Re: [COSE] Call for adoption of draft-tschofenig-cose-hpke-00

Tue, 07 Dec 2021 08:51:31 -0800 


Hiya,

I had a quick scan:

- I support adoption from the POV of liking to see HPKE
  be re-used(*) and this seems like a fine start
- I'm not sure if having the plaintext always be a CEK
  is the best plan (could be fixed after adoption if/as
  needed) - might be better if pt can be application data
  and exporters are used if needed (not sure)
- be good if the IANA section showed that there exists
  a good mapping from COSE codepoints to HPKE ones just
  to be sure no new HPKE codepoints are needed (and hence
  that existing implementations should work ok)

Cheers,
S.

(*) To be open: my angle here is that I've got an HPKE
implementation [1] and have recently submitted a PR [2]
to try get that included in a future OpenSSL release.
(If anyone has comments on that PR or it's discussion
please do feel free add to the chat at [2], esp if you
have an opinion on when you'd like to see HPKE supported
in an OpenSSL release.)

[1] https://github.com/sftcd/happykey
[2] https://github.com/openssl/openssl/pull/17172


On 07/12/2021 15:47, Mike Jones wrote:

We've had only two people respond to the call for adoption - both authors.  Ivo 
and I decided today to give working group members another week to respond.

If you care whether this is adopted, please respond now when you read this note.

                                                        Thank you,
                                                        -- Mike & Ivo

From: COSE <[email protected]> On Behalf Of Mike Jones
Sent: Tuesday, November 23, 2021 7:56 AM
To: [email protected]
Subject: [COSE] Call for adoption of draft-tschofenig-cose-hpke-00

During IETF 112, we decided to issue a call for adoption for "Use of Hybrid 
Public-Key Encryption (HPKE) with CBOR Object Signing and Encryption (COSE)", as 
recorded in the minutes at https://datatracker.ietf.org/doc/minutes-112-cose/.

Please reply to this message within the next two weeks (by Tuesday, December 7, 
2021) indicating either support for its adoption or stating why you oppose its 
adoption.

                                                        Thank you,
                                                       -- Mike (writing as COSE 
co-chair)



_______________________________________________
COSE mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/cose

Attachment: OpenPGP_0x5AB2FAF17B172BEA.asc
Description: OpenPGP public key

Attachment: OpenPGP_signature
Description: OpenPGP digital signature

_______________________________________________
COSE mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/cose

Reply via email to