OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.

 


Help: OASIS Mailing Lists Help | MarkMail Help

pkcs11 message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]

Subject: FWD: *20/poly1305 as aead mechanism

hey, 

as per Chris' request:

On Fri, Jan 12, 2018 at 04:58:21PM -0500, Chris Zimman wrote:
> Any of this discussion belong on the PKCS11 TC mailing list.
> Can you please re-submit your questions/comments to pkcs11@lists.oasis-open.org ?

sure. done with this mail.

> On 1/12/18, 4:32 PM, "stef" <oasis@ctrlc.hu> wrote:
> 
>     Dear Chris,
>     
>     i'm new to the PKCS#11 TC, and i submitted an update:
>     https://www.oasis-open.org/apps/org/workgroup/pkcs11/document.php?document_id=62236
>     to your proposal:
>     https://www.oasis-open.org/apps/org/workgroup/pkcs11/document.php?document_id=58554
>     
>     in this weeks conf call my proposal was discussed:
>     https://wiki.oasis-open.org/pkcs11/Meetingminutes/Minutes10012018
>     Bob had a comment:
>     
>     > "Bob: ChaCha and Poly are currently two separate mechanisms. Stef notes
>     > ChaCha and Salsa can be used interchangeably, some apps use one or the
>     > other. Bob - we may want to look at the AES CCM/GCM to see if we could have
>     > a combined mechanisms. Stef agrees that it may be worth looking at in
>     > respect to AEAD manner. Stef will make sure he's following the AEAD
>     > proposal"
>     
>     which is correct, and i never heard of salsa/chacha being used without
>     poly1305. and i wondered, did you have any plans regarding this?
>     
>     don't you think it makes more sense to create mechanisms combining the
>     chacha/salsa stream ciphers with the poly1305 mac? so instead of what we have
>     now as mechanisms, we will have
>     
>     chacha20/poly1305
>     chacha20_ietf/poly1305
>     xchacha20/poly1305
>     xsalsa20/poly1305
>     salsa20/poly1305
>     
>     or did you have any other plans?
>     
>     most importantly the AEAD only works in a combination of these two, and indeed
>     the AEAD is necessary for achieving support of the signal protocol.
>     
>     thanks for any insights,
>     s
>     
>     ps: also cc-ing Bob, maybe he has some ideas/plans regarding this.
>     
>     
> 
> 
---end quoted text---

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]