Re: [Suit] draft-ietf-suit-firmware-encryption: HPKE for COSE

Benjamin Kaduk <kaduk@mit.edu> Mon, 16 August 2021 16:44 UTC

Date: Mon, 16 Aug 2021 09:44:29 -0700
From: Benjamin Kaduk <kaduk@mit.edu>
To: Hannes Tschofenig <Hannes.Tschofenig@arm.com>
Cc: suit@ietf.org
Message-ID: <20210816164429.GD96301@kduck.mit.edu>
References: <DBBPR08MB5915A2D3ED245147B68AF7ABFAEF9@DBBPR08MB5915.eurprd08.prod.outlook.com>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <DBBPR08MB5915A2D3ED245147B68AF7ABFAEF9@DBBPR08MB5915.eurprd08.prod.outlook.com>
Archived-At: <https://mailarchive.ietf.org/arch/msg/suit/HQuB4VHTCCtTtH1rXpg7cqprJHg>
Subject: Re: [Suit] draft-ietf-suit-firmware-encryption: HPKE for COSE
Precedence: list

On Mon, Aug 02, 2021 at 03:08:44PM +0000, Hannes Tschofenig wrote:
> Hi all,
> 
> Currently we have newly introduced the use of HPKE for COSE in the firmware encryption draft.
> 
> HPKE could, however, be useful for other applications using COSE as well.
> 
> So, the question is: Should the HPKE functionality be defined separately for use with COSE or be defined specifically for use with firmware encryption only?
> 
> The answer to this question is a bit speculative because we have to guess whether HPKE will be useful for other applications using COSE. Currently, HPKE is used in various IETF protocols (MLS, TLS Encrypted ClientHello, Privacypass) but none of those applications utilize COSE.
> 
> Thoughts?

Chiming in super-late, but I agree with Russ about raising this with COSE.

-Ben

[Suit] draft-ietf-suit-firmware-encryption: HPKE … Hannes Tschofenig
Re: [Suit] draft-ietf-suit-firmware-encryption: H… Russ Housley
Re: [Suit] draft-ietf-suit-firmware-encryption: H… Benjamin Kaduk
Re: [Suit] draft-ietf-suit-firmware-encryption: H… Hannes Tschofenig