As I see it, we will document the way that these algorithms are
used. Then, if at some point in the future, the working group wants to
change the mandatory to implement key management algorithm, the algorithm
specification will be done, and there may even be widely deployed.
RSA using PKCS#1_v1.5, OAEP, and KEM all employ the same certificate, so
this choice does not require any adjustments in the PKI.
At 01:49 PM 5/10/2002 -0700, Paul Hoffman / IMC wrote:
At 1:49 PM -0400 5/10/02, Housley, Russ wrote:
Here is the next draft of the proposed working group charter. The
biggest change from the previous posting is that both OAEP and KEM become
standards track documents.
And in what way would that help us get interoperable implementations of
Are the differences between the attacks and mitigations presented by OAEP
and KEM really worth the high liklihood of lack of interoperability?
--Paul Hoffman, Director
--Internet Mail Consortium