[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: key usage - key encipherment or data encipherment

To: Simon McMahon <Simon_McMahon@xxxxxxxxxxxxxxxxx>
Subject: Re: key usage - key encipherment or data encipherment
From: wpolk@xxxxxxxx
Date: Tue, 10 May 2005 23:05:46 -0400
Cc: ietf-pkix@xxxxxxxx
In-reply-to: <s281dfa8.052@xxxxxxxxxxxxxxxxxxxxxxxxxxxx>
List-archive: <http://www.imc.org/ietf-pkix/mail-archive/>
List-id: <ietf-pkix.imc.org>
List-unsubscribe: <mailto:ietf-pkix-request@imc.org?body=unsubscribe>
References: <s281dfa8.052@xxxxxxxxxxxxxxxxxxxxxxxxxxxx>
Sender: owner-ietf-pkix@xxxxxxxxxxxx
User-agent: Internet Messaging Program (IMP) 3.2.1

Simon,

Your interpretation matches the PKIX interpretation.  Since the RSA key is 
used to encrypt the AES key, it is key encipherment not data encipherment.  
The AES key enciphers the data.

This is a recurring problem with applications.  In general, policies used by 
most PKIs (including the U.S. government) forbid setting the data encipherment 
bit.  There are a number of security problems taht can arise if an application 
actuially uses the RSA key to encipher the datat directly.  It is almost 
always a better choice to encrypt data under a good symmetric algorithm and 
encipher the key using the RSA algorithm.  Unfortunatley, a number of 
applications have been implemnnted using your vendor's interpretations.

This presents you with an uncomfortable choice - set data encipherment to 
enable your apps, but open a security vulnerability, or make the security 
purist choice and break your app.  If your vendor is cooperative, that will 
make your choice easier.

Tim Polk


Quoting Simon McMahon <Simon_McMahon@xxxxxxxxxxxxxxxxx>:

> 
> Hi,
>  
> I have had a recent interoperability issue with a application vendor that
> didn't like the key-usage attributes in a cert from a CA vendor's
> certificate. Signing certs work fine, it was an encryption cert that failed.
>  
> CA sets key-usage = "key encipherment".
> Application wants to encrypt some XML data so looks for key-usage = "data
> encipherment". Reason - because XML is data, not a key.
> 
> I believe the application vendor is wrong and I explained that the RSA key
> actually encrypts an AES key so it doesn't directly encrypt the data but they
> want an official "pkix" ruling based on the standard so can someone please
> refer me to a statement in the standard that clears this up.
>  
> Thanks,
>  
> Simon McMahon.
>  
>  
> 
> Simon McMahon
>  
> Work: (07) 31311420
> Mobile: (043) 2294180
> 
> 
> 
> Simon McMahon
> 
> Work: (07) 31311420
> Mobile: (043) 2294180
> 
> 
> 
> 
> 
*******************************************************************************
****
> This email, including any attachments sent with it, is confidential and for
> the sole use of the intended recipient(s).  This confidentiality is not
> waived or lost, if you receive it and you are not the intended recipient(s),
> or if it is transmitted/received in error.
> 
> Any unauthorised use, alteration, disclosure, distribution or review of this
> email is prohibited.  It may be subject to a statutory duty of
> confidentiality if it relates to health service matters.
> 
> If you are not the intended recipient(s), or if you have received this email
> in error, you are asked to immediately notify the sender by telephone or by
> return email.  You should also delete this email and destroy any hard copies
> produced.
> 
*******************************************************************************
****
> 
> 
> 
> 
> 
>

Follow-Ups:
- Re: key usage - key encipherment or data encipherment
  - From: Peter Gutmann

References:
- key usage - key encipherment or data encipherment
  - From: Simon McMahon

Prev by Date: Re: key usage - key encipherment or data encipherment
Next by Date: Re: key usage - key encipherment or data encipherment
Previous by thread: Re: key usage - key encipherment or data encipherment
Next by thread: Re: key usage - key encipherment or data encipherment
Index(es):
- Date
- Thread