I read the comment from David stating: > Since I suspect this is where some of the confusion comes from, let me point something out from RFC 8032: Ed25519 is *not* an elliptic curve in the way that P-256 is. RFC 8032 uses edwards25519 to refer to the elliptic curve in Ed25519.
- https://mailarchive.ietf.org/arch/msg/tls/wX-vDRr8Kbxa2zK1CyTsXsl9_hI/ So I was mostly just trying to quote him, if you want to argue that point with him, I suggest replying to the TLS list thread. FWIW I think: crv: Ed25519, alg: Ed25519 and crv: Ed448, alg: Ed448 Is better than what I put in the previous comment, as long as we are ok with using the "crv" parameter for things that are not strictly speaking curves (if you agree with David), if you think Ed25519 is both a curve and a signature scheme based on EdDSA on that curve, then all is well with the proposal above. This is also what the draft suggests be registered to close this door... https://datatracker.ietf.org/doc/html/draft-jones-jose-fully-specified-algorithms-02#name-fully-specified-jose-algori Moving forward, I care less about making mistakes registering `crv` parameters (glances at brainpool), and more about making mistakes with the `alg` parameter. OS On Mon, Jan 8, 2024 at 12:50 PM Ilari Liusvaara <[email protected]> wrote: > On Mon, Jan 08, 2024 at 11:33:20AM -0600, Orie Steele wrote: > > > > I'd argue JOSE and COSE got Ed25519 / Ed448 registration for RFC8032 > about > > as wrong as you can get it, something that better guidance can help guard > > against happening in the future. > > > > crv: Ed25519, alg: EdDSA / crv: Ed448, alg: EdDSA > > > > When in reality it is: crv: edwards25519, alg: Ed25519, and crv: > > edwards448, alg: Ed448 > > No, in reality it is crv: Ed25519, alg: Ed25519 and crv: Ed448, alg: > Ed448. > > Ed25519 keys are not the same as edwards25519 keys. And similarly > Ed448 keys are not the same as edwards448 keys. This is due to how EdDSA > internally works. > > > > > -Ilari > > _______________________________________________ > jose mailing list > [email protected] > https://www.ietf.org/mailman/listinfo/jose > -- ORIE STEELE Chief Technology Officer www.transmute.industries <https://transmute.industries>
_______________________________________________ jose mailing list [email protected] https://www.ietf.org/mailman/listinfo/jose
