Re: [Trans] Verifying inclusion proof
Matt Palmer <mpalmer@hezmatt.org> Tue, 30 June 2015 23:49 UTC
Return-Path: <mpalmer@hezmatt.org>
X-Original-To: trans@ietfa.amsl.com
Delivered-To: trans@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 414F21B2B93 for <trans@ietfa.amsl.com>; Tue, 30 Jun 2015 16:49:37 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.979
X-Spam-Level:
X-Spam-Status: No, score=-0.979 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HELO_MISMATCH_ORG=0.611, HOST_MISMATCH_COM=0.311, SPF_PASS=-0.001] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id yCwUuTH6qmmy for <trans@ietfa.amsl.com>; Tue, 30 Jun 2015 16:49:35 -0700 (PDT)
Received: from mail.hezmatt.org (erdhenne.tobermorytech.com [178.63.85.14]) by ietfa.amsl.com (Postfix) with ESMTP id 53FE51B2B78 for <trans@ietf.org>; Tue, 30 Jun 2015 16:49:35 -0700 (PDT)
Received: from mistress.home.hezmatt.org (eth1372.nsw.adsl.internode.on.net [150.101.203.91]) by mail.hezmatt.org (Postfix) with ESMTPSA id BE15568D41 for <trans@ietf.org>; Tue, 30 Jun 2015 23:49:32 +0000 (UTC)
Received: by mistress.home.hezmatt.org (Postfix, from userid 1000) id 410E79FE66; Wed, 1 Jul 2015 09:49:28 +1000 (AEST)
Date: Wed, 01 Jul 2015 09:49:28 +1000
From: Matt Palmer <mpalmer@hezmatt.org>
To: trans@ietf.org
Message-ID: <20150630234928.GB30545@hezmatt.org>
References: <558D61DE.8020402@nic.cz> <CACM=_OeTnNCk+VSiQ1E5T2_a7YkxwxZ2w8HJSg13wtVc2wQUfA@mail.gmail.com> <55900D1D.2030009@bbn.com> <CABrd9SQV6tybHwgo=ZATEPjhsV64=5=O-fi10pcwHnAHCyArDA@mail.gmail.com> <20150628220648.GI13302@hezmatt.org> <CABrd9SS7-dDYUhJkFe99YQ2EtdO6x10y=VOc4Qr6ERL+PZq0hQ@mail.gmail.com> <20150629230458.GX30545@hezmatt.org> <CABrd9SSwixBdaF38LS4zf6KSCOqk=VML1MBia+to=eBfPhcfkg@mail.gmail.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Disposition: inline
In-Reply-To: <CABrd9SSwixBdaF38LS4zf6KSCOqk=VML1MBia+to=eBfPhcfkg@mail.gmail.com>
User-Agent: Mutt/1.5.23 (2014-03-12)
Archived-At: <http://mailarchive.ietf.org/arch/msg/trans/C-oohSUgWe2IkXPsskhmvN6SuY4>
Subject: Re: [Trans] Verifying inclusion proof
X-BeenThere: trans@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Public Notary Transparency working group discussion list <trans.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/trans>, <mailto:trans-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/trans/>
List-Post: <mailto:trans@ietf.org>
List-Help: <mailto:trans-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/trans>, <mailto:trans-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 30 Jun 2015 23:49:37 -0000
On Tue, Jun 30, 2015 at 01:30:32PM +0100, Ben Laurie wrote: > On 30 June 2015 at 00:04, Matt Palmer <mpalmer@hezmatt.org> wrote: > > On Mon, Jun 29, 2015 at 12:29:47PM +0100, Ben Laurie wrote: > >> On 28 June 2015 at 23:06, Matt Palmer <mpalmer@hezmatt.org> wrote: > >> > On Sun, Jun 28, 2015 at 04:26:51PM +0100, Ben Laurie wrote: > >> >> On 28 June 2015 at 16:05, Stephen Kent <kent@bbn.com> wrote: > >> >> > IETF standards need to be unambiguous. Code is very helpful, but it is not a > >> >> > substitute > >> >> > for a rigorous description of how to resolve the issue that Onderj raised. > >> >> > >> >> Whilst I am not necessarily opposed to that, there has to be a point > >> >> at which you stop explaining what can be worked out given existing > >> >> information. The RFC does state how the hash is calculated, from which > >> >> it is clear what the placement of each node is in the hash > >> >> calculation. > >> > > >> > s/it is clear/it is possible to determine/ > >> > > >> > I would be in favour of more clarity around exactly how the inclusion proof > >> > is represented; I recall having significant trouble comprehending how > >> > inclusion proofs "worked", and ended up examining existing operational logs > >> > and using trial and error to determine how the inclusion proof was > >> > presented. > >> > >> Feel free to open a ticket. However, the mechanism for verifying > >> inclusion in a Merkle tree is widely available in standard texts, for > >> example 3.3 in http://www.emsec.rub.de/media/crypto/attachments/files/2011/04/becker_1.pdf. > > > > That document doesn't appear to be referenced in 6962bis, nor would it, I > > assume, answer the question "how is the inclusion proof represented in the > > response to get-sth-consistency". > > Fair enough. Do you have proposed text? Not at the present time. I'll add it to the todo list. - Matt
- [Trans] Verifying inclusion proof Ondrej Mikle
- Re: [Trans] Verifying inclusion proof Adam Eijdenberg
- Re: [Trans] Verifying inclusion proof Al Cutter
- Re: [Trans] Verifying inclusion proof Stephen Kent
- Re: [Trans] Verifying inclusion proof Ben Laurie
- Re: [Trans] Verifying inclusion proof Matt Palmer
- Re: [Trans] Verifying inclusion proof Ben Laurie
- Re: [Trans] Verifying inclusion proof Stephen Kent
- Re: [Trans] Verifying inclusion proof Phillip Hallam-Baker
- Re: [Trans] Verifying inclusion proof Matt Palmer
- Re: [Trans] Verifying inclusion proof Ben Laurie
- Re: [Trans] Verifying inclusion proof Ben Laurie
- Re: [Trans] Verifying inclusion proof Adam Eijdenberg
- Re: [Trans] Verifying inclusion proof Matt Palmer
- Re: [Trans] Verifying inclusion proof Adam Eijdenberg
- Re: [Trans] Verifying inclusion proof Adam Eijdenberg
- Re: [Trans] Verifying inclusion proof Ben Laurie
- Re: [Trans] Verifying inclusion proof Ondrej Mikle