RE: [pkcs11] Groups - EdDSA Using Additional Key Types uploaded uploaded

[Johnson Darren <darren.johnson@gemalto.com>]

Hi Dieter,

Thanks for the comments.  Sorry for not providing any feedback sooner.

Here are some quick responses.  We can discuss them more on the call or offline.

 

U1: I agree and thanks for the updates.

 

U2:  I would prefer not to add a new choice as that would further confuse and complicate things.  My preference would be to either adopt an existing OID, or possibly define our own under OASIS.  The problem now is that there are many OIDs for these curves and algorithms defined by many different entities (gnupg, pkix, cryptlib…etc) in very inconsistent ways.  Some of them are documented as being specific for the curve parameters, while others are more specific to the curve+algorithm combination.  I would prefer to try and align with at least one of them, however it really is a mess out there.

Whether we select existing one, or define our own, I think we would still need to document that many OIDs exist and vendors will most likely support more than one OID.

 

U3: I agree.  Given that we are specifically referencing an RFC, it would be safe to move that detail to the PKCS#11 document.  This would be good as encoding is something that is often debated.

 

From: Dieter Bong [mailto:Dieter.Bong@utimaco.com]
Sent: Friday, November 24, 2017 3:51 AM
To: Johnson Darren <darren.johnson@gemalto.com>; pkcs11@lists.oasis-open.org
Subject: RE: [pkcs11] Groups - EdDSA Using Additional Key Types uploaded uploaded

 

Hi Darren,

 

Really good proposal.

 

I have included comments, and fixed a few typos, in the attached document. We mainly see one remaining issue w.r.t. curve naming (comment U2 in the document).

 

Thanks,

Dieter

 

From: pkcs11@lists.oasis-open.org [mailto:pkcs11@lists.oasis-open.org] On Behalf Of Darren Johnson
Sent: Mittwoch, 15. November 2017 21:57
To: pkcs11@lists.oasis-open.org
Subject: [pkcs11] Groups - EdDSA Using Additional Key Types uploaded uploaded

 

Submitter's message
This is an updated version of proposal #3, "EdDSA Using Additional Key Types" uploaded.

-- Mr. Darren Johnson

Document Name: EdDSA Using Additional Key Types uploaded

---

Description
This is an updated version of proposal #3, "EdDSA Using Additional Key
Types" uploaded.
Download Latest Revision
Public Download Link

---

Submitter: Mr. Darren Johnson
Group: OASIS PKCS 11 TC
Folder: Documents
Date submitted: 2017-11-15 12:56:20

 

 

---

Utimaco IS GmbH
Germanusstr. 4, D.52080 Aachen, Germany, Tel: +49-241-1696-0, www.utimaco.com
Seat: Aachen – Registergericht Aachen HRB 18922
VAT ID No.: DE 815 496 496
Managementboard: Malte Pollmann (Chairman) CEO, Dr. Frank J. Nellissen CFO

This communication is confidential. We only send and receive email on the basis of the terms set out at https://www.utimaco.com/en/e-mail-disclaimer/

---

This message and any attachments are intended solely for the addressees and may contain confidential information. Any unauthorized use or disclosure, either whole or partial, is prohibited.
E-mails are susceptible to alteration. Our company shall not be liable for the message if altered, changed or falsified. If you are not the intended recipient of this message, please delete it and notify the sender.
Although all reasonable efforts have been made to keep this transmission free from viruses, the sender will not be liable for damages caused by a transmitted virus.