The following errata report has been rejected for RFC5652,
"Cryptographic Message Syntax (CMS)".
--------------------------------------
You may review the report below and at:
http://www.rfc-editor.org/errata/eid5331
--------------------------------------
Status: Rejected
Type: Technical
Reported by: Thomas Stimm <thomas(_dot_)stimm(_at_)escrypt(_dot_)com>
Date Reported: 2018-04-23
Rejected by: Eric Rescorla (IESG)
Section: 6.1 and 8
Original Text
-------------
EncryptedData ::= SEQUENCE {
version CMSVersion,
encryptedContentInfo EncryptedContentInfo,
unprotectedAttrs [1] IMPLICIT UnprotectedAttributes OPTIONAL }
EncryptedContentInfo ::= SEQUENCE {
contentType ContentType,
contentEncryptionAlgorithm ContentEncryptionAlgorithmIdentifier,
encryptedContent [0] IMPLICIT EncryptedContent OPTIONAL }
Corrected Text
--------------
EncryptedData ::= SEQUENCE {
version CMSVersion,
encryptedContentInfo EncryptedContentInfo,
encryptedContent [0] IMPLICIT EncryptedContent OPTIONAL,
unprotectedAttrs [1] IMPLICIT UnprotectedAttributes OPTIONAL }
EncryptedContentInfo ::= SEQUENCE {
contentType ContentType,
contentEncryptionAlgorithm ContentEncryptionAlgorithmIdentifier }
Notes
-----
- Wrong enumeration of UnprotectedAttributes OPTIONAL [1] instead of [0].
- ‘UnprotectedAttributes OPTIONAL’ makes only sense, if ‘EncryptedContent
OPTIONAL’ is available.
- It seems that OpenSSL and wolfSSL are using the suggested wrapping and are
not following the RFC, here.
--VERIFIER NOTES--
Misunderstanding of the specification
--------------------------------------
RFC5652 (draft-ietf-smime-rfc3852bis-00)
--------------------------------------
Title : Cryptographic Message Syntax (CMS)
Publication Date : September 2009
Author(s) : R. Housley
Category : DRAFT STANDARD
Source : S/MIME Mail Security
Area : Security
Stream : IETF
Verifying Party : IESG
_______________________________________________
smime mailing list
smime(_at_)ietf(_dot_)org
https://www.ietf.org/mailman/listinfo/smime