Re: [TLS] Strawman on EdDSA/Ed25519 in TLS

Rob Stradling <rob.stradling@comodo.com> Mon, 01 June 2015 11:26 UTC

Return-Path: <rob.stradling@comodo.com>
X-Original-To: tls@ietfa.amsl.com
Delivered-To: tls@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id DA2CC1A00F7 for <tls@ietfa.amsl.com>; Mon, 1 Jun 2015 04:26:10 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.3
X-Spam-Level:
X-Spam-Status: No, score=-1.3 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, J_CHICKENPOX_35=0.6] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id j4dWo8vJDh85 for <tls@ietfa.amsl.com>; Mon, 1 Jun 2015 04:26:08 -0700 (PDT)
Received: from mmextmx2.mcr.colo.comodoca.net (mmextmx2.mcr.colo.comodoca.net [IPv6:2a02:1788:402:c00::c0a8:9cd6]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 8F24F1A00F6 for <tls@ietf.org>; Mon, 1 Jun 2015 04:26:07 -0700 (PDT)
Received: (qmail 8974 invoked by uid 1004); 1 Jun 2015 11:26:05 -0000
Received: from ian.brad.office.comodo.net (HELO ian.brad.office.comodo.net) (192.168.0.202) by mmextmx2.mcr.colo.comodoca.net (qpsmtpd/0.84) with ESMTP; Mon, 01 Jun 2015 12:26:05 +0100
Received: (qmail 2751 invoked by uid 1000); 1 Jun 2015 11:26:00 -0000
Received: from Unknown (HELO [192.168.0.58]) (192.168.0.58) (smtp-auth username rob, mechanism plain) by ian.brad.office.comodo.net (qpsmtpd/0.40) with (AES128-SHA encrypted) ESMTPSA; Mon, 01 Jun 2015 12:26:00 +0100
Message-ID: <556C413D.10209@comodo.com>
Date: Mon, 01 Jun 2015 12:25:49 +0100
From: Rob Stradling <rob.stradling@comodo.com>
User-Agent: Mozilla/5.0 (X11; Linux i686; rv:31.0) Gecko/20100101 Thunderbird/31.7.0
MIME-Version: 1.0
To: Yoav Nir <ynir.ietf@gmail.com>, Simon Josefsson <simon@josefsson.org>, Peter Bowen <pzbowen@gmail.com>
References: <1432142087.2946.11.camel@josefsson.org> <20150520190727.GD19183@localhost> <CAK6vND8uKT9AamW6d43CM3FipGqkCnp6x0=HESUUTpdHdzaSLg@mail.gmail.com> <87lhg7w091.fsf@latte.josefsson.org> <556C2DC7.1050309@comodo.com> <EE711FDA-9D2C-4339-AD1C-DF1D59E4B540@gmail.com>
In-Reply-To: <EE711FDA-9D2C-4339-AD1C-DF1D59E4B540@gmail.com>
Content-Type: text/plain; charset=windows-1252; format=flowed
Content-Transfer-Encoding: 8bit
Archived-At: <http://mailarchive.ietf.org/arch/msg/tls/r2ZG96tkObeYc3GubJ2MAhxb48A>
Cc: "tls@ietf.org" <tls@ietf.org>
Subject: Re: [TLS] Strawman on EdDSA/Ed25519 in TLS
X-BeenThere: tls@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/tls/>
List-Post: <mailto:tls@ietf.org>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 01 Jun 2015 11:26:11 -0000

On 01/06/15 11:46, Yoav Nir wrote:
<snip>
>> "1.3.114 - Check Point's registered prefix"
>>
>> Yoav?
>
> That’s interesting. I’ll ask around.
<snip>

Thanks Yoav.


Another candidate to ask...

http://www.alvestrand.no/objectid/1.3.101.html
Thawte are a commercial CA (owned by Symantec these days), so I expect 
they'll want to use EdDSA for TLS server certs at some point.

101 could create some nice OID encodings for EC, Ed*, Ed25519 and Ed448. 
  :-D


$ echo "06032b6563" | xxd -r -ps | openssl asn1parse -inform der -i
     0:d=0  hl=2 l=   3 prim: OBJECT            :1.3.101.99
$ echo "06032b6563" | xxd -r -ps | xxd
0000000: 0603 2b65 63                             ..+ec

$ echo "06032b6564" | xxd -r -ps | openssl asn1parse -inform der -i
     0:d=0  hl=2 l=   3 prim: OBJECT            :1.3.101.100
$ echo "06032b6564" | xxd -r -ps | xxd
0000000: 0603 2b65 64                             ..+ed

$ echo "06032b6532" | xxd -r -ps | openssl asn1parse -inform der -i
     0:d=0  hl=2 l=   3 prim: OBJECT            :1.3.101.50
$ echo "06032b6532" | xxd -r -ps | xxd
0000000: 0603 2b65 32                             ..+e2

$ echo "06032b6534" | xxd -r -ps | openssl asn1parse -inform der -i
     0:d=0  hl=2 l=   3 prim: OBJECT            :1.3.101.52
$ echo "06032b6534" | xxd -r -ps | xxd
0000000: 0603 2b65 34                             ..+e4

-- 
Rob Stradling
Senior Research & Development Scientist
COMODO - Creating Trust Online
Office Tel: +44.(0)1274.730505
Office Fax: +44.(0)1274.730909
www.comodo.com

COMODO CA Limited, Registered in England No. 04058690
Registered Office:
   3rd Floor, 26 Office Village, Exchange Quay,
   Trafford Road, Salford, Manchester M5 3EQ

This e-mail and any files transmitted with it are confidential and 
intended solely for the use of the individual or entity to whom they are 
addressed.  If you have received this email in error please notify the 
sender by replying to the e-mail containing this attachment. Replies to 
this email may be monitored by COMODO for operational or business 
reasons. Whilst every endeavour is taken to ensure that e-mails are free 
from viruses, no liability can be accepted and the recipient is 
requested to use their own virus checking software.