| < draft-turner-ekpct-algs-update-02.txt | draft-turner-ekpct-algs-update-03.txt > | |||
|---|---|---|---|---|
| Network Working Group S. Turner | Network Working Group S. Turner | |||
| Internet-Draft IECA | Internet-Draft IECA | |||
| Updates: 6033 (once approved) December 22, 2010 | Updates: 6033 (once approved) February 11, 2011 | |||
| Intended status: Standards Track | Intended status: Standards Track | |||
| Expires: June 22, 2011 | Expires: August 10, 2011 | |||
| Elliptic Curve Algorithms for Cryptographic Message Syntax (CMS) | Elliptic Curve Algorithms for Cryptographic Message Syntax (CMS) | |||
| Encrypted Key Package Content Type | Encrypted Key Package Content Type | |||
| draft-turner-ekpct-algs-update-02.txt | draft-turner-ekpct-algs-update-03.txt | |||
| Abstract | Abstract | |||
| This document describes the conventions for using several Elliptic | This document describes the conventions for using several Elliptic | |||
| Curve cryptographic algorithms with the Cryptographic Message Syntax | Curve cryptographic algorithms with the Cryptographic Message Syntax | |||
| (CMS) encrypted key package content type. Specifically, it includes | (CMS) encrypted key package content type. Specifically, it includes | |||
| conventions necessary to implement Elliptic Curve Diffie-Hellman | conventions necessary to implement Elliptic Curve Diffie-Hellman | |||
| (ECDH) with EnvelopedData and Elliptic Curve Digital Signature | (ECDH) with EnvelopedData and Elliptic Curve Digital Signature | |||
| Algorithm (ECDSA) with SignedData. This document extends RFC 6033. | Algorithm (ECDSA) with SignedData. This document extends RFC 6033. | |||
| skipping to change at page 1, line 37 ¶ | skipping to change at page 1, line 37 ¶ | |||
| Internet-Drafts are working documents of the Internet Engineering | Internet-Drafts are working documents of the Internet Engineering | |||
| Task Force (IETF). Note that other groups may also distribute | Task Force (IETF). Note that other groups may also distribute | |||
| working documents as Internet-Drafts. The list of current Internet- | working documents as Internet-Drafts. The list of current Internet- | |||
| Drafts is at http://datatracker.ietf.org/drafts/current/. | Drafts is at http://datatracker.ietf.org/drafts/current/. | |||
| Internet-Drafts are draft documents valid for a maximum of six months | Internet-Drafts are draft documents valid for a maximum of six months | |||
| and may be updated, replaced, or obsoleted by other documents at any | and may be updated, replaced, or obsoleted by other documents at any | |||
| time. It is inappropriate to use Internet-Drafts as reference | time. It is inappropriate to use Internet-Drafts as reference | |||
| material or to cite them other than as "work in progress." | material or to cite them other than as "work in progress." | |||
| This Internet-Draft will expire on June 22, 2010. | This Internet-Draft will expire on August 10, 2011. | |||
| Copyright Notice | Copyright Notice | |||
| Copyright (c) 2010 IETF Trust and the persons identified as the | Copyright (c) 2011 IETF Trust and the persons identified as the | |||
| document authors. All rights reserved. | document authors. All rights reserved. | |||
| Internet-DraftEC Algorithms for CMS Encrypted Key Packages 2011-02-11 | ||||
| This document is subject to BCP 78 and the IETF Trust's Legal | This document is subject to BCP 78 and the IETF Trust's Legal | |||
| Provisions Relating to IETF Documents | Provisions Relating to IETF Documents | |||
| (http://trustee.ietf.org/license-info) in effect on the date of | (http://trustee.ietf.org/license-info) in effect on the date of | |||
| publication of this document. Please review these documents | publication of this document. Please review these documents | |||
| Internet-DraftEC Algorithms for CMS Encrypted Key Packages 2010-12-22 | ||||
| carefully, as they describe your rights and restrictions with respect | carefully, as they describe your rights and restrictions with respect | |||
| to this document. Code Components extracted from this document must | to this document. Code Components extracted from this document must | |||
| include Simplified BSD License text as described in Section 4.e of | include Simplified BSD License text as described in Section 4.e of | |||
| the Trust Legal Provisions and are provided without warranty as | the Trust Legal Provisions and are provided without warranty as | |||
| described in the Simplified BSD License. | described in the Simplified BSD License. | |||
| 1. Introduction | 1. Introduction | |||
| This document describes the conventions for using Elliptic Curve | This document describes the conventions for using Elliptic Curve | |||
| cryptographic algorithms with the Cryptographic Message Syntax (CMS) | cryptographic algorithms with the Cryptographic Message Syntax (CMS) | |||
| skipping to change at page 2, line 36 ¶ | skipping to change at page 2, line 40 ¶ | |||
| 1.1 Terminology | 1.1 Terminology | |||
| The key words "MUST", "MUST NOT", "REQUIRED", "SHALL", "SHALL NOT", | The key words "MUST", "MUST NOT", "REQUIRED", "SHALL", "SHALL NOT", | |||
| "SHOULD", "SHOULD NOT", "RECOMMENDED", "NOT RECOMMENDED", "MAY", and | "SHOULD", "SHOULD NOT", "RECOMMENDED", "NOT RECOMMENDED", "MAY", and | |||
| "OPTIONAL" in this document are to be interpreted as described in | "OPTIONAL" in this document are to be interpreted as described in | |||
| [RFC2119]. | [RFC2119]. | |||
| 2. EnvelopedData | 2. EnvelopedData | |||
| When key agreement is used, standard (as opposed to co-factor) ECDH | When key agreement is used, standard (as opposed to co-factor) ECDH | |||
| [I-D.mcgrew-fundamental-ecc] MAY be supported. | [RFC6090][RFC5753] MAY be supported. | |||
| 3. SignedData | 3. SignedData | |||
| If an implementation encapsulates an EncryptedKeyPacakge with a | If an implementation encapsulates an EncryptedKeyPackage with a | |||
| SignedData [RFC5652], then it MAY support the signature scheme ECDSA | SignedData [RFC5652], then it MAY support the signature scheme ECDSA | |||
| [I-D.mcgrew-fundamental-ecc]. | [RFC6090][RFC5753]. | |||
| 4. Public Key Sizes | 4. Public Key Sizes | |||
| The easiest way to implement the SignedData and EnvelopedData is with | The easiest way to implement the SignedData and EnvelopedData is with | |||
| public key certificates [RFC5280][RFC5480]. If an implementation | public key certificates [RFC5280][RFC5480]. If an implementation | |||
| supports ECDSA or ECDH, then it MUST support keys on the P-256 curve. | supports ECDSA or ECDH, then it MUST support keys on the P-256 curve. | |||
| Internet-DraftEC Algorithms for CMS Encrypted Key Packages 2011-02-11 | ||||
| 5. Security Considerations | 5. Security Considerations | |||
| The security considerations from [RFC5280], [RFC5480], [RFC5652], | The security considerations from [RFC5280], [RFC5480], [RFC5652], | |||
| [RFC5753], [RFC6033], and [I D.mcgrew-fundamental-ecc] apply. | [RFC5753], [RFC6033], and [RFC6090] apply. | |||
| Internet-DraftEC Algorithms for CMS Encrypted Key Packages 2010-12-22 | ||||
| 6. IANA Considerations | 6. IANA Considerations | |||
| None. Please remove this section prior to publication as an RFC. | None. Please remove this section prior to publication as an RFC. | |||
| 7. References | 7. References | |||
| 7.1. Normative References | 7.1. Normative References | |||
| [RFC2119] Bradner, S., "Key words for use in RFCs to Indicate | [RFC2119] Bradner, S., "Key words for use in RFCs to Indicate | |||
| skipping to change at page 3, line 42 ¶ | skipping to change at page 3, line 47 ¶ | |||
| Syntax (CMS)", RFC 5753, January 2010. | Syntax (CMS)", RFC 5753, January 2010. | |||
| [RFC6032] Turner, S., and R. Housley, "Cryptographic Message Syntax | [RFC6032] Turner, S., and R. Housley, "Cryptographic Message Syntax | |||
| (CMS) Encrypted Key Package Content Type", RFC 6032, | (CMS) Encrypted Key Package Content Type", RFC 6032, | |||
| December 2010. | December 2010. | |||
| [RFC6033] Turner, S., "Algorithms for Cryptographic Message Syntax | [RFC6033] Turner, S., "Algorithms for Cryptographic Message Syntax | |||
| (CMS) Encrypted Key Package Content Type", RFC 6033, | (CMS) Encrypted Key Package Content Type", RFC 6033, | |||
| December 2010. | December 2010. | |||
| [I-D.mcgrew-fundamental-ecc] McGrew, D., Igoe, E., and M. Salter, | [RFC6090] McGrew, D., Igoe, E., and M. Salter, "Fundamental Elliptic | |||
| "Fundamental Elliptic Curve Cryptography Algorithms", | Curve Cryptography Algorithms", RFC 6090, February 2011. | |||
| draft-mcgrew-fundamental-ecc-04.txt, work-in-progress. | ||||
| 7.2. Informative References | 7.2. Informative References | |||
| None. | None. | |||
| Internet-DraftEC Algorithms for CMS Encrypted Key Packages 2010-12-22 | Internet-DraftEC Algorithms for CMS Encrypted Key Packages 2011-02-11 | |||
| Authors' Addresses | Authors' Addresses | |||
| Sean Turner | Sean Turner | |||
| IECA, Inc. | IECA, Inc. | |||
| 3057 Nutley Street, Suite 106 | 3057 Nutley Street, Suite 106 | |||
| Fairfax, VA 22031 | Fairfax, VA 22031 | |||
| USA | USA | |||
| EMail: turners@ieca.com | EMail: turners@ieca.com | |||
| End of changes. 14 change blocks. | ||||
| 18 lines changed or deleted | 16 lines changed or added | |||
This html diff was produced by rfcdiff 1.48. The latest version is available from http://tools.ietf.org/tools/rfcdiff/ | ||||