| < draft-ietf-cose-hash-sig-05.txt | draft-ietf-cose-hash-sig-06.txt > | |||
|---|---|---|---|---|
| Network Working Group R. Housley | Network Working Group R. Housley | |||
| Internet-Draft Vigil Security | Internet-Draft Vigil Security | |||
| Intended status: Standards Track October 28, 2019 | Intended status: Standards Track November 01, 2019 | |||
| Expires: April 30, 2020 | Expires: May 4, 2020 | |||
| Use of the HSS/LMS Hash-based Signature Algorithm with CBOR Object | Use of the HSS/LMS Hash-based Signature Algorithm with CBOR Object | |||
| Signing and Encryption (COSE) | Signing and Encryption (COSE) | |||
| draft-ietf-cose-hash-sig-05 | draft-ietf-cose-hash-sig-06 | |||
| Abstract | Abstract | |||
| This document specifies the conventions for using the Hierarchical | This document specifies the conventions for using the Hierarchical | |||
| Signature System (HSS) / Leighton-Micali Signature (LMS) hash-based | Signature System (HSS) / Leighton-Micali Signature (LMS) hash-based | |||
| signature algorithm with the CBOR Object Signing and Encryption | signature algorithm with the CBOR Object Signing and Encryption | |||
| (COSE) syntax. The HSS/LMS algorithm is one form of hash-based | (COSE) syntax. The HSS/LMS algorithm is one form of hash-based | |||
| digital signature; it is described in RFC 8554. | digital signature; it is described in RFC 8554. | |||
| Status of This Memo | Status of This Memo | |||
| skipping to change at page 1, line 35 ¶ | skipping to change at page 1, line 35 ¶ | |||
| Internet-Drafts are working documents of the Internet Engineering | Internet-Drafts are working documents of the Internet Engineering | |||
| Task Force (IETF). Note that other groups may also distribute | Task Force (IETF). Note that other groups may also distribute | |||
| working documents as Internet-Drafts. The list of current Internet- | working documents as Internet-Drafts. The list of current Internet- | |||
| Drafts is at https://datatracker.ietf.org/drafts/current/. | Drafts is at https://datatracker.ietf.org/drafts/current/. | |||
| Internet-Drafts are draft documents valid for a maximum of six months | Internet-Drafts are draft documents valid for a maximum of six months | |||
| and may be updated, replaced, or obsoleted by other documents at any | and may be updated, replaced, or obsoleted by other documents at any | |||
| time. It is inappropriate to use Internet-Drafts as reference | time. It is inappropriate to use Internet-Drafts as reference | |||
| material or to cite them other than as "work in progress." | material or to cite them other than as "work in progress." | |||
| This Internet-Draft will expire on April 30, 2020. | This Internet-Draft will expire on May 4, 2020. | |||
| Copyright Notice | Copyright Notice | |||
| Copyright (c) 2019 IETF Trust and the persons identified as the | Copyright (c) 2019 IETF Trust and the persons identified as the | |||
| document authors. All rights reserved. | document authors. All rights reserved. | |||
| This document is subject to BCP 78 and the IETF Trust's Legal | This document is subject to BCP 78 and the IETF Trust's Legal | |||
| Provisions Relating to IETF Documents | Provisions Relating to IETF Documents | |||
| (https://trustee.ietf.org/license-info) in effect on the date of | (https://trustee.ietf.org/license-info) in effect on the date of | |||
| publication of this document. Please review these documents | publication of this document. Please review these documents | |||
| skipping to change at page 2, line 28 ¶ | skipping to change at page 2, line 28 ¶ | |||
| 4.1. Implementation Security Considerations . . . . . . . . . 7 | 4.1. Implementation Security Considerations . . . . . . . . . 7 | |||
| 5. Operational Considerations . . . . . . . . . . . . . . . . . 8 | 5. Operational Considerations . . . . . . . . . . . . . . . . . 8 | |||
| 6. IANA Considerations . . . . . . . . . . . . . . . . . . . . . 9 | 6. IANA Considerations . . . . . . . . . . . . . . . . . . . . . 9 | |||
| 6.1. COSE Algorithms Registry Entry . . . . . . . . . . . . . 9 | 6.1. COSE Algorithms Registry Entry . . . . . . . . . . . . . 9 | |||
| 6.2. COSE Key Types Registry Entry . . . . . . . . . . . . . . 9 | 6.2. COSE Key Types Registry Entry . . . . . . . . . . . . . . 9 | |||
| 7. References . . . . . . . . . . . . . . . . . . . . . . . . . 9 | 7. References . . . . . . . . . . . . . . . . . . . . . . . . . 9 | |||
| 7.1. Normative References . . . . . . . . . . . . . . . . . . 9 | 7.1. Normative References . . . . . . . . . . . . . . . . . . 9 | |||
| 7.2. Informative References . . . . . . . . . . . . . . . . . 10 | 7.2. Informative References . . . . . . . . . . . . . . . . . 10 | |||
| Appendix A. Examples . . . . . . . . . . . . . . . . . . . . . . 11 | Appendix A. Examples . . . . . . . . . . . . . . . . . . . . . . 11 | |||
| A.1. Example COSE Full Message Signature . . . . . . . . . . . 11 | A.1. Example COSE Full Message Signature . . . . . . . . . . . 11 | |||
| A.2. Example COSE_Sign0 Message . . . . . . . . . . . . . . . 16 | A.2. Example COSE_Sign0 Message . . . . . . . . . . . . . . . 13 | |||
| Appendix B. Acknowledgements . . . . . . . . . . . . . . . . . . 21 | Appendix B. Acknowledgements . . . . . . . . . . . . . . . . . . 15 | |||
| Author's Address . . . . . . . . . . . . . . . . . . . . . . . . 21 | Author's Address . . . . . . . . . . . . . . . . . . . . . . . . 15 | |||
| 1. Introduction | 1. Introduction | |||
| This document specifies the conventions for using the Hierarchical | This document specifies the conventions for using the Hierarchical | |||
| Signature System (HSS) / Leighton-Micali Signature (LMS) hash-based | Signature System (HSS) / Leighton-Micali Signature (LMS) hash-based | |||
| signature algorithm with with the CBOR Object Signing and Encryption | signature algorithm with with the CBOR Object Signing and Encryption | |||
| (COSE) [RFC8152] syntax. The LMS system provides a one-time digital | (COSE) [RFC8152] syntax. The LMS system provides a one-time digital | |||
| signature that is a variant of Merkle Tree Signatures (MTS). The HSS | signature that is a variant of Merkle Tree Signatures (MTS). The HSS | |||
| is built on top of the LMS system to efficiently scale for a larger | is built on top of the LMS system to efficiently scale for a larger | |||
| numbers of signatures. The HSS/LMS algorithm is one form of hash- | numbers of signatures. The HSS/LMS algorithm is one form of hash- | |||
| skipping to change at page 11, line 19 ¶ | skipping to change at page 11, line 19 ¶ | |||
| [RFC5280] Cooper, D., Santesson, S., Farrell, S., Boeyen, S., | [RFC5280] Cooper, D., Santesson, S., Farrell, S., Boeyen, S., | |||
| Housley, R., and W. Polk, "Internet X.509 Public Key | Housley, R., and W. Polk, "Internet X.509 Public Key | |||
| Infrastructure Certificate and Certificate Revocation List | Infrastructure Certificate and Certificate Revocation List | |||
| (CRL) Profile", RFC 5280, DOI 10.17487/RFC5280, May 2008, | (CRL) Profile", RFC 5280, DOI 10.17487/RFC5280, May 2008, | |||
| <https://www.rfc-editor.org/info/rfc5280>. | <https://www.rfc-editor.org/info/rfc5280>. | |||
| Appendix A. Examples | Appendix A. Examples | |||
| This appendix provides a non-normative example of a COSE full message | This appendix provides a non-normative example of a COSE full message | |||
| signature and an example of a COSE_Sign0 message. The display format | signature and an example of a COSE_Sign0 message. This section | |||
| includes "\" to indicate that the same field continues on the next | follows the formatting used in [RFC8152]. | |||
| line, and it includes "|" to separate items within a field. | ||||
| The programs that were used to generate the examples can be found at | The programs that were used to generate the examples can be found at | |||
| https://github.com/cose-wg/Examples. | https://github.com/cose-wg/Examples. | |||
| A.1. Example COSE Full Message Signature | A.1. Example COSE Full Message Signature | |||
| This section provides an example of a COSE full message signature. | This section provides an example of a COSE full message signature. | |||
| { | Size of binary file is 2560 bytes. | |||
| "title":"HSS LMS Hash based signature - hsssig-01", | ||||
| "input":{ | 98( | |||
| "plaintext":"This is the content.", | [ | |||
| "sign":{ | / protected / h'a10300' / { | |||
| "protected":{ | \ content type \ 3:0 | |||
| "ctyp":0 | } / , | |||
| }, | / unprotected / {}, | |||
| "signers":[ | / payload / 'This is the content.', | |||
| { | / signatures / [ | |||
| "key":{ | [ | |||
| "kty":"HSS-LMS", | / protected / h'a101382d' / { | |||
| "kid":"ItsBig", | \ alg \ 1:-46 \ HSS-LMS \ | |||
| "comment":"1 level key - LM_SHA256_MD32_H10 + \ | } / , | |||
| LMOTS_SHA256_N32_W4 ", | / unprotected / { | |||
| "public":"000000010000000600000003d08fabd4a20 \ | / kid / 4:'ItsBig' | |||
| 91ff0a8cb4ed834e7453432a58885cd9ba0431235 \ | }, | |||
| 466bff9651c6c92124404d45fa53cf161c28f1ad5a8e", | / signature / h'00000000000000010000000391291de76ce6e24d1e2a | |||
| "private":"1|6|3|558B8966C48AE9CB898B423C8344 \ | 9b60266519bc8ce889f814deb0fc00edd3129de3ab9b6bfa3bf47d007d844af7db74 | |||
| 3AAE014A72F1B1AB5CC85CF1D892903B5439|1|d0 \ | 9ea97215e82f456cbdd473812c6a042ae39539898752c89b60a276ec8a9feab900e2 | |||
| 8fabd4a2091ff0a8cb4ed834e74534" | 5bdfe0ab8e773aa1c36ae214d67c65bb68630450a5db2c7c6403b77f6a9bf4d30a02 | |||
| }, | 19db5cced884d7514f3cbd19220020bf3045b0e5c6955b32864f16f97da02f0cbfea | |||
| "unprotected":{ | 70458b07032e30b0342d75b8f3dc6871442e6384b10f559f5dc594a214924c48ccc3 | |||
| "kid":"ItsBig" | 37078665653fc740340428138b0fb5154f2f2cb291ad05ace7acae60031b2d09b2f4 | |||
| }, | 17712d1c01e34b165af2e070f5a521a85a5fb3dd2a6288947bcbd5e2265d3670bd61 | |||
| "protected":{ | 92eb2bf643964e2783d84aec343f8e3571e4fcf09cbeea94e80470aa7252d1c733a5 | |||
| "alg":"HSS-LMS" | 535907e66c7b9f0b88b159dc2a7370ee47f13e7e134d3d05e5f53fac640b784a9b0f | |||
| } | 183fe14217325626f487cc8d8cb9eaf0abb174ee0b7076cf39c45037cefdf3f1e61b | |||
| } | 5174581214c09870b72c39737ec4c46a96199b66cad2990bcbe5bb1abfde99107c7f | |||
| ] | 7289395bf2a433598ede0b1969f23db949afb5b4d33831dae6c641a6355f8f9bf16c | |||
| }, | dffc4bf86891b93a557c2152ac8a1de51c995344cc10cc4bc9ecfbb4e418bed0f334 | |||
| "rng_description":"Random value for signature", | af165339e6725dc4fc1e995521e1be8a566d59b57cd130903b42d07087d63646ef8f | |||
| "rng_stream":[ | c1e9e9071bb67a123fdec3f37638cdaf0f4bf3084074069171c17885b9431ad908d3 | |||
| "ACFC5C7377D45C969DF7D7289882A48C1A10E5C48B6E29DF5018D \ | 6a6f8a826256d2aa34f8aa0731a357c060db8e80fefd61b1c323890e640633b98d17 | |||
| 3E683E36BC5" | 5d4d6ebff800a71cfc864ec02837de9d0e079f0f400acafd56805cb273e631ba395d | |||
| ] | 23e86acf6eae63181a5afe1f0a361cbbd5fefeb7db0c95591ec3128e80dfbea9ca0f | |||
| }, | 89fc035d761c05d41e7a010892c42e8e2af62aa604f4e214c0bb08075481f9cc307a | |||
| "intermediates":{ | 555adf333b9424f209b89f161032e413b047ae5ab0aa15643bb4c643446d2c9829eb | |||
| "signers":[ | 256e7375ce9639047a24a44f4da446b7359556f3ab3484c56511c68a140dc0531f65 | |||
| { | 3105800d9f20990d4ebdc5ceea918d7ae95c0d7ec69a00d6a936b25fc19b9dfc5561 | |||
| "ToBeSign_hex":"85695369676E617475726543A103004AA10 \ | 400f046191136c367038d6a9d0e0ae30dcdc4733712cbd5a2aee35315eff5c1a7e08 | |||
| 1674853532D4C4D53405454686973206973207468652063 \ | 5b68c5cf0c64c495df2ca6f030db04480a2e11d4a0a0dbf29d9463d5b9e41e346e49 | |||
| 6F6E74656E742E" | c894d5e43993c834c4746309c886d6131f2f92155ca1160bac9660802a947b5aba94 | |||
| } | b35357d13fdf02d2aeabef568912f68ae5d3a60214f6d00c4dd9f0af09eb0bf961cd | |||
| 9f27251d46899c28d87080ba2ead3e8193f51a789706ec32aacee9f4b14eeca91a25 | ||||
| 2fe894b30dc3938abbbe7d217948cae79ce3adb4d7d7df6756f3099f2543ed3b522b | ||||
| acab257503c9e07fcd32cc32fa9aa17977ec05bc5fe0f5954d51f160f52d33f93166 | ||||
| af68aa90261b3f5ad273adacf2d0cb5b0c5402bfa62da67a52dcddfa463e72d2c005 | ||||
| f1ac0ea3cb62364ee3419333612e07bf685006137a592e2fcd58398265c4ff9e11e7 | ||||
| 0c2b79152e4604b4f94676e955bcff4dfc429a8a88728b95bfc2826e25ba6eab9cfb | ||||
| 066c9911693efff242f7b51c3cb88546143b8ab2142dd3c9bda55d16fe3084a86b74 | ||||
| 3f294dd9d0aa84f3ce3b083a5879a4762a756e9b41f4bdf8b71418073b0a0d4a9c13 | ||||
| 1882455ece23e50324c5feea217920b0f3109dcbdc81762e41b7ca271efac8e39cc2 | ||||
| 6ebe085abdbf6b314a38929799fb7feebee2e20b97056ed17ef3881e6e89330314dd | ||||
| 7e9c629c46dfdb925c7c5f5d243f159d964691745cd46579fd0696479e1c49cbd2af | ||||
| 879a2bce8576619cca7b6e516e6c94c1087441a81f11b9a83535b24ddc725a81a9d1 | ||||
| ff62da2804c8d84c6e382065574282ea1f23eaf648cfa9767afb098fd81654d76133 | ||||
| f5f39bcc762c9bc31f7f4665cc0efa929b5c05dedd76143c63dc7018ab130c108ea9 | ||||
| 01be32b9d911b66da13a1528c32a9694c899a772f8e1fe00c17eceb343e737d72cba | ||||
| 06cf5ddac9a4d3df7ef391cf6595a6d8c14b0d80f93023b1b3d4371239da98b67a1b | ||||
| 6a379422616282a16e8d1f97a130baf21e572bcca91abb760eac6957f9b1b05e49e2 | ||||
| d181874ac6dd160d1c717b73bd28ef55f08d47466d5aef754814c7e206fa9e2ec533 | ||||
| 85d14d52f7769d95ea50524ffb20dc7275b04d71d1967e3bbc6ed481f1fc5a15e78a | ||||
| 1fd967d96045625645dbd173cccdd97661e995ce47d6b3ead96ee6d006a5ce6f4c97 | ||||
| 77fe2e3f91bebe877cac8c6486dfce0315dc71bbb93879759b8981c5ff2e11deb809 | ||||
| abf4280ee93d1711e73645b410acb518538ce3d4bda1e355c988f068165668e99d6a | ||||
| 8de356b4b13298036ad05d526c4a5e2591612a477b7e86550adde128cd71ee651d44 | ||||
| 99699000a02979e42bbccf32c83b1eb0ff99aa4d352e20e0b3382422df2c2ed4ce90 | ||||
| c94cf1a359e92ef971dc6db06047a333c2ebe827eb6d5f2811fdbe0bf0f12bf2094e | ||||
| 0dcd8e418f3f691a60ceb0cefb6f45f47883d6b9f320950e91266740c6dbfad6b3cf | ||||
| e56de0aa6658b0dc893bb6e49e6294537a7878e86cfc8e6c150675db1a89d188ea6e | ||||
| fe7d88ff57b39b8610e392811ee097ca61c4841e0fbd346ed3ff6a5e412acb0d9f13 | ||||
| 022df2e7fdaa8e0face7366c8ffe6f446995b564fc3d59c70fecdb60a25e28650417 | ||||
| 157f43f3e72c3afc601509641cfd099a78130e1f7ba8333502ad4f036f46411a43d0 | ||||
| 35e2ca0ed0c346d9aac5df05196c95c38e6e52763ed896b6d02464a910dda6cca340 | ||||
| 24e3b9c3723d26e2886ad724dd56ea285e8e4b60beec924d55dd700c38877b74552f | ||||
| ea1f8741579b02061416131db390f628522885236b51f7aef23167d3a5fe5eadcd88 | ||||
| b0e99b2b6bc56b0dea4fb22146294766c28e5e7c834dbdcb6bfdd7bd8455252522ff | ||||
| 2e974f6fd3fda176749b7cdced5b9aba092b2982c89cb7d2b36348928c8f01170618 | ||||
| ecff14d9e0eed9d88d97e38bcf7a837f674be5243fc624c8afd3d105f462bfa939b8 | ||||
| 143a3a98f78fbb8c915e00bdbbf707b12c45784f4d1cb1426b583a0d5fbec1f5ea6d | ||||
| 0067c090168cb788e532aca770c7be366ec07e7808f1892b00000006ed1ce8c6e437 | ||||
| 918d43fba7bd9385694c41182703f6b7f704deedd9384ba6f8bc362c948646b3c984 | ||||
| 8803e6d9ba1f7d3967f709cddd35dc77d60356f0c36808900b491cb4ecbbabec128e | ||||
| 7c81a46e62a67b57640a0a78be1cbf7dd9d419a10cd8686d16621a80816bfdb5bdc5 | ||||
| 6211d72ca70b81f1117d129529a7570cf79cf52a7028a48538ecdd3b38d3d5d62d26 | ||||
| 246595c4fb73a525a5ed2c30524ebb1d8cc82e0c19bc4977c6898ff95fd3d310b0ba | ||||
| e71696cef93c6a552456bf96e9d075e383bb7543c675842bafbfc7cdb88483b3276c | ||||
| 29d4f0a341c2d406e40d4653b7e4d045851acf6a0a0ea9c710b805cced4635ee8c10 | ||||
| 7362f0fc8d80c14d0ac49c516703d26d14752f34c1c0d2c4247581c18c2cf4de48e9 | ||||
| ce949be7c888e9caebe4a415e291fd107d21dc1f084b1158208249f28f4f7c7e931b | ||||
| a7b3bd0d824a4570' | ||||
| ] | ] | |||
| }, | ] | |||
| "output":{ | ] | |||
| "cbor_diag":"98([h'A10300', {}, h'54686973206973207468652 \ | ) | |||
| 0636F6E74656E742E', [[h'A101674853532D4C4D53', \ | ||||
| {4: h'497473426967'}, h'00000000000000010000000391291 \ | ||||
| DE76CE6E24D1E2A9B60266519BC8CE889F814DEB0FC00EDD3129D \ | ||||
| E3AB9BFC0F5DA46923923AA3209BF9E1480AB78906D79D4C9280A \ | ||||
| DC6300C182CB33429CE0035FE3E2E4428770D22F85687A18AEE76 \ | ||||
| CDC2F8E8F40043B314A68E72F9F679F7E3A5A34594E7673EEB70E \ | ||||
| 840FBFFDA398EC59BF0236FDD34ACE319DC1EAD1BD22B0213A094 \ | ||||
| 6160F30168A6E193C57C32BB017C22529EC3760FF93358633D5A6 \ | ||||
| 9F7F0850BD720E72FF758B19D4E27D114B1E6321BFDF1859102E7 \ | ||||
| 23A3B1F1AE5BC53EC8732FF1B2C4D384137E8EEEC94804CB47C82 \ | ||||
| 3C0B01441E28B178E1F5A904CF7592AAACF820C97E7714B69FCA4 \ | ||||
| BABE97854B0C00A705CAE7BA9112D182C21BCE3F10EA70C324F46 \ | ||||
| 6749279610A3477B03E3622169438C27CD46FCAD769D010D0B13A \ | ||||
| 06F5CD00D93A2EEB2BB0E25BFFD2A08C8DDF0653518B7BFEDB3B4 \ | ||||
| 6EB56BDA75B0421DF87F7FD1F08808B58DD3647472D90F8F9459C \ | ||||
| 775BFF5930956EBD7BF4D5F6B26BC53196FF9B660949B23154B9C \ | ||||
| E7A0DF55E9083B42A90D82F8D1DE2F62770EBDCE42A4A50448854 \ | ||||
| 15C7BA81EFED2BCF8C1B6932215646E9EF160DDD79CA4DD6F4774 \ | ||||
| 85BB5B01AAD4DF4D6D45942B935C74D35BD340D9D83CBC8F8A719 \ | ||||
| D6BB5CE098091C8787E193C84CE386355C55807A17CE1BFF830D4 \ | ||||
| B87D63646EF8FC1E9E9071BB67A123FDEC3F37638CDAF0F4BF308 \ | ||||
| 4074069171C10C4670163B9626635ADE3BD6D7917D0B029C7D4B8 \ | ||||
| 8B005473B6FF3862FB491CD1E1F6069B306C4EF8AE4C7F83EB320 \ | ||||
| A20406AA7FFF84BFDD22AD876B4661ED5D38F35591625F1D53DC1 \ | ||||
| BD472D1B4D93E93DA31A8CD5CEA70B6DD7BCFA510E5BD31C1AA60 \ | ||||
| BD252071D689C9D9CC1EDFE8AA0235C654F758FC8936515AE3441 \ | ||||
| C3B9F2AFFA164AF2999C6994C54F0AC923F0E6ED8C48C6148234E \ | ||||
| ADB87ABEA3C935B3D9682E6D121506131E6928474327E1E47CE7C \ | ||||
| 9D9BD4C36E7A274664B21B1E6304CCD6111E53159775196AAC4D5 \ | ||||
| 9ED5FF553F4EC9597DF17873BB5E47827D83AA48BD22849D5A97C \ | ||||
| 93A106672BDEB52ED7B6D2C56CE32700513C0FC04F26549A6FC5C \ | ||||
| DBB5634C0BFBB6EF1FAADA66923D21BAB3BF62C6DD6D7DAAB67AB \ | ||||
| A8923C4CF1CC8ABB47F33DF12617C38A7B1DB13E6B2D6E23DFA59 \ | ||||
| F8E760966B7B17A5B492C6AE25920E8F697F7666D02222CD48852 \ | ||||
| 7DB55DAABD2F82D927BBB7EC06B833D4BBE08680A54B1E062D938 \ | ||||
| 8530B1F96696F712457AF44705400D8F443FAFB01D76FD6075D20 \ | ||||
| 845044ACCEA54DC4872A97C2DBCF0A9968001CB7C22F9D9387A76 \ | ||||
| 630FE4A825AA4054A3E5BA1486F5AD7B2A87FD4B248DCEE4E6EC1 \ | ||||
| A2B8A2D2BFB19A74CA3027338633B18865EB5A16997D2DD3BC441 \ | ||||
| 35E47220182BC1FB7445037C3524641CF69370D0627C04C43A14E \ | ||||
| 778BADCFD7961551A9FCB95A8D4162A94110BC703F5F49CB85322 \ | ||||
| CA9007322F2DBE55DC237FAED2FBF9C953EF9F5EBBDC0058BFD69 \ | ||||
| 475A87D32E4A9E5C266012B0CCE1E507AD10FC01D7E00FBF5556E \ | ||||
| A9DC716B812357F0BE844FD14C33C582E80EB1603D78C00A6E9F6 \ | ||||
| 7EB8981A04581122F3F0DDCF997F6F7CB637857C07DEC7353DA14 \ | ||||
| 03BAAFAC8DB374922198081D77F52DB3F8B6281471D53BB11C6DA \ | ||||
| 56DD733632021F584E207FD61222C4FFEFAA74214C7634B6171C9 \ | ||||
| 5905CA05D9A3A686A7BA541BFA59A76F9CB85F4A5272BC6209A41 \ | ||||
| CF83A22EF22074B2760118952B8282ACEF179B26C879D2C8B4238 \ | ||||
| 979E4BD512D8A5D20578810E134F254B4C1D22685B58537632259 \ | ||||
| BB6B4CC14FB6E6C94C1087441A81F11B9A83535B24DDC725A81A9 \ | ||||
| D1FF62DA2804C8D84C6E3837D97DEF03AA275D348E7C0AA4A46A3 \ | ||||
| 9EDDDD55C45513AB692BD7DEC0F0B142F3E7075CBEA436F3791AF \ | ||||
| 2C6E014F73C8A29464393BBB56ACE6A7048F1E444934125C9B5F7 \ | ||||
| 8A5AA130F238A441DBEC5EA73F61D00D059CB2A137D6F9EC27306 \ | ||||
| 8B2545549E525055CDE70F7C7C28FB4CADC251AE6FE3186DF1987 \ | ||||
| 0661831E95C76450146654A3D36184CFFAA1EFC684ACD21D2498E \ | ||||
| 298FD18E99D5C6AFAF5588CCDDC2475B9E8294677924FA8283094 \ | ||||
| 810F7DD9FEF57DFF359805725ED044AC13D1794D7949FE0EAFC42 \ | ||||
| 5933A7D788035C6C825A580EC3E26F7B3BE31FB98A7F67BCC6FF5 \ | ||||
| 1ABEA2A7D9FF6D898018B5FBEE74D892C8694101236E20991499D \ | ||||
| 0385A18B290BCF2938806D602E27800C21B2E38C65B987B10D360 \ | ||||
| B2C674EED6A6205F251A0E68B7D57060DE5E3F599BA197997EE49 \ | ||||
| DA7D6AB97119F03AF737CE914B004462AA07C61B15311BBA10FC5 \ | ||||
| BB68A2621E47BE3374222DFFDE29C7910418F6D9E4DD1B7B7A9B3 \ | ||||
| 600689019F188EA696B7951A10C15E9BD01A5160E1A571942E223 \ | ||||
| C6F29A70528E5CF7A52F1F60806A9FF729E76D69BFD315383F031 \ | ||||
| C3863650757F1EF75D474935147FBAA9A6DA0ABF7C5BCF4E05026 \ | ||||
| FD134AC20815A3A81A026213EA50FF1454F2399518DD359D49D9E \ | ||||
| 475DA432FFD4B953875FDB7A7EA7D04AC13D4102851D90BAB6527 \ | ||||
| 72527E85C485E863D9A1AC76BC0474D53FA5E6A77E64210788FBD \ | ||||
| EB5696C6DEEEDF18AAC2BC74FC861AB770175A032273E4D5D7366 \ | ||||
| C8FFE6F446995B564FC3D59C70FECDB60A25E28650417157F43F3 \ | ||||
| E72C3AFC2372EC9D0787CB37BFAC383648E7A168EAACCA7C55505 \ | ||||
| F93E9A09310320CB5184512F583F2FEA5853C36E6E43A6E6BE182 \ | ||||
| 185F04FE4B05170865618A51CF25542EADF473D5794295BDC86FC \ | ||||
| 6909D301E952346E32D69320D333BCA39B4FF8AF7E199BD55D919 \ | ||||
| 0F1FED4D3225274F03A1806E201ED2D040509FD7FA67C9CE6068E \ | ||||
| C54B56D53BF47E67B5B8B6382A0CB69A61D7FBC2DDEDA171D4F70 \ | ||||
| 14262FC77F454A3E68E6EFB7C31C4080024C8027FD8D6CE648B78 \ | ||||
| 2B56B762BEE5ADA237D018689B58902CBAC4E44C931416B47CD5E \ | ||||
| 20026D5B81B407A0E29CAAEC81F1C3528463132F00589A9F8021A \ | ||||
| 74109F8DBF81FE282C1F58BF3F2A52C560E38BFD68B2D28679CBC \ | ||||
| 089F2C9C3FC245FF5FA3ADA7F7973D9BD4BEC69B1F0C71416A6C4 \ | ||||
| F00000006ED1CE8C6E437918D43FBA7BD9385694C41182703F6B7 \ | ||||
| F704DEEDD9384BA6F8BC362C948646B3C9848803E6D9BA1F7D396 \ | ||||
| 7F709CDDD35DC77D60356F0C36808900B491CB4ECBBABEC128E7C \ | ||||
| 81A46E62A67B57640A0A78BE1CBF7DD9D419A10CD8686D16621A8 \ | ||||
| 0816BFDB5BDC56211D72CA70B81F1117D129529A7570CF79CF52A \ | ||||
| 7028A48538ECDD3B38D3D5D62D26246595C4FB73A525A5ED2C305 \ | ||||
| 24EBB1D8CC82E0C19BC4977C6898FF95FD3D310B0BAE71696CEF9 \ | ||||
| 3C6A552456BF96E9D075E383BB7543C675842BAFBFC7CDB88483B \ | ||||
| 3276C29D4F0A341C2D406E40D4653B7E4D045851ACF6A0A0EA9C7 \ | ||||
| 10B805CCED4635EE8C107362F0FC8D80C14D0AC49C516703D26D1 \ | ||||
| 4752F34C1C0D2C4247581C18C2CF4DE48E9CE949BE7C888E9CAEB \ | ||||
| E4A415E291FD107D21DC1F084B1158208249F28F4F7C7E931BA7B \ | ||||
| 3BD0D824A4570']]])", | ||||
| "cbor":"D8628443A10300A054546869732069732074686520636F6E7 \ | ||||
| 4656E742E81834AA101674853532D4C4D53A10446497473426967 \ | ||||
| 5909D000000000000000010000000391291DE76CE6E24D1E2A9B6 \ | ||||
| 0266519BC8CE889F814DEB0FC00EDD3129DE3AB9BFC0F5DA46923 \ | ||||
| 923AA3209BF9E1480AB78906D79D4C9280ADC6300C182CB33429C \ | ||||
| E0035FE3E2E4428770D22F85687A18AEE76CDC2F8E8F40043B314 \ | ||||
| A68E72F9F679F7E3A5A34594E7673EEB70E840FBFFDA398EC59BF \ | ||||
| 0236FDD34ACE319DC1EAD1BD22B0213A0946160F30168A6E193C5 \ | ||||
| 7C32BB017C22529EC3760FF93358633D5A69F7F0850BD720E72FF \ | ||||
| 758B19D4E27D114B1E6321BFDF1859102E723A3B1F1AE5BC53EC8 \ | ||||
| 732FF1B2C4D384137E8EEEC94804CB47C823C0B01441E28B178E1 \ | ||||
| F5A904CF7592AAACF820C97E7714B69FCA4BABE97854B0C00A705 \ | ||||
| CAE7BA9112D182C21BCE3F10EA70C324F466749279610A3477B03 \ | ||||
| E3622169438C27CD46FCAD769D010D0B13A06F5CD00D93A2EEB2B \ | ||||
| B0E25BFFD2A08C8DDF0653518B7BFEDB3B46EB56BDA75B0421DF8 \ | ||||
| 7F7FD1F08808B58DD3647472D90F8F9459C775BFF5930956EBD7B \ | ||||
| F4D5F6B26BC53196FF9B660949B23154B9CE7A0DF55E9083B42A9 \ | ||||
| 0D82F8D1DE2F62770EBDCE42A4A5044885415C7BA81EFED2BCF8C \ | ||||
| 1B6932215646E9EF160DDD79CA4DD6F477485BB5B01AAD4DF4D6D \ | ||||
| 45942B935C74D35BD340D9D83CBC8F8A719D6BB5CE098091C8787 \ | ||||
| E193C84CE386355C55807A17CE1BFF830D4B87D63646EF8FC1E9E \ | ||||
| 9071BB67A123FDEC3F37638CDAF0F4BF3084074069171C10C4670 \ | ||||
| 163B9626635ADE3BD6D7917D0B029C7D4B88B005473B6FF3862FB \ | ||||
| 491CD1E1F6069B306C4EF8AE4C7F83EB320A20406AA7FFF84BFDD \ | ||||
| 22AD876B4661ED5D38F35591625F1D53DC1BD472D1B4D93E93DA3 \ | ||||
| 1A8CD5CEA70B6DD7BCFA510E5BD31C1AA60BD252071D689C9D9CC \ | ||||
| 1EDFE8AA0235C654F758FC8936515AE3441C3B9F2AFFA164AF299 \ | ||||
| 9C6994C54F0AC923F0E6ED8C48C6148234EADB87ABEA3C935B3D9 \ | ||||
| 682E6D121506131E6928474327E1E47CE7C9D9BD4C36E7A274664 \ | ||||
| B21B1E6304CCD6111E53159775196AAC4D59ED5FF553F4EC9597D \ | ||||
| F17873BB5E47827D83AA48BD22849D5A97C93A106672BDEB52ED7 \ | ||||
| B6D2C56CE32700513C0FC04F26549A6FC5CDBB5634C0BFBB6EF1F \ | ||||
| AADA66923D21BAB3BF62C6DD6D7DAAB67ABA8923C4CF1CC8ABB47 \ | ||||
| F33DF12617C38A7B1DB13E6B2D6E23DFA59F8E760966B7B17A5B4 \ | ||||
| 92C6AE25920E8F697F7666D02222CD488527DB55DAABD2F82D927 \ | ||||
| BBB7EC06B833D4BBE08680A54B1E062D9388530B1F96696F71245 \ | ||||
| 7AF44705400D8F443FAFB01D76FD6075D20845044ACCEA54DC487 \ | ||||
| 2A97C2DBCF0A9968001CB7C22F9D9387A76630FE4A825AA4054A3 \ | ||||
| E5BA1486F5AD7B2A87FD4B248DCEE4E6EC1A2B8A2D2BFB19A74CA \ | ||||
| 3027338633B18865EB5A16997D2DD3BC44135E47220182BC1FB74 \ | ||||
| 45037C3524641CF69370D0627C04C43A14E778BADCFD7961551A9 \ | ||||
| FCB95A8D4162A94110BC703F5F49CB85322CA9007322F2DBE55DC \ | ||||
| 237FAED2FBF9C953EF9F5EBBDC0058BFD69475A87D32E4A9E5C26 \ | ||||
| 6012B0CCE1E507AD10FC01D7E00FBF5556EA9DC716B812357F0BE \ | ||||
| 844FD14C33C582E80EB1603D78C00A6E9F67EB8981A04581122F3 \ | ||||
| F0DDCF997F6F7CB637857C07DEC7353DA1403BAAFAC8DB3749221 \ | ||||
| 98081D77F52DB3F8B6281471D53BB11C6DA56DD733632021F584E \ | ||||
| 207FD61222C4FFEFAA74214C7634B6171C95905CA05D9A3A686A7 \ | ||||
| BA541BFA59A76F9CB85F4A5272BC6209A41CF83A22EF22074B276 \ | ||||
| 0118952B8282ACEF179B26C879D2C8B4238979E4BD512D8A5D205 \ | ||||
| 78810E134F254B4C1D22685B58537632259BB6B4CC14FB6E6C94C \ | ||||
| 1087441A81F11B9A83535B24DDC725A81A9D1FF62DA2804C8D84C \ | ||||
| 6E3837D97DEF03AA275D348E7C0AA4A46A39EDDDD55C45513AB69 \ | ||||
| 2BD7DEC0F0B142F3E7075CBEA436F3791AF2C6E014F73C8A29464 \ | ||||
| 393BBB56ACE6A7048F1E444934125C9B5F78A5AA130F238A441DB \ | ||||
| EC5EA73F61D00D059CB2A137D6F9EC273068B2545549E525055CD \ | ||||
| E70F7C7C28FB4CADC251AE6FE3186DF19870661831E95C7645014 \ | ||||
| 6654A3D36184CFFAA1EFC684ACD21D2498E298FD18E99D5C6AFAF \ | ||||
| 5588CCDDC2475B9E8294677924FA8283094810F7DD9FEF57DFF35 \ | ||||
| 9805725ED044AC13D1794D7949FE0EAFC425933A7D788035C6C82 \ | ||||
| 5A580EC3E26F7B3BE31FB98A7F67BCC6FF51ABEA2A7D9FF6D8980 \ | ||||
| 18B5FBEE74D892C8694101236E20991499D0385A18B290BCF2938 \ | ||||
| 806D602E27800C21B2E38C65B987B10D360B2C674EED6A6205F25 \ | ||||
| 1A0E68B7D57060DE5E3F599BA197997EE49DA7D6AB97119F03AF7 \ | ||||
| 37CE914B004462AA07C61B15311BBA10FC5BB68A2621E47BE3374 \ | ||||
| 222DFFDE29C7910418F6D9E4DD1B7B7A9B3600689019F188EA696 \ | ||||
| B7951A10C15E9BD01A5160E1A571942E223C6F29A70528E5CF7A5 \ | ||||
| 2F1F60806A9FF729E76D69BFD315383F031C3863650757F1EF75D \ | ||||
| 474935147FBAA9A6DA0ABF7C5BCF4E05026FD134AC20815A3A81A \ | ||||
| 026213EA50FF1454F2399518DD359D49D9E475DA432FFD4B95387 \ | ||||
| 5FDB7A7EA7D04AC13D4102851D90BAB652772527E85C485E863D9 \ | ||||
| A1AC76BC0474D53FA5E6A77E64210788FBDEB5696C6DEEEDF18AA \ | ||||
| C2BC74FC861AB770175A032273E4D5D7366C8FFE6F446995B564F \ | ||||
| C3D59C70FECDB60A25E28650417157F43F3E72C3AFC2372EC9D07 \ | ||||
| 87CB37BFAC383648E7A168EAACCA7C55505F93E9A09310320CB51 \ | ||||
| 84512F583F2FEA5853C36E6E43A6E6BE182185F04FE4B05170865 \ | ||||
| 618A51CF25542EADF473D5794295BDC86FC6909D301E952346E32 \ | ||||
| D69320D333BCA39B4FF8AF7E199BD55D9190F1FED4D3225274F03 \ | ||||
| A1806E201ED2D040509FD7FA67C9CE6068EC54B56D53BF47E67B5 \ | ||||
| B8B6382A0CB69A61D7FBC2DDEDA171D4F7014262FC77F454A3E68 \ | ||||
| E6EFB7C31C4080024C8027FD8D6CE648B782B56B762BEE5ADA237 \ | ||||
| D018689B58902CBAC4E44C931416B47CD5E20026D5B81B407A0E2 \ | ||||
| 9CAAEC81F1C3528463132F00589A9F8021A74109F8DBF81FE282C \ | ||||
| 1F58BF3F2A52C560E38BFD68B2D28679CBC089F2C9C3FC245FF5F \ | ||||
| A3ADA7F7973D9BD4BEC69B1F0C71416A6C4F00000006ED1CE8C6E \ | ||||
| 437918D43FBA7BD9385694C41182703F6B7F704DEEDD9384BA6F8 \ | ||||
| BC362C948646B3C9848803E6D9BA1F7D3967F709CDDD35DC77D60 \ | ||||
| 356F0C36808900B491CB4ECBBABEC128E7C81A46E62A67B57640A \ | ||||
| 0A78BE1CBF7DD9D419A10CD8686D16621A80816BFDB5BDC56211D \ | ||||
| 72CA70B81F1117D129529A7570CF79CF52A7028A48538ECDD3B38 \ | ||||
| D3D5D62D26246595C4FB73A525A5ED2C30524EBB1D8CC82E0C19B \ | ||||
| C4977C6898FF95FD3D310B0BAE71696CEF93C6A552456BF96E9D0 \ | ||||
| 75E383BB7543C675842BAFBFC7CDB88483B3276C29D4F0A341C2D \ | ||||
| 406E40D4653B7E4D045851ACF6A0A0EA9C710B805CCED4635EE8C \ | ||||
| 107362F0FC8D80C14D0AC49C516703D26D14752F34C1C0D2C4247 \ | ||||
| 581C18C2CF4DE48E9CE949BE7C888E9CAEBE4A415E291FD107D21 \ | ||||
| DC1F084B1158208249F28F4F7C7E931BA7B3BD0D824A4570" | ||||
| } | ||||
| } | ||||
| A.2. Example COSE_Sign0 Message | A.2. Example COSE_Sign0 Message | |||
| This section provides an example of a COSE_Sign0 message. | This section provides an example of a COSE_Sign0 message. | |||
| { | Size of binary file is 2552 bytes. | |||
| "title":"HSS LMS Hash based signature - hsssig-sig-01", | ||||
| "input":{ | 18( | |||
| "plaintext":"This is the content.", | [ | |||
| "sign0":{ | / protected / h'a101382d' / { | |||
| "key":{ | \ alg \ 1:-46 \ HSS-LMS \ | |||
| "kty":"HSS-LMS", | } / , | |||
| "kid":"ItsBig", | / unprotected / { | |||
| "comment":"1 level key - LM_SHA256_MD32_H10 + \ | / kid / 4:'ItsBig' | |||
| LMOTS_SHA256_N32_W4 ", | }, | |||
| "public":"000000010000000600000003d08fabd4a2091ff0a \ | / payload / 'This is the content.', | |||
| 8cb4ed834e7453432a58885cd9ba0431235466bff9651c6 \ | / signature / h'00000000000000000000000391291de76ce6e24d1e2a9b60 | |||
| c92124404d45fa53cf161c28f1ad5a8e", | 266519bc8ce889f814deb0fc00edd3129de3ab9b9aa5b5ac783bdf0fe689f57fb204 | |||
| "private":"1|6|3|558B8966C48AE9CB898B423C83443AAE01 \ | f1992dbc1ce2484f316c74bce3f2094cfa8e96a4a9548cead0f78ee5d549510d1910 | |||
| 4A72F1B1AB5CC85CF1D892903B5439|0|d08fabd4a2091f \ | f647320448ae27ecce77249802a0c39c645bf8db08573af52c93d91fd0e217f245c7 | |||
| f0a8cb4ed834e74534" | 52c176b81514eb6e3067e0fbb329225eaa88c7d21635e32ae84213f89018cb06f1b8 | |||
| }, | 4e61eac348b690d7c6265c19f9d868952d99826aecd417b5279dd674cd951c306016 | |||
| "unprotected":{ | cfee4fee3bfcf5ee5a5ad08b5b4f53bc93995f26cfe7c0c1c5ba2574c1f2d8470993 | |||
| "kid":"ItsBig" | e8bd47ef9b9cf309ef895226e92be60683459009611defbb9a43217956a0ab2959bb | |||
| }, | da0feca39de37e7c4a6cd8a5314d6b02b377406d5a5e589e91feaa9f2e4ec1682ba1 | |||
| "protected":{ | f633c7784499323e40da651f71d3c19e38c634d898b0c508324c0bfcf7c5f0a8c014 | |||
| "alg":"HSS-LMS" | b4af200a739f96cddba94daf86ce80c76158d4f5cf3cd2ba9f1393df47e556887f91 | |||
| }, | 68540485242a05ec6bcc76659ec3d0d2fedae3fd1608a701c226f5fd83c9b1ed3152 | |||
| "alg":"HSS-LMS" | ddac7426c30e3390bec8f1da6174abe8d3568c9b76b149eb077d61ac15b8fb11b8ce | |||
| }, | 5f9d14e448e216f375e1f96a52d39619459b131026143e8809bad408f5ef66cd3da2 | |||
| "rng_description":"Random value for signature", | 27431e68670c0b4b2c3801e1e9025b1ebed218e0956967158ccc274c704adcd8cc23 | |||
| "rng_stream":[ | c149a89eda25478742dadc15f233844535e4021000b5d557313d4f271875680e6d5e | |||
| "1D5112D38A1146402875B73BC8D4B59C845C6AE61D03A70ABAD09 \ | 7f6681fdd19f8b9a748cabb2377aac1387fdb80e618eb7d69a368729ca9a092af91e | |||
| 8AC05AD8297" | be1c584c35fe62734d1d53d10b35dd02093a201c889ad37a558b610f1ab00179a11f | |||
| ] | 881600e944cedc47a7ae6d828009d7c61ffea9dd5aa5406408e2e85dc056e47b5758 | |||
| }, | 9eaba18e792f4631af62d4588a1818167274273c69e7a0735be5dada7e224e3b178b | |||
| "intermediates":{ | 3b093212eb74e762f564a26d577aa22ebd8c7b4a999419908e2f2d9c8689dc923905 | |||
| "ToBeSign_hex":"846A5369676E6174757265314AA101674853532D4 \ | c198b9ee335d1e0de6d689655f446dffea997b6e58f5f648415233ede3b9d8a2db29 | |||
| C4D534054546869732069732074686520636F6E74656E742E" | e8c3dde5d8dbd55e6348cd9f421783db090e087de46425d62d513597b00d7de32fad | |||
| }, | 87752a79cee8b2a38b1e0f2562836721cbbfba20f131130c009a436b93a0bb44fcbb | |||
| "output":{ | 86228b1bf1a35f4fc626817924eaebd5b78d64a7970d18dade90cf0ad759b1c45d95 | |||
| "cbor_diag":"18([h'A101674853532D4C4D53', \ | 3c08cd1189685077c5a56069da0944669d797496f8f886fea6f792598db2ac66b657 | |||
| {4: h'497473426967'}, \ | af838ed3c3a914dffbb164170a1f63250b125eda53ecaeaf6ee0d2b8a3c804104d7e | |||
| h'546869732069732074686520636F6E74656E742E', \ | d575b66469bc59f37eec6c6f6fb19e0f7ea02d7c85306230063adb58950589f6ffaf | |||
| h'00000000000000000000000391291DE76CE6E24D1E2A9B60266 \ | f1407233828ae0dfbe5889e5de00bb640a4bc24c3f704488fa669676a9ebbbed399b | |||
| 519BC8CE889F814DEB0FC00EDD3129DE3AB9BA6814A4BEE84E5E8 \ | 8a9ac0ee4cc944f864b21f642e04f610319ac9271f8bd820e77e41dac6553d234d94 | |||
| 38C7725F78FE0610837A548F92802DA610AFB0ADFB133123061C0 \ | 80e26142c0fa37416651d6450e1f2082bd0213d6783e1ae3cc5c5af677c3316e173b | |||
| 23E87A7802C17B00740F25737A775B95E923905B6F0CA02A87095 \ | a4716d6bc8a9d89383f8b025a0859b99a43daeaf8ddaed46d223b9b503651a67560b | |||
| 5420A68003133A1EA12083E134238DFE5F1633E159CFD207BC79B \ | feb2f35ba544722620ec4086dcc77e6e87bb53f1f18c38368662be460ede31325cae | |||
| 50DD39BA39FCAAA75C12F7F1B493AB8736162E42C2C2F9159DF33 \ | aebf018a6fa9d32e3c3a6898e15fe114dcce51241c61afabc36de3608b4d342712a8 | |||
| 32C399A50BB8404F2CB6D98DAA4C3DF82A197CFE014BEC27CC820 \ | 33615c6131e89e1d46b713d9638a08b5a768d53af0298b9c874ded7084358223840c | |||
| A5B26BAC5DFE05947E3A7D92070A4653C67BA095AB0499AF655B8 \ | 2e78cd6fbfca695279a4c1883bb7de81b04a069de8277f7f5109c16938347a643713 | |||
| 1B719912E296765FA46CB0AD2ED56BBCF00CA6FB9C16D8C05C1C1 \ | c9ac36fffc8bf141e899f48bc25c7b636d43bebcfa7742d4e1462263e56732ad2021 | |||
| 65FED054A099A3DA89F9CB951C6ED366DF38E299C7E7DC9AC9C43 \ | eef8ce84023c4959cfd250343d62074724907de9d49ea2f6c968fd9e9bf28feafcdc | |||
| 66F328407E7C4A6CD8A5314D6B02B377406D5A5E589E91FEAA9F2 \ | 81702108805dec60f2781272d2425a6ee29c66122d2c557867c1a5aed82131e06fc3 | |||
| E4EC1682BA1F633C7784B3038FAC2E77947916C8F4160CF6D9D0B \ | 84ecf49017e1c9d6cf63b9f2285ccf890cbb9bbf796e0fd02101948b7ef663849367 | |||
| 0BC6600CDBC4AE947DD5D317DCBA3D200A739F96CDDBA94DAF86C \ | 7b33fd787d9d3fc2c7cc7babc21af8c748afb80cf86b45dc89f0b9c7959621e85b98 | |||
| E80C76158D4F5CF3CD2BA9F1393DF47E556887F919E0718625D31 \ | b542dc263db9255273bb9054a7f194748f28373ba123d73fc71fef43e7e2ac9a8000 | |||
| 240E7FE9599012F757314C20893827194AD6555F1452E3A749CE2 \ | 8e85cf2f04aa433075dfc54c4de24a341ebf7cf1e6b383dbba85898fdc368017fd67 | |||
| 13DFBA283013DCFF196F9BD18D715B6E7451DE35B18181DF8A626 \ | c153e7a991a3a3cee6dae4fbe2fe6f25a8df314140a8176c8e6fd0c6f042ca66eb6a | |||
| DE1480F2DDECB126B477E019FFE75E4472EF4FA1B913C80821155 \ | bba9a2502bb6dfa52960ae86a942a673e4e45439594fefcd2974e20554d1dc70b8e0 | |||
| AAE0D7F3B1175B64CA076926166C80E8219D241791C1DE3C8F936 \ | 34fd1787801343d5f6edc95ce0348c25727c771526e3fd4effb5f16e25a1ea3dcd82 | |||
| 55085C0B00F840970367DAF2A41D462C696C74AF0C3591A6C6B4D \ | 82e778e91ae9b339a5013c77fd6ea2432704e293f5e82a24121c73900bea4b4ef14a | |||
| 701963819FFBDC945785D64CE687BA4D086A31FE6A5E1C74A6C0E \ | 2adc1ab3c68224bae1de9c61a48b84e84c1b0e83701be3d988012a24fa40268c8d6e | |||
| 25CF67CEA24DCDE0E47B5210670CC2D66003DF2232F4BA337D325 \ | f1fd2818ae8e4b6f52f89beab6bfdd1ff1b7ecd573edff3703b800b5b2a206f451f1 | |||
| 166381681FD4738997BB3EC1499E594B5CCE9FBC11C3136C20F15 \ | bf2713b4ae9085bd7fe34ad4306a290e4cdb7817ee9ab7ccfb816d002b619f77d46d | |||
| 6012A4DA062675627758DBF1BE635C876F81713D322EA127F6FFC \ | 7dd0f8eefe10f5c0f9723ffdb14ca75a185543770f41508b9983d5eed78225bc6e21 | |||
| 8880F42BA51879CC0EB27B8A0C21E434DA7C490BFE30BE1FAC3CA \ | f876bfdd08fe8bc63e0cb253c7dfc67c330897c515244f3f631682f2141eba48ca86 | |||
| A5CF97451FADF412ECA7BAD72E2553541224EB934A9C8A0034E1C \ | dfff9206f78edcb9dec4b2371aeddbe141ef96a10957e29a94747c4438fb30b14d37 | |||
| 59EA2D9EAFD66A72F1C43A07B70CBBC0AD844506E31C4CC84F395 \ | e7428eb7fbe4f9d870e72f35f55847f230374bdf56dcae6c129b4468ebaedc340ff4 | |||
| F28915239C8CB733787EE79704B8BA0CC667282984DFBD01BDC34 \ | cc160c6b410e2d8989488ac8ef9a9febbf65ad4fdfba532a8122ef82dc1a4ffc361c | |||
| ADF0E90A309986BE6AD95486E67754543999AEE160A7C6458992F \ | bf9f752b36aa9821683d5f3f5842f90134eb423d5cbc76858b4c0a7ba798ec94a089 | |||
| ABC338136D95FBC688E0F4F03D8F942875DF39E8D9EAA6B35FFA6 \ | fdb24b5b25f42d7b6bb8192f07b98eb2de1fe7bc8b6c740fa5cde6fb4890d2f17916 | |||
| C9C1097E5BEA8EADA90DAAC52FBE16A830EA49D550ABFFB64C824 \ | 64a96c25a0a71a541025b5ec825eed91f393505473e21d0620177993982e6c1b6bf9 | |||
| 4095992BAE73D970AE908CE9413A6EC52F98F593E138F3E6B7BAE \ | 1b777b5ab5739b84946c518c7e6aa0e689e9ad1d34e6ef6ca0e709c4aefecd6f2594 | |||
| A6657E03DF715516DD69342374D222F9A4D4B6579994DD01F4E7E \ | b017940742aceb72c5a52d7d47a3a74f9d09eb84cf82b349de32278a771cebc31ebc | |||
| C1C254C2A5EA109519C788FA1504B0273975C3E647820CFE5CDF4 \ | 580c09b11799b1f0e6d11d75b17e389d259c531f957a1e699250711df2e36f64f21c | |||
| D0D5A6C717C1795EB2BE37030EDEB3196D5866255B1FC10BD03B0 \ | 92eff698a392d92df0b2f91991408a076b83149e025a9ffba1ff1caed916a2fc1ac5 | |||
| 5FBDF59DBD87451877761BDEDD25D468D9409A054B1767BF70C41 \ | d3081c30b5c64b7d677c314b6e76ac20ed8bb4a4c0eb465ae5c0c265969264b27e6d | |||
| 61D416B01F472E4D0924FB9EF84A7EF027A4C3F6FDDD0018A827A \ | 54c266f79e58e2fa6a381069090bec00189562abcf831adc86a05a2fc7ffaa70dbd3 | |||
| B66017062F0F0709B271C1CB03557558F882C4FD89569E55E86D9 \ | fa60e09d447cd76b2ff2b851c38e72650ade093ba8bd000000067b95de445abf8916 | |||
| 834105F5E7468BA389305729F7FEB6BF2BE3F92BCA40917CC947A \ | 1dff4b91a4a9e3bf156a39a4660f98f06bf3f017686d9dfc362c948646b3c9848803 | |||
| 438B43D6A109535EEBFC06BAEE3A01C9E49D95E84ACDA572F47C4 \ | e6d9ba1f7d3967f709cddd35dc77d60356f0c36808900b491cb4ecbbabec128e7c81 | |||
| FECC648903154182BBF5222CD4F40622DBB6886A062FE52A59260 \ | a46e62a67b57640a0a78be1cbf7dd9d419a10cd8686d16621a80816bfdb5bdc56211 | |||
| EC8B61843622DA827B77BAFB0E0F7AA55E3E869BD7943C780F317 \ | d72ca70b81f1117d129529a7570cf79cf52a7028a48538ecdd3b38d3d5d62d262465 | |||
| 82241FE1D8B55C313A421875EFE40BD3B649087AE3A1A5942A51A \ | 95c4fb73a525a5ed2c30524ebb1d8cc82e0c19bc4977c6898ff95fd3d310b0bae716 | |||
| 7C182EDF686A9842A2F82E51ABE70826D5CA045F984472DB63784 \ | 96cef93c6a552456bf96e9d075e383bb7543c675842bafbfc7cdb88483b3276c29d4 | |||
| 194DC2C523889A95CA8C625B017BCA6CAC5175E87552EACBD8D3F \ | f0a341c2d406e40d4653b7e4d045851acf6a0a0ea9c710b805cced4635ee8c107362 | |||
| 5C281E4D4108F90E395088D50C528809C37788609A5734FFCE402 \ | f0fc8d80c14d0ac49c516703d26d14752f34c1c0d2c4247581c18c2cf4de48e9ce94 | |||
| 87270A3A6B04A069DE8277F7F5109C16938347A643713C9AC36FF \ | 9be7c888e9caebe4a415e291fd107d21dc1f084b1158208249f28f4f7c7e931ba7b3 | |||
| FC8BF141E899F48BC25C7B636D43BEBCFA7742D4E1462263E5673 \ | bd0d824a4570' | |||
| 2AD2021EEF8CE84023C4959CFD250348B23AE6DB317087F1F593F \ | ] | |||
| 768825A970E85C15306447892E72C8CF4461E3DF57E696AF1780A \ | ) | |||
| DA04F847F8FD3C42A802FC9BA38C696ED74FF8A300D171BBAE888 \ | ||||
| 8B226498CF63EBA035814557E3A552E0B5DA56DD90C1372D82386 \ | ||||
| 0D00CA4F242E8BF1FCA88BA71173DE185E6F1D1EF2BAE53D701D0 \ | ||||
| 3D4BF3B44F0842BED8126494A7FD2C7B1321A5527B78681B1D130 \ | ||||
| 62CE4DAE86C68DAB481551D857934250E6DBF99D37DA15735831C \ | ||||
| 2FA31DD2AB81FBF1F2DE8D890DF29A8CCD730431135E3A0D9C075 \ | ||||
| 860F9843B14BE9408714E96218D3642E5B0126BD8FF941757A512 \ | ||||
| CDCB4F6336D6FDC357C28E59484EDC9101AE78BBC6CB380E6E051 \ | ||||
| 6ECC48391FE9DA4519DF813CB680497BA65132954F11F857BDFF3 \ | ||||
| 644B7F54F59542BAE97EBC7270DECDD407989CAD427894922EDC1 \ | ||||
| BD22E5E1991E1B894A92F893268F66327084B09A945732EF82F27 \ | ||||
| 007D5DD0A08403E8E553EA7E20C1E23A567B850F8FE4D00417099 \ | ||||
| 5CE1FCC2284EACB197F001C9B0FF2FB67BC24C5774A935F96761F \ | ||||
| D52394AEDE47896E5204BD011F2697F9791953C0F265909019A90 \ | ||||
| 804A3A59A4D5A481020861ADC270845EBEE08D8C5C442A0ECBB5C \ | ||||
| 78D65E11A5CD71D520281A73C8EE741B4B1E2807E30BD9A2AD1DF \ | ||||
| E50FE3875F201926D87F732461E279FB774E97A93363527C13948 \ | ||||
| DBE1776B7FB8604762C576402481704E4E056D67F00EC4399CED2 \ | ||||
| B8802C89A78827B12FDC5D8B8A3A1914A80B573D3C4F3C87E91AE \ | ||||
| 3DBB05B685CEC2194604FA3965B0AF4E0D6E929D672E6C2EDC600 \ | ||||
| 1FC2A9AB1CA244FD07847B86A544AAB532DD2E49C2ACB9C42330B \ | ||||
| 44F95AEF50A1E44761E5E25670DA2C7291254C17C298F685B1FB0 \ | ||||
| 22932B07DE031B1E9988131C73BD0B4E748FF2C2FFD45B7DF99EF \ | ||||
| 1FA579F02930D3C3AA3D46F50AF699CF3E5E11E035B693542EBB5 \ | ||||
| B7D756B001BA792C8B6F4521A4F49DB647A37095A28482548E3C0 \ | ||||
| E9DFB0C2D504BE2E9B60983660B05E45FF8847BD7392ED1010AA8 \ | ||||
| 5589B36455B864A682B58A87CE0BE617C838BEA0295186178B1EC \ | ||||
| 2CD64044B8FF4A30FFEFAE2A007E7531250E0EBBB76621CBECF25 \ | ||||
| 5E08727BBE61178A3CF25395468F207249A97EF9A631D9CD651FD \ | ||||
| 36ADC2CB00B81663E6C89869E7C2BCB6C149E9CA97B4AC8F656F9 \ | ||||
| B54A800C81045C77A6DD75040AFB72273F1C1A2B8A0E60E60F5FA \ | ||||
| 9C63AA4DBBCE603BBAF99DE4EB95FED967E444FABD025D40A2D74 \ | ||||
| AFE0AD427C5E0D5DDFE3267DD04256752FB643D362E8DA17B5E44 \ | ||||
| 81A45176376804FF489DF09FDA863BD4000000067B95DE445ABF8 \ | ||||
| 9161DFF4B91A4A9E3BF156A39A4660F98F06BF3F017686D9DFC36 \ | ||||
| 2C948646B3C9848803E6D9BA1F7D3967F709CDDD35DC77D60356F \ | ||||
| 0C36808900B491CB4ECBBABEC128E7C81A46E62A67B57640A0A78 \ | ||||
| BE1CBF7DD9D419A10CD8686D16621A80816BFDB5BDC56211D72CA \ | ||||
| 70B81F1117D129529A7570CF79CF52A7028A48538ECDD3B38D3D5 \ | ||||
| D62D26246595C4FB73A525A5ED2C30524EBB1D8CC82E0C19BC497 \ | ||||
| 7C6898FF95FD3D310B0BAE71696CEF93C6A552456BF96E9D075E3 \ | ||||
| 83BB7543C675842BAFBFC7CDB88483B3276C29D4F0A341C2D406E \ | ||||
| 40D4653B7E4D045851ACF6A0A0EA9C710B805CCED4635EE8C1073 \ | ||||
| 62F0FC8D80C14D0AC49C516703D26D14752F34C1C0D2C4247581C \ | ||||
| 18C2CF4DE48E9CE949BE7C888E9CAEBE4A415E291FD107D21DC1F \ | ||||
| 084B1158208249F28F4F7C7E931BA7B3BD0D824A4570'])", | ||||
| "cbor":"D2844AA101674853532D4C4D53A1044649747342696754546 \ | ||||
| 869732069732074686520636F6E74656E742E5909D00000000000 \ | ||||
| 0000000000000391291DE76CE6E24D1E2A9B60266519BC8CE889F \ | ||||
| 814DEB0FC00EDD3129DE3AB9BA6814A4BEE84E5E838C7725F78FE \ | ||||
| 0610837A548F92802DA610AFB0ADFB133123061C023E87A7802C1 \ | ||||
| 7B00740F25737A775B95E923905B6F0CA02A870955420A6800313 \ | ||||
| 3A1EA12083E134238DFE5F1633E159CFD207BC79B50DD39BA39FC \ | ||||
| AAA75C12F7F1B493AB8736162E42C2C2F9159DF3332C399A50BB8 \ | ||||
| 404F2CB6D98DAA4C3DF82A197CFE014BEC27CC820A5B26BAC5DFE \ | ||||
| 05947E3A7D92070A4653C67BA095AB0499AF655B81B719912E296 \ | ||||
| 765FA46CB0AD2ED56BBCF00CA6FB9C16D8C05C1C165FED054A099 \ | ||||
| A3DA89F9CB951C6ED366DF38E299C7E7DC9AC9C4366F328407E7C \ | ||||
| 4A6CD8A5314D6B02B377406D5A5E589E91FEAA9F2E4EC1682BA1F \ | ||||
| 633C7784B3038FAC2E77947916C8F4160CF6D9D0B0BC6600CDBC4 \ | ||||
| AE947DD5D317DCBA3D200A739F96CDDBA94DAF86CE80C76158D4F \ | ||||
| 5CF3CD2BA9F1393DF47E556887F919E0718625D31240E7FE95990 \ | ||||
| 12F757314C20893827194AD6555F1452E3A749CE213DFBA283013 \ | ||||
| DCFF196F9BD18D715B6E7451DE35B18181DF8A626DE1480F2DDEC \ | ||||
| B126B477E019FFE75E4472EF4FA1B913C80821155AAE0D7F3B117 \ | ||||
| 5B64CA076926166C80E8219D241791C1DE3C8F93655085C0B00F8 \ | ||||
| 40970367DAF2A41D462C696C74AF0C3591A6C6B4D701963819FFB \ | ||||
| DC945785D64CE687BA4D086A31FE6A5E1C74A6C0E25CF67CEA24D \ | ||||
| CDE0E47B5210670CC2D66003DF2232F4BA337D325166381681FD4 \ | ||||
| 738997BB3EC1499E594B5CCE9FBC11C3136C20F156012A4DA0626 \ | ||||
| 75627758DBF1BE635C876F81713D322EA127F6FFC8880F42BA518 \ | ||||
| 79CC0EB27B8A0C21E434DA7C490BFE30BE1FAC3CAA5CF97451FAD \ | ||||
| F412ECA7BAD72E2553541224EB934A9C8A0034E1C59EA2D9EAFD6 \ | ||||
| 6A72F1C43A07B70CBBC0AD844506E31C4CC84F395F28915239C8C \ | ||||
| B733787EE79704B8BA0CC667282984DFBD01BDC34ADF0E90A3099 \ | ||||
| 86BE6AD95486E67754543999AEE160A7C6458992FABC338136D95 \ | ||||
| FBC688E0F4F03D8F942875DF39E8D9EAA6B35FFA6C9C1097E5BEA \ | ||||
| 8EADA90DAAC52FBE16A830EA49D550ABFFB64C8244095992BAE73 \ | ||||
| D970AE908CE9413A6EC52F98F593E138F3E6B7BAEA6657E03DF71 \ | ||||
| 5516DD69342374D222F9A4D4B6579994DD01F4E7EC1C254C2A5EA \ | ||||
| 109519C788FA1504B0273975C3E647820CFE5CDF4D0D5A6C717C1 \ | ||||
| 795EB2BE37030EDEB3196D5866255B1FC10BD03B05FBDF59DBD87 \ | ||||
| 451877761BDEDD25D468D9409A054B1767BF70C4161D416B01F47 \ | ||||
| 2E4D0924FB9EF84A7EF027A4C3F6FDDD0018A827AB66017062F0F \ | ||||
| 0709B271C1CB03557558F882C4FD89569E55E86D9834105F5E746 \ | ||||
| 8BA389305729F7FEB6BF2BE3F92BCA40917CC947A438B43D6A109 \ | ||||
| 535EEBFC06BAEE3A01C9E49D95E84ACDA572F47C4FECC64890315 \ | ||||
| 4182BBF5222CD4F40622DBB6886A062FE52A59260EC8B61843622 \ | ||||
| DA827B77BAFB0E0F7AA55E3E869BD7943C780F31782241FE1D8B5 \ | ||||
| 5C313A421875EFE40BD3B649087AE3A1A5942A51A7C182EDF686A \ | ||||
| 9842A2F82E51ABE70826D5CA045F984472DB63784194DC2C52388 \ | ||||
| 9A95CA8C625B017BCA6CAC5175E87552EACBD8D3F5C281E4D4108 \ | ||||
| F90E395088D50C528809C37788609A5734FFCE40287270A3A6B04 \ | ||||
| A069DE8277F7F5109C16938347A643713C9AC36FFFC8BF141E899 \ | ||||
| F48BC25C7B636D43BEBCFA7742D4E1462263E56732AD2021EEF8C \ | ||||
| E84023C4959CFD250348B23AE6DB317087F1F593F768825A970E8 \ | ||||
| 5C15306447892E72C8CF4461E3DF57E696AF1780ADA04F847F8FD \ | ||||
| 3C42A802FC9BA38C696ED74FF8A300D171BBAE8888B226498CF63 \ | ||||
| EBA035814557E3A552E0B5DA56DD90C1372D823860D00CA4F242E \ | ||||
| 8BF1FCA88BA71173DE185E6F1D1EF2BAE53D701D03D4BF3B44F08 \ | ||||
| 42BED8126494A7FD2C7B1321A5527B78681B1D13062CE4DAE86C6 \ | ||||
| 8DAB481551D857934250E6DBF99D37DA15735831C2FA31DD2AB81 \ | ||||
| FBF1F2DE8D890DF29A8CCD730431135E3A0D9C075860F9843B14B \ | ||||
| E9408714E96218D3642E5B0126BD8FF941757A512CDCB4F6336D6 \ | ||||
| FDC357C28E59484EDC9101AE78BBC6CB380E6E0516ECC48391FE9 \ | ||||
| DA4519DF813CB680497BA65132954F11F857BDFF3644B7F54F595 \ | ||||
| 42BAE97EBC7270DECDD407989CAD427894922EDC1BD22E5E1991E \ | ||||
| 1B894A92F893268F66327084B09A945732EF82F27007D5DD0A084 \ | ||||
| 03E8E553EA7E20C1E23A567B850F8FE4D004170995CE1FCC2284E \ | ||||
| ACB197F001C9B0FF2FB67BC24C5774A935F96761FD52394AEDE47 \ | ||||
| 896E5204BD011F2697F9791953C0F265909019A90804A3A59A4D5 \ | ||||
| A481020861ADC270845EBEE08D8C5C442A0ECBB5C78D65E11A5CD \ | ||||
| 71D520281A73C8EE741B4B1E2807E30BD9A2AD1DFE50FE3875F20 \ | ||||
| 1926D87F732461E279FB774E97A93363527C13948DBE1776B7FB8 \ | ||||
| 604762C576402481704E4E056D67F00EC4399CED2B8802C89A788 \ | ||||
| 27B12FDC5D8B8A3A1914A80B573D3C4F3C87E91AE3DBB05B685CE \ | ||||
| C2194604FA3965B0AF4E0D6E929D672E6C2EDC6001FC2A9AB1CA2 \ | ||||
| 44FD07847B86A544AAB532DD2E49C2ACB9C42330B44F95AEF50A1 \ | ||||
| E44761E5E25670DA2C7291254C17C298F685B1FB022932B07DE03 \ | ||||
| 1B1E9988131C73BD0B4E748FF2C2FFD45B7DF99EF1FA579F02930 \ | ||||
| D3C3AA3D46F50AF699CF3E5E11E035B693542EBB5B7D756B001BA \ | ||||
| 792C8B6F4521A4F49DB647A37095A28482548E3C0E9DFB0C2D504 \ | ||||
| BE2E9B60983660B05E45FF8847BD7392ED1010AA85589B36455B8 \ | ||||
| 64A682B58A87CE0BE617C838BEA0295186178B1EC2CD64044B8FF \ | ||||
| 4A30FFEFAE2A007E7531250E0EBBB76621CBECF255E08727BBE61 \ | ||||
| 178A3CF25395468F207249A97EF9A631D9CD651FD36ADC2CB00B8 \ | ||||
| 1663E6C89869E7C2BCB6C149E9CA97B4AC8F656F9B54A800C8104 \ | ||||
| 5C77A6DD75040AFB72273F1C1A2B8A0E60E60F5FA9C63AA4DBBCE \ | ||||
| 603BBAF99DE4EB95FED967E444FABD025D40A2D74AFE0AD427C5E \ | ||||
| 0D5DDFE3267DD04256752FB643D362E8DA17B5E4481A451763768 \ | ||||
| 04FF489DF09FDA863BD4000000067B95DE445ABF89161DFF4B91A \ | ||||
| 4A9E3BF156A39A4660F98F06BF3F017686D9DFC362C948646B3C9 \ | ||||
| 848803E6D9BA1F7D3967F709CDDD35DC77D60356F0C36808900B4 \ | ||||
| 91CB4ECBBABEC128E7C81A46E62A67B57640A0A78BE1CBF7DD9D4 \ | ||||
| 19A10CD8686D16621A80816BFDB5BDC56211D72CA70B81F1117D1 \ | ||||
| 29529A7570CF79CF52A7028A48538ECDD3B38D3D5D62D26246595 \ | ||||
| C4FB73A525A5ED2C30524EBB1D8CC82E0C19BC4977C6898FF95FD \ | ||||
| 3D310B0BAE71696CEF93C6A552456BF96E9D075E383BB7543C675 \ | ||||
| 842BAFBFC7CDB88483B3276C29D4F0A341C2D406E40D4653B7E4D \ | ||||
| 045851ACF6A0A0EA9C710B805CCED4635EE8C107362F0FC8D80C1 \ | ||||
| 4D0AC49C516703D26D14752F34C1C0D2C4247581C18C2CF4DE48E \ | ||||
| 9CE949BE7C888E9CAEBE4A415E291FD107D21DC1F084B11582082 \ | ||||
| 49F28F4F7C7E931BA7B3BD0D824A4570" | ||||
| } | ||||
| } | ||||
| Appendix B. Acknowledgements | Appendix B. Acknowledgements | |||
| Many thanks to Roman Danyliw, Scott Fluhrer, John Mattsson, Jim | Many thanks to Roman Danyliw, Scott Fluhrer, Laurence Lundblade, John | |||
| Schaad, and Tony Putman for their valuable review and insights. In | Mattsson, Jim Schaad, and Tony Putman for their valuable review and | |||
| addition, an extra special thank you to Jim Schaad for generating the | insights. In addition, an extra special thank you to Jim Schaad for | |||
| examples in Appendix A. | generating the examples in Appendix A. | |||
| Author's Address | Author's Address | |||
| Russ Housley | Russ Housley | |||
| Vigil Security, LLC | Vigil Security, LLC | |||
| 516 Dranesville Road | 516 Dranesville Road | |||
| Herndon, VA 20170 | Herndon, VA 20170 | |||
| US | US | |||
| Email: housley@vigilsec.com | Email: housley@vigilsec.com | |||
| End of changes. 9 change blocks. | ||||
| 490 lines changed or deleted | 196 lines changed or added | |||
This html diff was produced by rfcdiff 1.48. The latest version is available from http://tools.ietf.org/tools/rfcdiff/ | ||||