ietf-smime
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

[smime] Fwd: Protocol Action: 'Cryptographic Messages Syntax (CMS) Algorithm Identifier Protection Attribute' to Proposed Standard (draft-schaad-smime-algorithm-attribute-05.txt)

2011-01-25 11:24:47
from [Paul Hoffman] [Permanent Link] 


-------- Original Message --------
Subject: Protocol Action: 'Cryptographic Messages Syntax (CMS) Algorithm Identifier Protection Attribute' to Proposed Standard (draft-schaad-smime-algorithm-attribute-05.txt) 
Date: Tue, 25 Jan 2011 09:05:49 -0800
From: The IESG <iesg-secretary(_at_)ietf(_dot_)org>
To: IETF-Announce <ietf-announce(_at_)ietf(_dot_)org>
CC: Internet Architecture Board <iab(_at_)iab(_dot_)org>, RFC Editor <rfc-editor(_at_)rfc-editor(_dot_)org> 

The IESG has approved the following document:
- 'Cryptographic Messages Syntax (CMS) Algorithm Identifier Protection
   Attribute'
  (draft-schaad-smime-algorithm-attribute-05.txt) as a Proposed Standard

This document has been reviewed in the IETF but is not the product of an
IETF Working Group.

The IESG contact person is Sean Turner.

A URL of this Internet Draft is:
http://datatracker.ietf.org/doc/draft-schaad-smime-algorithm-attribute/




Technical Summary

An authenticated/signed attribute is defined to protect the algorithm
definitions of the message body and the signature. Currently this
information is not included in the signature computation and could
theoretically be changed without the signature validator knowing. This
provides an attack avenue on CMS signature and authentication operations
that currently has no known successful attacks. The new attribute is
prophylactic.

Working Group Summary

There was a small amount of discussion on the working group list if this
should be expanded to include the new authenticated encryption
algorithms. It was decided that these should be treated separately by any
interested community. The document was considered in the S/MIME working
group, but there was no push for adoption as it was believed that the
working group would be shutting down shortly.

Document Quality

The document has been implemented by the author and an example of using
the attribute can be found in draft-schaad-smime-hash-experiment. There
are no known plans for vendors to implement this, but I have received
private email asking as to the status of the document.

Personnel

Jim Schaad (ietf(_at_)augustcellars(_dot_)com) is the Document Shepherd.
Sean Turner (turners(_at_)ieca(_dot_)com) is the Responsible Area Director.

_______________________________________________
IETF-Announce mailing list
IETF-Announce(_at_)ietf(_dot_)org
https://www.ietf.org/mailman/listinfo/ietf-announce



_______________________________________________
smime mailing list
smime(_at_)ietf(_dot_)org
https://www.ietf.org/mailman/listinfo/smime
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
  • [smime] Fwd: Protocol Action: 'Cryptographic Messages Syntax (CMS) Algorithm Identifier Protection Attribute' to Proposed Standard (draft-schaad-smime-algorithm-attribute-05.txt), Paul Hoffman <=
Previous by Date:  Re: [smime] FW: I-D Action:draft-freeman-message-access-control-req-00.txt, Jim Schaad
Next by Date:  [smime] Fwd: Document Action: 'Experiment: Hash functions with parameters in CMS and S/MIME' to Experimental RFC (draft-schaad-smime-hash-experiment-06.txt), Paul Hoffman
Previous by Thread:  [smime] FW: I-D Action:draft-freeman-message-access-control-req-00.txt, Trevor Freeman
Next by Thread:  [smime] Fwd: Document Action: 'Experiment: Hash functions with parameters in CMS and S/MIME' to Experimental RFC (draft-schaad-smime-hash-experiment-06.txt), Paul Hoffman
Indexes:  [Date] [Thread] [Top] [All Lists]