Brian Tung Issues List by Jeff Hutzelman

Slides:



Advertisements
Similar presentations
A Profile for Trust Anchor Material for the Resource Certificate PKI Geoff Huston SIDR WG IETF 74.
Advertisements

Dynamic Symmetric Key Provisioning Protocol (DSKPP)
CSCE 815 Network Security Lecture 10 KerberosX.509 February 13, 2003.
Pk-init-21.txt Brian Tung Issues Believed Closed 499 (007): Refs1510bis  Clarifications 513 (021): Context tag inconsistency in TrustedCAs.
SIP Working Group Jonathan Rosenberg dynamicsoft.
Cryptography and Network Security Third Edition by William Stallings Lecture slides by Lawrie Brown.
Side Channel Attacks on CBC Encrypted Messages in the PKCS#7 Format
SIP issues with S/MIME and CMS Rohan Mahy SIP, SIPPING co-chair.
Csci5233 Computer Security1 Bishop: Chapter 10 (Cont.) Key Management: Certificates.
Overview of draft-ietf-sidr-roa-format-01.txt Matt Lepinski BBN Technologies.
AUTHENTICATION APPLICATIONS - Chapter 14 Kerberos X.509 Directory Authentication (S/MIME)
Kerberos and PKI Cooperation Daniel Kouřil, Luděk Matyska, Michal Procházka Masaryk University AFS & Kerberos Best Practices Workshop 2006.
EECC694 - Shaaban #1 lec #16 Spring Properties of Secure Network Communication Secrecy: Only the sender and intended receiver should be able.
CA Key 1 Created OCSP Cert 1 Client Cert 1 Client Cert 2 OCSP Cert 2 CA Key 2 Created CA Key 1 Expiration OCSP Cert 3 Client Cert.
Henric Johnson1 Electronic mail security Henric Johnson Blekinge Institute of Technology, Sweden
Russ Housley IETF Chair Founder, Vigil Security, LLC 8 June 2009 NIST Key Management Workshop Key Management in Internet Security Protocols.
1 Update on draft-ietf-smime-cades Current Status Completed last call. Under review by IESG. Comments to be incorporated: –From Pavel Smirnov (during.
S/MIME and CMS Presentation for CSE712 By Yi Wen Instructor: Dr. Aidong Zhang.
TLS 1.2 and NIST SP A Tim Polk November 10, 2006.
XML Signature Prabath Siriwardena Director, Security Architecture.
1 Section 10.9 Internet Security Association and Key Management Protocol ISAKMP.
Presence Data Model Jonathan Rosenberg. Changes in -02 Split out data and processing models Allow multiple devices, services, person with same URI/device.
1 Chapter 5 Electronic mail security. 2 Outline Pretty good privacy S/MIME Recommended web sites.
Michael Myers VeriSign, Inc.
1 SeGW Certificate profile (Revised) 3GPP2 TSG-S WG4 /TSG-X WG5 (PDS) S X xx Source: QUALCOMM Incorporated Contact(s): Anand.
SHIM6 Protocol Drafts Overview Geoff Huston, Marcelo Bagnulo, Erik Nordmark.
Security (and privacy) Larry Rudolph With help from Srini Devedas, Dwaine Clark.
S/MIME and Certs Cullen Jennings
Disman – IETF 56 Alarm MIB Sharon Chisholm Dan Romascanu
Copyright 2002, USC/ISI. All rights reserved. Kerberos Clarifications and Extensions Status Dr. Clifford Neuman Center for Computer Systems Security Information.
1 Virtual Router Redundancy Protocol (VRRP) San Francisco IETF VRRP Working Group March 2003 San Francisco IETF Mukesh Gupta / Nokia Chair.
CMC and PKI4IPSEC Jim Schaad. Requirements Issues What does MAY really mean What does SHOULD really mean Requirements on Admin Peer Requirements on structure.
AUTHENTICATION APPLICATIONS - Chapter 14 Kerberos X.509 Directory Authentication (S/MIME)
Prominent Changes To the CPP/A Specification January 28, 2002.
EMU and DANE Jim Schaad August Cellars. EMU TLS Issues Trust Anchor Matching PKIX cert to EMU Server Name Certificate Revocation Checking – CRLs – OCSP.
1 APNIC Trial of Certification of IP Addresses and ASes RIPE October 2005 Geoff Huston.
LTANS WG: ERS November 7, 2005 Tobias Gondrom. LTANS WG (ltans): ERS Draft straightened up Corrected ERS (feedback from Peter and Carl) Prepared for WG.
Overview of draft-ietf-sidr-roa-00.txt Steve Kent BBN Technologies.
Session Traversal Utilities for NAT (STUN) IETF-92 Dallas, March 26, 2015 draft-ietf-tram-stunbis Marc Petit-Huguenin, Gonzalo Salgueiro.
WLCG Authentication & Authorisation LHCOPN/LHCONE Rome, 29 April 2014 David Kelsey STFC/RAL.
Application support functions Chapter Introduction ASN.1 Security Data encryption Nonrepudiation Authentication Public key certification authorities.
©2009 HP Confidential1 Proposal to OASIS KMIP TC Stan Feather and Indra Fitzgerald Hewlett-Packard Co. 26 October, 2010 Encoding Options for Key Wrap of.
SMIv2 Translation to YANG Jürgen Schönwälder Jacobs University IETF 80 - NETMOD WG MEETING draft-schoenw-netmod-smi-yang-02.
December 14, 2000Securely Available Credentails (SACRED) - Framework Draft 1 Securely Available Credentials (SACRED) Protocol Framework, Draft Specification.
Caller Preferences Jonathan Rosenberg dynamicsoft.
KeyProv PSKC Specification Philip Hoyer Mingliang Pei Salah Machani 74 nd IETF meeting, San Francisco Nov
Keyprov PSKC spec Philip Hoyer 71-st IETF, Philadelphia.
ECC Design Team: Initial Report Brian Minard, Tolga Acar, Tim Polk November 8, 2006.
Keyprov PSKC spec Philip Hoyer 71-st IETF, Philadelphia.
Revocation in WebPKI Phill Hallam-Baker Comodo. Standards intersection PKIX OTHER.
Doc.: Submission February 5, 2013 René Struik (Struik Security Consultancy)Slide 1 FILS Handling of Large Objects Date: Authors:
SCVP-28 Tim Polk November 8, Current Status Draft -27 was submitted in June ‘06 –AD requested a revised ID 8/11 –No related discussion on list –Editors.
@Yuan Xue CS 285 Network Security Key Distribution and Management Yuan Xue Fall 2012.
IEEE SISWG (P1619.3)‏ Messaging & Transport. AGENDA Transport Protocols & Channel Protection Messaging Layer Capability Exchange & Authentication Groups.
9/21/2016 Presentation layer Abstract Syntax Notation #1 Basic Encoding Rules.
SCVP 18 Tim Polk. Mea Culpa ● Draft -19 omits some promised changes from the March IETF meeting – Document management problems compounded by ID submission.
Document update - what has happened since GGF11
IPv6 over MS/TP Networks
The ITU-T X.500 series and X.509 in a changing world
ASN.1: Introduction Zdeněk Říha.
Updated SBSP draft-birrane-dtn-sbsp-01.txt Edward Birrane
Voucher and Voucher Revocation Profiles for Bootstrapping Protocols draft-kwatsen-netconf-voucher-00 NETCONF WG IETF 97 (Seoul)
IKEv2 Mobility and Multihoming Protocol (MOBIKE)
LTANS WG: ERS Status July 10, 2006 Tobias Gondrom.
News from the wonderful world of directories
November 2018 Project: IEEE P Working Group for Wireless Personal Area Networks (WPANs) Submission Title: [SG SECN Amendment text] Date Submitted:
Job Attribute and Event Monitoring Methods
Counter With Cipher Block Chaining-MAC
OCSP Requirements GGF13.
Presentation transcript:

Brian Tung brian@isi.edu Issues List by Jeff Hutzelman PKINIT20 Brian Tung brian@isi.edu Issues List by Jeff Hutzelman

Major Issues OPEN 013 – OCSP and optional revocation information Merge spec into PKINIT or submit as separate draft? OPEN 017 - DH key derivation OPEN 031 - Which encoding - DER vs BER? (Love #2) DER would be consistent, but some objects could be BER? OPEN 035 – Wrap CMS objects in OCTET STRINGs? Change to on-the-wire protocol? Does using IMPLICIT OCTET STRING avoid this?

Questions OPEN 020 - Unauthenticated plaintext issues OPEN 028 - Nonce type? Does this have to do with recommended sizes for nonce? Check for consistency with clarifications? XXXX 030 - What key should the reply be enveloped with in the encKey case? (Love #1) OPEN 034 - subjectAltName/OtherName issues (Love #7) Changed again with PKINIT20

More Questions NEW 038 - DH groups selection Move from RFC 2409 groups 1/2 to RFC 3526 OPEN 039 - Root CA cert in chain? OPEN 040 - encryption certificate change not protected Does this refer to removing legacy text?

Editorial DONE 002 - REMOVE use of raw public keys XXXX 004 - Security of cached DH values and use of a nonce Zero nonce OK? XXXX 005 - Confirm alignment with CMS OPEN 007 - Confirm alignment with clarifications What remains? OPEN 009 - Update PA types

More Editorial OPEN 021 - TrustedCAs context tags broken (Love #5) Does anything remain? OPEN 024 - cname mapping proposal Did Larry submit a mapping proposal? OPEN 026 - Unconstrained Integers (Love #6) Is this related to nonce type issue? (028) NEW 037 - ASN.1 module inconsistency

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.