[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Technical Corrigenda 3 to the 4th edition of X.509

To: Hoyt L Kesterson II <hoytkesterson@xxxxxxxxxxxxx>
Subject: Re: Technical Corrigenda 3 to the 4th edition of X.509
From: Jean-Marc Desperrier <jmdesp@xxxxxxx>
Date: Thu, 12 May 2005 14:40:48 +0200
Cc: pkix <ietf-pkix@xxxxxxx>
In-reply-to: <>
List-archive: <http://www.imc.org/ietf-pkix/mail-archive/>
List-id: <ietf-pkix.imc.org>
List-unsubscribe: <mailto:ietf-pkix-request@imc.org?body=unsubscribe>
References: <>
Sender: owner-ietf-pkix@xxxxxxxxxxxx
User-agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; fr-FR; rv:1.8b2) Gecko/20050501


Hoyt L Kesterson II wrote:

Some you worked with the X.509 standards committee over the last fewyears revising the text on key usage.
You can find the text of that Technical Corrigenda at:
ftp://ftp.bull.com/pub/OSIdirectory/DefectResolution/TechnicalCorrigenda/ApprovedTechnicalCorrigendaToX.509/8|X.509-TC3(4th).pdf

You should avoid using characters in the filename that are notcompatible with the Microsoft OS, it makes it harder to download that file.


From the text :
"Bits in the KeyUsage type are as follows:
[...]

c) keyEncipherment: for enciphering keys or other security information,e.g. for key transport;d) dataEncipherment: for enciphering user data, but not keys or othersecurity information as in c) above;

e) keyAgreement: for use as a public key agreement key;"

It's not yet very precise. The contentCommitment bit text got veryclear, so it shows how much we can improve on those bits.


The text by Peter is quite good, how about :

c) keyEncipherment: for enciphering keys or other security information,e.g. for key transport, and also data encryption that uses anintermediate symmetric cipher;d) dataEncipherment: for directly enciphering raw user data, without theuse of an intermediate symmetric ciphere) keyAgreement: for use as a public key agreement key, for example aDiffie-Hellman protocol key;

Shouldn't we best find a way to say that an SSL client requires at aminimum only digitalSignature, but the SSL server must havekeyEncipherment ?


Maybe we should precise :

In practice when someone wishes to send enciphered key or securityinformation, he must check that the recipient has the keyEnciphermentbit set before using his public key to encipher. For example in an SSLhandshake, the client must check that the server has the keyEnciphermentbit set before sending him an enciphered secret, but never needs to havethat bit set in his own certificate, because the server will use hiscertificate only for authentification, not to send enciphered data.

Follow-Ups:
- Re: Technical Corrigenda 3 to the 4th edition of X.509
  - From: Hoyt L Kesterson II

References:
- Technical Corrigenda 3 to the 4th edition of X.509
  - From: Hoyt L Kesterson II

Prev by Date: RE: Comments on <draft-ietf-pkix-crlaia-00.txt>
Next by Date: RE: Structuring Denis issues RE: Comments on <draft-ietf-pkix-crlaia-00.txt>
Previous by thread: Technical Corrigenda 3 to the 4th edition of X.509
Next by thread: Re: Technical Corrigenda 3 to the 4th edition of X.509
Index(es):
- Date
- Thread