suit] Fwd: New Version Notification for draf… Tony Putman
- Re: [Suit] Fwd: New Version Notification for draf… Tony Putman