That's useful information, Ilari. Could you send us a pointer to your rules
write-up so we can factor it into the discussion?
Thanks,
-- Mike
-----Original Message-----
From: COSE <[email protected]> On Behalf Of Ilari Liusvaara
Sent: Tuesday, September 5, 2023 11:57 PM
To: cose <[email protected]>
Subject: Re: [COSE] Consensus call on COSE HPKE algorithm representations
On Tue, Sep 05, 2023 at 04:05:27PM -0700, Christopher Allen wrote:
>
> However, this poll is missing one important element, which is to
> strictly limit ciphersuites to those that make sense, not a
> ciphersuite for every possible variant.
I have posted a set of rules for determining the ciphersuites that make sense
(including handling some future edge cases), and currently it gives 12
ciphersuites. Applications are expected to profile this down.
If HPKE adds compact curves (highly desirable), the rules give 6 additional
ciphersuites (what I supect to be the most wanted one is among the six).
If HPKE additionally adds AEGIS (which could happen), the rules give 9
additional ciphersuites (AEGIS without compact would give 6).
HPKE adding ShangMi (China) algorithms (another thing that could
happen) would add only 1 ciphersuite.
And a subtle but very serious issue is how to make all the ciphersuites
(including future ones!) work in the same way. Ciphersuites that work
differently are not acceptable due to causing extreme complexity.
-Ilari
_______________________________________________
COSE mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/cose
_______________________________________________
COSE mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/cose
