[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: KMIP Spec References/Acronyms
Robert,
Here are some comments on the references/acronyms.
For acronyms (App D):
The ones in parentheses I'll leave to the editor (e.g., SP 800-67 refers
to ANSI X9.57 for 3DES). Also, I wasn't sure if I should include the
version #s in the PKCS#* references.
3DES - Three key Data Encryption Standard specified in
(SP 800-67 or ANSI X9.57)
ASN.1 - Abstract Syntax Notation One specified in ITU-T X.680-X.683
CRL - Certificate Revocation List specified in RFC 5280*
CRMF - Certificate Request Message Format as specified in RFC 4211
DER - Distinguished Encoding Rules specified in X.690*
DH - Diffie-Hellman specified in ANSI X9.42*
ECDH - Elliptic Curve Diffie-Hellman specified in
(SP 800-57 or ANSI X9.63)*
ECMQV - Elliptic Curve Menezes Qu Vanstone specified in
(SP 800-57 or ANSI X9.63)*
HMAC - Keyed-Hash Message Authentication Code**
HMAC-MD - HMAC with MD5 specified in RFC 2104
HMAC-SHA*** - HMAC with SHA-1, SHA-224, SHA-256, SHA-384, SHA-512
specified in FIPS 198, RFC 2104, and RFC 4868
MD2 - Message Digest 2 Algorithm specified in RFC 1319
MD4 - Message Digest 4 Algorithm specified in RFC 1320
MD5 - Message Digest 5 Algorithm specified in RFC 1321
PBKDF2 - Password-Based Key Derivation Function 2 specified in RFC 2898
PEM - Privacy Enhanced Mail specified in RFC 1421
PKCS#1 - RSA Cryptography Specifications Version 2.1 specified in RFC 3447
PKCS#5 - Password-Based Cryptography Specification Version 2 specified
in 2898
PKCS#8 - Private-Key Information Syntax Specification Version 1.2
specified in RFC 5208
PKCS#10 - Certification Request Syntax Specification Version 1.7
specified in RFC 2986
PGP - Pretty Good Privacy specified in (RFC 1991 or RFC 2440?)
SHA** - Secure Hash Algorithm as specified in FIPS 140-3
UTF-8*** - Universal Transformation Format 8-bit specified in RFC 3629
X.509 - Public Key Certificate specified in RFC 5280
(don't include the * in the above list)
* added specified in ....
** change from pointing to FIPS 198 (doesn't include HMAC-MD5)
*** removed the 1 (if we don't then should include them all 224, 256, etc.)
**** change from UTF to UTF-8
Should we add acronyms for all of algorithm modes (9.1.3.2.13), padding
methods (9.1.3.2.14), and role type enumerations (9.1.3.2.16)?
While S/MIME is near and dear to my heart, it can be removed from the
spec because it is not used.
For references:
Here are some suggested references that we need to add because they
either refer to an algorithm or are from the references. I'll leave it
to the editor to decide whether they are normative or not ;)
NIST FIPS: 140-3 (SHA)
186-3 (DSA/ECDSA)
197 (AES)
198 (HMAC)
NIST SP: NIST SP 800-38 A (for 3DES/AES ECB, CBC, CFB, OFB, CTR
from Sec 9.1.3.2.13)
NIST SP 800-38 B (for 3DES/AES CMAC from Sec 9.1.3.2.13)
NIST SP 800-38 C (for CCM from Sec 9.1.3.2.13)
NIST SP 800-38 D (for GCM from Sec 9.1.3.2.13)
NIST SP 800-38 E (for XTS from Sec 9.1.3.2.13 BUT it's draft)
ANSI: X9.24 (role type??)
X9.26 (pad)
X9.31 (pad)
X9.42 (DH)
X9.57 (3DES)
X9.62 (ECDSA)
X9.63 (ECDH/ECMQV)
X9.102 (for X9.102 *?? from Sec 9.1.3.2.13)
ANSI X9 TR-31 (role types???)
RFCs: 1319 (MD2)
1320 (MD4)
1321 (MD5)
1421 (PEM)
2104 (for HMAC-SHA1 and HMAC-MD5)
2898 (for PBKDF2 and PKCS#5 padding)
3394 (for NISTKeyWrap from Sec 9.1.3.2.13)
3447 (for pads OAEP, PSS, PCKS#1v1.5)
3629 (UTF8 - I'm not an expert on character sets so I'm not really
sure where to point)
4211 (CRMF)
4868 (for HMAC-SHA256->512)
5280 (X.509/certificate)
5649 (for AESKeyWrapPadding from Sec 9.1.3.2.13)
ISO: 10126 (for a padding method)
16609 (role types???)
9797-1 (role types???)
Not sure where to point for PCBC (used in Kerberos v4 but it isn't
published), CBC-MAC, or SSL3 pad.
spt
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]