On Tue, Oct 24, 2023 at 05:53:52PM +0000, lgl island-resort.com wrote: > The most confusing part of COSE, IMO, is the Context Information > Structure and Enc_structure. We should address that confusion in > this guidance document. > > This relates to recent discussion with Orie in the COSE-HPKE document.
I think the only mysterious part of Enc_structure is reachability of all the possible contexts. It turns out all are reachable, but I can't come up with anything sane that would use "Rec_Recipient". And with Context Information Structure, that seems ripe for misuse (especially the PartyU/PartyV stuff). As for what I think is the most confusing part: IV generation. Can that mechanism be used with direct ECDH? IV generation is only documented for direct key with KDF, but the mechanism would work with direct ECDH. The definition is very terse too. -Ilari _______________________________________________ COSE mailing list [email protected] https://www.ietf.org/mailman/listinfo/cose
