| rfc9802v2.txt | rfc9802.txt | |||
|---|---|---|---|---|
| skipping to change at line 231 ¶ | skipping to change at line 231 ¶ | |||
| smime(16) alg(3) 17 } | smime(16) alg(3) 17 } | |||
| Note that the id-alg-hss-lms-hashsig algorithm identifier is also | Note that the id-alg-hss-lms-hashsig algorithm identifier is also | |||
| referred to as id-alg-mts-hashsig. This synonym is based on the | referred to as id-alg-mts-hashsig. This synonym is based on the | |||
| terminology used in an early draft of the document that became | terminology used in an early draft of the document that became | |||
| [RFC8554]. | [RFC8554]. | |||
| The public key and signature values identify the hash function and | The public key and signature values identify the hash function and | |||
| the height used in the HSS tree. [RFC8554] and [SP800208] define | the height used in the HSS tree. [RFC8554] and [SP800208] define | |||
| these values, and additional identifiers can be registered in the | these values, and additional identifiers can be registered in the | |||
| “Leighton-Micali Signatures (LMS)” registry [IANA-LMS]. | "Leighton-Micali Signatures (LMS)" registry [IANA-LMS]. | |||
| 4.2. XMSS Algorithm Identifier | 4.2. XMSS Algorithm Identifier | |||
| The AlgorithmIdentifier for an XMSS public key MUST use the id-alg- | The AlgorithmIdentifier for an XMSS public key MUST use the id-alg- | |||
| xmss-hashsig OID. | xmss-hashsig OID. | |||
| id-alg-xmss-hashsig OBJECT IDENTIFIER ::= { | id-alg-xmss-hashsig OBJECT IDENTIFIER ::= { | |||
| iso(1) identified-organization(3) dod(6) internet(1) | iso(1) identified-organization(3) dod(6) internet(1) | |||
| security(5) mechanisms(5) pkix(7) algorithms(6) 34 } | security(5) mechanisms(5) pkix(7) algorithms(6) 34 } | |||
| The public key and signature values identify the hash function and | The public key and signature values identify the hash function and | |||
| the height used in the XMSS tree. [RFC8391] and [SP800208] define | the height used in the XMSS tree. [RFC8391] and [SP800208] define | |||
| these values, and additional identifiers can be registered in the | these values, and additional identifiers can be registered in the | |||
| “Leighton-Micali Signatures (LMS)” registry [IANA-XMSS]. | "Leighton-Micali Signatures (LMS)" registry [IANA-XMSS]. | |||
| 4.3. XMSS^MT Algorithm Identifier | 4.3. XMSS^MT Algorithm Identifier | |||
| The AlgorithmIdentifier for an XMSS^MT public key MUST use the id- | The AlgorithmIdentifier for an XMSS^MT public key MUST use the id- | |||
| alg-xmssmt-hashsig OID. | alg-xmssmt-hashsig OID. | |||
| id-alg-xmssmt-hashsig OBJECT IDENTIFIER ::= { | id-alg-xmssmt-hashsig OBJECT IDENTIFIER ::= { | |||
| iso(1) identified-organization(3) dod(6) internet(1) | iso(1) identified-organization(3) dod(6) internet(1) | |||
| security(5) mechanisms(5) pkix(7) algorithms(6) 35 } | security(5) mechanisms(5) pkix(7) algorithms(6) 35 } | |||
| The public key and signature values identify the hash function and | The public key and signature values identify the hash function and | |||
| the height used in the XMSS^MT tree. [RFC8391] and [SP800208] define | the height used in the XMSS^MT tree. [RFC8391] and [SP800208] define | |||
| these values, and additional identifiers can be registered in the | these values, and additional identifiers can be registered in the | |||
| “Leighton-Micali Signatures (LMS)” registry [IANA-XMSS]. | "Leighton-Micali Signatures (LMS)" registry [IANA-XMSS]. | |||
| 5. Public Key Identifiers | 5. Public Key Identifiers | |||
| Certificates conforming to [RFC5280] can convey a public key for any | Certificates conforming to [RFC5280] can convey a public key for any | |||
| public key algorithm. The certificate indicates the algorithm | public key algorithm. The certificate indicates the algorithm | |||
| through an algorithm identifier. An algorithm identifier consists of | through an algorithm identifier. An algorithm identifier consists of | |||
| an OID and optional parameters. | an OID and optional parameters. | |||
| [RFC8554] defines the encoding of HSS public keys, and [RFC8391] | [RFC8554] defines the encoding of HSS public keys, and [RFC8391] | |||
| defines the encodings of XMSS and XMSS^MT public keys. When used in | defines the encodings of XMSS and XMSS^MT public keys. When used in | |||
| skipping to change at line 675 ¶ | skipping to change at line 675 ¶ | |||
| February 2021, <https://www.itu.int/rec/T-REC-X.690>. | February 2021, <https://www.itu.int/rec/T-REC-X.690>. | |||
| 13.2. Informative References | 13.2. Informative References | |||
| [ANSSI] Agence nationale de la sécurité des systèmes d'information | [ANSSI] Agence nationale de la sécurité des systèmes d'information | |||
| (ANSSI), "ANSSI views on the Post-Quantum Cryptography | (ANSSI), "ANSSI views on the Post-Quantum Cryptography | |||
| transition (2023 follow up)", 21 December 2023, | transition (2023 follow up)", 21 December 2023, | |||
| <https://cyber.gouv.fr/sites/default/files/document/follow | <https://cyber.gouv.fr/sites/default/files/document/follow | |||
| _up_position_paper_on_post_quantum_cryptography.pdf>. | _up_position_paper_on_post_quantum_cryptography.pdf>. | |||
| [BH16] Bruinderink, L. and S. Hülsing, "Oops, I did it again – | [BH16] Bruinderink, L. and S. Hülsing, "Oops, I did it again - | |||
| Security of One-Time Signatures under Two-Message | Security of One-Time Signatures under Two-Message | |||
| Attacks.", Cryptology ePrint Archive, Paper 2016/1042, | Attacks.", Cryptology ePrint Archive, Paper 2016/1042, | |||
| 2016, <https://eprint.iacr.org/2016/1042>. | 2016, <https://eprint.iacr.org/2016/1042>. | |||
| [BSI] Bundesamt für Sicherheit in der Informationstechnik (BSI), | [BSI] Bundesamt für Sicherheit in der Informationstechnik (BSI), | |||
| "Quantum-safe cryptography – fundamentals, current | "Quantum-safe cryptography - fundamentals, current | |||
| developments and recommendations", 18 May 2022, | developments and recommendations", 18 May 2022, | |||
| <https://www.bsi.bund.de/SharedDocs/Downloads/EN/BSI/ | <https://www.bsi.bund.de/SharedDocs/Downloads/EN/BSI/ | |||
| Publications/Brochure/quantum-safe-cryptography.pdf>. | Publications/Brochure/quantum-safe-cryptography.pdf>. | |||
| [CNSA2.0] National Security Agency (NSA), "The Commercial National | [CNSA2.0] National Security Agency (NSA), "The Commercial National | |||
| Security Algorithm Suite 2.0 and Quantum Computing FAQ", 7 | Security Algorithm Suite 2.0 and Quantum Computing FAQ", 7 | |||
| September 2022, <https://media.defense.gov/2022/ | September 2022, <https://media.defense.gov/2022/ | |||
| Sep/07/2003071836/-1/-1/0/CSI_CNSA_2.0_FAQ_.PDF>. | Sep/07/2003071836/-1/-1/0/CSI_CNSA_2.0_FAQ_.PDF>. | |||
| [ETSI-TR-103-692] | [ETSI-TR-103-692] | |||
| End of changes. 5 change blocks. | ||||
| 5 lines changed or deleted | 5 lines changed or added | |||
This html diff was produced by rfcdiff 1.48. | ||||