[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [CGA-EXT] draft-kukec-csi-hash-threat: changes between version -01 and version -02
Thanks Ana. Folks, given that the adoption call was justified by version -01, it is even more the case with
version -02.
Let's just continue the adoption call with this -02 version.
----- Original Message ----
> From: Ana Kukec <anchie at fer.hr>
> To: cga-ext at ietf.org
> Sent: Tuesday, July 1, 2008 1:53:11 PM
> Subject: [CGA-EXT] draft-kukec-csi-hash-threat: changes between version -01 and version -02
>
> Hi all,
>
> Since the adoption call was made for draft-kukec-csi-hash-threat-01
> which is not available in repositories (new version (-02) has been
> submitted), below is the quick summary of changes between version -01
> and -02.
>
> --
> The following sections has been changed:
> - Section 1. Introduction: The text about two new references has been
> introduced, related to sha1 collisions (paper "Finding Collisions in the
> Full SHA-1", CRYPTO 2005) and collisions in X.509 certificates (paper
> "Chosen-Prefix Collisions for MD5 and Colliding X.509 Certificates for
> Different Identities", EUROCRYPT 2007: 1-22).
>
> - Section 3.2. Attacks against PKIX certificates in ADD process: The
> text about threats caused by the X.509 colliding certificates with the
> same identity and signature, but different public key has been introduced.
>
> - Section 4.1 Hash algorithm option: The structure of the hash algorithm
> option haFrom cga-ext-bounces at ietf.org Tue Jul 1 15:06:44 2008
Return-Path: <cga-ext-bounces at ietf.org>
X-Original-To: cga-ext-web-archive at optimus.ietf.org
Delivered-To: ietfarch-cga-ext-web-archive at core3.amsl.com
Received: from [127.0.0.1] (localhost [127.0.0.1])
by core3.amsl.com (Postfix) with ESMTP id BC7AA3A6BDB;
Tue, 1 Jul 2008 15:06:44 -0700 (PDT)
X-Original-To: cga-ext at core3.amsl.com
Delivered-To: cga-ext at core3.amsl.com
Received: from localhost (localhost [127.0.0.1])
by core3.amsl.com (Postfix) with ESMTP id A2DBF3A67A5
for <cga-ext at core3.amsl.com>; Tue, 1 Jul 2008 15:06:43 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.799
X-Spam-Level:
X-Spam-Status: No, score=-3.799 tagged_above=-999 required=5
tests=[AWL=-1.200, BAYES_00=-2.599]
Received: from mail.ietf.org ([64.170.98.32])
by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024)
with ESMTP id 8uPVueuJ9t1P for <cga-ext at core3.amsl.com>;
Tue, 1 Jul 2008 15:06:39 -0700 (PDT)
Received: from web81907.mail.mud.yahoo.com (web81907.mail.mud.yahoo.com
[68.142.207.186])
by core3.amsl.com (Postfix) with SMTP id 5656C3A6BDF
for <cga-ext at ietf.org>; Tue, 1 Jul 2008 15:06:37 -0700 (PDT)
Received: (qmail 23020 invoked by uid 60001); 1 Jul 2008 22:06:47 -0000
DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=s1024; d=yahoo.com;
h=Received:X-Mailer:Date:From:Subject:To:MIME-Version:Content-Type:Message-ID;
b=L+0TXWtq0pl+n9zNoHclnekML+5veDFitUZZf/PeeWdoET6YPJ/bonepeE/btxSo3QbknSn668TIQo9YuLWGL9xbyDA5bZt/7iBxWI2Bhx7xOKVG5PC0ZY7s/CEiPUefOzflhqA1BV+/H9cA+LBif94BfFJyWJkbl5VbG5QyrTo=;
Received: from [131.107.0.103] by web81907.mail.mud.yahoo.com via HTTP;
Tue, 01 Jul 2008 15:06:47 PDT
X-Mailer: YahooMailRC/975.45 YahooMailWebService/0.7.199
Date: Tue, 1 Jul 2008 15:06:47 -0700 (PDT)
From: gabriel montenegro <g_e_montenegro at yahoo.com>
To: Ana Kukec <anchie at fer.hr>, cga-ext at ietf.org
MIME-Version: 1.0
Message-ID: <314056.22655.qm at web81907.mail.mud.yahoo.com>
Subject: Re: [CGA-EXT] draft-kukec-csi-hash-threat: changes between version
-01 and version -02
X-BeenThere: cga-ext at ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: CGA and SeND Extensions <cga-ext.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/cga-ext>,
<mailto:cga-ext-request at ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/pipermail/cga-ext>
List-Post: <mailto:cga-ext at ietf.org>
List-Help: <mailto:cga-ext-request at ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/cga-ext>,
<mailto:cga-ext-request at ietf.org?subject=subscribe>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Sender: cga-ext-bounces at ietf.org
Errors-To: cga-ext-bounces at ietf.org
Thanks Ana. Folks, given that the adoption call was justified by version -01, it is even more the case with
version -02.
Let's just continue the adoption call with this -02 version.
----- Original Message ----
> From: Ana Kukec <anchie at fer.hr>
> To: cga-ext at ietf.org
> Sent: Tuesday, July 1, 2008 1:53:11 PM
> Subject: [CGA-EXT] draft-kukec-csi-hash-threat: changes between version -01 and version -02
>
> Hi all,
>
> Since the adoption call was made for draft-kukec-csi-hash-threat-01
> which is not available in repositories (new version (-02) has been
> submitted), below is the quick summary of changes between version -01
> and -02.
>
> --
> The following sections has been changed:
> - Section 1. Introduction: The text about two new references has been
> introduced, related to sha1 collisions (paper "Finding Collisions in the
> Full SHA-1", CRYPTO 2005) and collisions in X.509 certificates (paper
> "Chosen-Prefix Collisions for MD5 and Colliding X.509 Certificates for
> Different Identities", EUROCRYPT 2007: 1-22).
>
> - Section 3.2. Attacks against PKIX certificates in ADD process: The
> text about threats caused by the X.509 colliding certificates with the
> same identity and signature, but different public key has been introduced.
>
> - Section 4.1 Hash algorithm option: The structure of the hash algorithm
> os been changed (each field is 8-bit sized, reserved field is
> moved to after relevant fields (HA-KH, HA-DS, DS)).
>
> - Section 6. IANA Considerations: The numeric values for HA-KH, HA-DS
> and DS fields have been changed to TBD. The hash algorithm option has
> been changed to TBA.
>
> - Section 7. References: New references added, related to sha1
> collisions (paper "Finding Collisions in the Full SHA-1", CRYPTO 2005)
> and collisions in X.509 certificates (paper "Chosen-Prefix Collisions
> for MD5 and Colliding X.509 Certificates for Different Identities",
> EUROCRYPT 2007: 1-22).
>
> --
>
> Sorry for the confusion,
> Ana
>
> _______________________________________________
> CGA-EXT mailing list
> CGA-EXT at ietf.org
> https://www.ietf.org/mailman/listinfo/cga-ext
_______________________________________________
CGA-EXT mailing list
CGA-EXT at ietf.org
https://www.ietf.org/mailman/listinfo/cga-ext
ption has been changed (each field is 8-bit sized, reserved field is
> moved to after relevant fields (HA-KH, HA-DS, DS)).
>
> - Section 6. IANA Considerations: The numeric values for HA-KH, HA-DS
> and DS fields have been changed to TBD. The hash algorithm option has
> been changed to TBA.
>
> - Section 7. References: New references added, related to sha1
> collisions (paper "Finding Collisions in the Full SHA-1", CRYPTO 2005)
> and collisions in X.509 certificates (paper "Chosen-Prefix Collisions
> for MD5 and Colliding X.509 Certificates for Different Identities",
> EUROCRYPT 2007: 1-22).
>
> --
>
> Sorry for the confusion,
> Ana
>
> _______________________________________________
> CGA-EXT mailing list
> CGA-EXT at ietf.org
> https://www.ietf.org/mailman/listinfo/cga-ext
_______________________________________________
CGA-EXT mailing list
CGA-EXT at ietf.org
https://www.ietf.org/mailman/listinfo/cga-ext