[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: I-D ACTION:draft-ietf-smime-cms-auth-enveloped-01.txt

To: turners@xxxxxxxx
Subject: RE: I-D ACTION:draft-ietf-smime-cms-auth-enveloped-01.txt
From: Russ Housley <housley@xxxxxxxxxxxx>
Date: Tue, 13 Feb 2007 12:55:40 -0500
Cc: ietf-smime@xxxxxxx
In-reply-to: <>
List-archive: <http://www.imc.org/ietf-smime/mail-archive/>
List-id: <ietf-smime.imc.org>
List-unsubscribe: <mailto:ietf-smime-request@imc.org?body=unsubscribe>
References: <E1HBzvW-0008He-45@xxxxxxxxxxxxxxxxxxxxxx> <>
Sender: owner-ietf-smime@xxxxxxxxxxxx


Sean:

Two comments/questions:

Sec 2.1: Don't we need an algorithm identifier for the mac algorithm?


No.  Authenticated encryption provides both.  Please see
draft-ietf-smime-cms-aes-ccm-and-gcm-00.txt to see two examples.

Sec 2.1: Since the mac description says a digest is not used should we say
in the authAttrs description that the message digest attribute must not be
included if authenticated attributes are included (9.1 requires message
digest if authenticated attributes are used)?


Yes.  That is a good improvement.

Russ

Follow-Ups:
- RE: I-D ACTION:draft-ietf-smime-cms-auth-enveloped-01.txt
  - From: Turner, Sean P.

References:
- I-D ACTION:draft-ietf-smime-cms-auth-enveloped-01.txt
  - From: Internet-Drafts
- RE: I-D ACTION:draft-ietf-smime-cms-auth-enveloped-01.txt
  - From: Turner, Sean P.

Prev by Date: RE: I-D ACTION:draft-ietf-smime-cms-auth-enveloped-01.txt
Next by Date: RE: I-D ACTION:draft-ietf-smime-cms-auth-enveloped-01.txt
Previous by thread: RE: I-D ACTION:draft-ietf-smime-cms-auth-enveloped-01.txt
Next by thread: RE: I-D ACTION:draft-ietf-smime-cms-auth-enveloped-01.txt
Index(es):
- Date
- Thread