To tie a bow on the topic of encryption/integrity strength alignment, can someone please add a note to the document that as per fips 202, the inputs to shake128 and shake256 must be a minimum of 256b (32B) and 512b(64B) respectively, otherwise integrity will be degraded.
Ref https://csrc.nist.gov/publications/detail/fips/202/final#pubs-documentation ________________________________ From: Brent Kimberley <[email protected]> Sent: Wednesday, March 29, 2023 10:22:09 PM To: Brent Zundel <[email protected]>; Karen O'Donoghue <[email protected]>; [email protected] <[email protected]> Subject: Re: [jose] Calls for adoption: Web Proof Drafts Please disregard. If SHAKE128 is as strong as sha256 and if SHAKE256 is stronger than sha384 then nothing to see, let's move along https://www.ietf.org/archive/id/draft-jmiller-jose-json-proof-algorithms-01.html ________________________________ From: Brent Kimberley Sent: Wednesday, March 29, 2023 3:22:25 PM To: Brent Zundel <[email protected]>; Karen O'Donoghue <[email protected]>; [email protected] <[email protected]> Subject: RE: [jose] Calls for adoption: Web Proof Drafts I’m about a week late, but I feel compelled to ask… Earlier this week or late last week, I saw what looked like a proposal to couple “strong” encryption with “weak” integrity. If my memory serves me right: the proposal was along the lines of coupling: ed448 with SHA-256 (as ed448 with SHA384) ed22519 with SHA-128 (as opposed to SHA256) And so on. What was the decision / disposition? Was it a strawman to stimulate discussion? Best Regards, Brent From: Brent Zundel <[email protected]> Sent: March 29, 2023 10:18 AM To: Karen O'Donoghue <[email protected]>; [email protected] Subject: Re: [jose] Calls for adoption: Web Proof Drafts I support adoption and volunteer to review and help write. Sent from my T-Mobile 5G Device Get Outlook for Android<https://aka.ms/AAb9ysg> ________________________________ From: jose <[email protected]<mailto:[email protected]>> on behalf of Karen O'Donoghue <[email protected]<mailto:[email protected]>> Sent: Tuesday, March 28, 2023 12:54:06 PM To: [email protected]<mailto:[email protected]> <[email protected]<mailto:[email protected]>> Subject: [jose] Calls for adoption: Web Proof Drafts jose working group… Yesterday during the jose meeting @ IETF 116, we did a consensus call on the adoption of the three web proof drafts: JSON Web Proofs https://datatracker.ietf.org/doc/draft-jmiller-jose-json-proof-algorithms/<https://nam04.safelinks.protection.outlook.com/?url=https%3A%2F%2Fdatatracker.ietf.org%2Fdoc%2Fdraft-jmiller-jose-json-proof-algorithms%2F&data=05%7C01%7Cbrent.zundel%40gendigital.com%7C04745884307c42d2641a08db2f401b19%7C94986b1d466f4fc0ab4b5c725603deab%7C0%7C0%7C638155724618796427%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdata=Ao6ZkIxDgTl6KNHS2DLpMUKzM%2FoxxPnE8IrDlqBHdjU%3D&reserved=0> JSON Proof Algorithms https://datatracker.ietf.org/doc/draft-jmiller-jose-json-proof-algorithms/<https://nam04.safelinks.protection.outlook.com/?url=https%3A%2F%2Fdatatracker.ietf.org%2Fdoc%2Fdraft-jmiller-jose-json-proof-algorithms%2F&data=05%7C01%7Cbrent.zundel%40gendigital.com%7C04745884307c42d2641a08db2f401b19%7C94986b1d466f4fc0ab4b5c725603deab%7C0%7C0%7C638155724618796427%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdata=Ao6ZkIxDgTl6KNHS2DLpMUKzM%2FoxxPnE8IrDlqBHdjU%3D&reserved=0> JSON Proof Token https://datatracker.ietf.org/doc/draft-jmiller-jose-json-proof-token/<https://nam04.safelinks.protection.outlook.com/?url=https%3A%2F%2Fdatatracker.ietf.org%2Fdoc%2Fdraft-jmiller-jose-json-proof-token%2F&data=05%7C01%7Cbrent.zundel%40gendigital.com%7C04745884307c42d2641a08db2f401b19%7C94986b1d466f4fc0ab4b5c725603deab%7C0%7C0%7C638155724618796427%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdata=%2Fg0FQk4Ss%2FrUUh1ZIPCgZSgs%2BMLvYnLgjj8%2FR%2BZNY48%3D&reserved=0> The result was unanimous in favor of adopting the three drafts. With this message, I am asking the mailing list for any thoughts on adopting these three drafts. This call will close on Wednesday 19 April. Also, this is an excellent time to read the drafts and start providing comments. Karen (for the three jose chairs) THIS MESSAGE IS FOR THE USE OF THE INTENDED RECIPIENT(S) ONLY AND MAY CONTAIN INFORMATION THAT IS PRIVILEGED, PROPRIETARY, CONFIDENTIAL, AND/OR EXEMPT FROM DISCLOSURE UNDER ANY RELEVANT PRIVACY LEGISLATION. No rights to any privilege have been waived. If you are not the intended recipient, you are hereby notified that any review, re-transmission, dissemination, distribution, copying, conversion to hard copy, taking of action in reliance on or other use of this communication is strictly prohibited. If you are not the intended recipient and have received this message in error, please notify me by return e-mail and delete or destroy all copies of this message.
_______________________________________________ jose mailing list [email protected] https://www.ietf.org/mailman/listinfo/jose
