New version of PSKC

headers Pei, Mingliang | 2 Sep 2009 21:48

<div>
<div dir="ltr" align="left"><span class="048384019-02092009">The reason is that DerivedKey portion only describe how a 
key is derived for a desired length, not indicating how a key is used. For 
PBES2, the encryption scheme parameter is required. It should either go to 
PKCS#5 parameters, or EncryptionMethod part of the xenc:EncryptedDataType. We 
chose the second one. The encrytion key element contains only the key portion as 
we have been doing, similar to the pre-shared key case. It is consistent. The 
common element EncryptionKey includes the key data information, not the 
encryption algorithm information.</span></div>
<div dir="ltr" align="left">
<span class="048384019-02092009"></span>&nbsp;</div>
<div dir="ltr" align="left"><span class="048384019-02092009">- Ming</span></div>
<br><blockquote dir="ltr">
  <div class="OutlookMessageHeader" lang="en-us" dir="ltr" align="left">
  From: Philip Hoyer 
  [mailto:phoyer@...] <br>Sent: Wednesday, September 02, 
  2009 5:18 AM<br>To: Pei, Mingliang; Hannes.Tschofenig@...; Phillip 
  Hallam-Baker; Salah Machani; Sean Turner<br>Cc: Doherty, Andrea; Magnus 
  Nystr&ouml;m; KEYPROV<br>Subject: RE: New version of 
  PSKC<br><br>
</div>
  <div></div>
  <div dir="ltr">
  <div dir="ltr">Ming and all,</div>
  <div dir="ltr">&nbsp;</div>
  <div dir="ltr">Please see questions and explanation of 
  my perplexion below. Bear with me.</div>
  <div dir="ltr">&nbsp;</div>
  <div dir="ltr">Which MAC key for which 
  example?</div>
  <div dir="ltr">&nbsp;</div>
  <div dir="ltr">My main concern are the PBE examples that 
  you generated and the existing one forget for a moment the namsespace 
  change.</div>
  <div dir="ltr">&nbsp;</div>
  <div dir="ltr">Following are some differences 
  (highlighted in bold):</div>
  <div dir="ltr">&nbsp;</div>
  <div dir="ltr">SPEC ONE:</div>
  <div dir="ltr">Lets start with an extract of the 
  existing one in the spec:</div>
  <div dir="ltr">&nbsp;</div>
  <div dir="ltr">&nbsp;&nbsp;&nbsp; &lt;pskc:MACMethod 
  <br>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
  Algorithm="http://www.w3.org/2000/09/xmldsig#hmac-sha1"&gt;<br>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
  &lt;pskc:MACKey&gt;<br>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
  &lt;xenc:EncryptionMethod 
  <br>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
  Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/&gt;<br>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
  &lt;xenc:CipherData&gt;<br>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
  &lt;xenc:CipherValue&gt;<br>2GTTnLwM3I4e5IO5FkufoNhk05y8DNyOHuSDuRZLn6DhIjoTY/dX4SkUAbQ<br>SWJblA7Dzi031L6FNnUrcjsGGcQ==<br>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
  &lt;/xenc:CipherValue&gt;<br>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
  &lt;/xenc:CipherData&gt;<br>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
  &lt;/pskc:MACKey&gt;<br>&nbsp;&nbsp;&nbsp; &lt;/pskc:MACMethod&gt;</div>
  <div dir="ltr">&nbsp;</div>
  <div dir="ltr">GENERATED ONE:</div>
  <div dir="ltr">&nbsp;</div>
  <p dir="ltr">&lt;pskc:MACMethod Algorithm="http://www.w3.org/2000/09/xmldsig#hmac-sha1"&gt;</p>
  <p dir="ltr">&lt;pskc:MACKey&gt;</p>
  <p dir="ltr">&lt;xenc:EncryptionMethod 
  Algorithm="http://www.rsasecurity.com/rsalabs/pkcs/schemas/pkcs-5#pbes2"&gt;</p>
  <p dir="ltr">&lt;pskc:EncryptionScheme 
  Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/&gt;</p>
  <p dir="ltr">&lt;/xenc:EncryptionMethod&gt;</p>
  <p dir="ltr">&lt;xenc:CipherData&gt;</p>
  <p dir="ltr">&lt;xenc:CipherValue&gt;2GTTnLwM3I4e5IO5FkufoOEiOhNj91fhKRQBtBJYluUDsPOLTfUvoU2dStyOwYZx&lt;/xenc:CipherValue&gt;</p>
  <p dir="ltr">&lt;/xenc:CipherData&gt;</p>
  <p dir="ltr">&lt;/pskc:MACKey&gt;</p>
  <p dir="ltr">&lt;/pskc:MACMethod&gt;</p>
</div>
  <div dir="ltr">&nbsp;</div>
  <div dir="ltr">Now I do not understand why we need EncryptionScheme at all. 
  Should it not be as&nbsp;the&nbsp;one in the spec?</div>
  <div dir="ltr">&nbsp;</div>
  <div dir="ltr">&nbsp;</div>
  <div dir="ltr">I have the same question about EncryptionScheme later in both 
  examples:</div>
  <div dir="ltr">&nbsp;</div>
  <div dir="ltr">&nbsp;</div>
  <div dir="ltr">SPEC ONE:</div>
  <div dir="ltr">&nbsp;</div>
  <div dir="ltr">....</div>
  <div dir="ltr">&lt;pskc:Secret&gt;</div>
  <div dir="ltr">
  <div dir="ltr">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
  &lt;pskc:EncryptedValue 
  Id="ED"&gt;<br>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
  &lt;xenc:EncryptionMethod 
  <br>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
  Algorithm=<br>"http://www.rsasecurity.com/rsalabs/pkcs/schemas/pkcs-5#pbes2"&gt;<br>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
  &lt;pskc:EncryptionScheme<br>Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/&gt;<br>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
  &lt;/xenc:EncryptionMethod&gt;<br>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
  &lt;xenc:CipherData&gt;<br>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
  &lt;xenc:CipherValue&gt;<br>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
  oTvo+S22nsmS2Z/RtcoF8Hfh+jzMe0RkiafpoDpnoZTjPYZu6V+A4aEn032yCr4f<br>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
  &lt;/xenc:CipherValue&gt;<br>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
  &lt;/xenc:CipherData&gt;<br>
</div>
  <div dir="ltr">GENERATED ONE:</div>
  <div dir="ltr">
  <p>ryptedValue&gt;</p>
  <p>&lt;xenc:EncryptionMethod 
  Algorithm="http://www.rsasecurity.com/rsalabs/pkcs/schemas/pkcs-5#pbes2"&gt;</p>
  <p>&lt;pskc:EncryptionScheme 
  Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/&gt;</p>
  <p>&lt;/xenc:EncryptionMethod&gt;</p>
  <p>&lt;xenc:CipherData&gt;</p>
  <p>&lt;xenc:CipherValue&gt;oTvo+S22nsmS2Z/RtcoF8Hfh+jzMe0RkiafpoDpnoZTjPYZu6V+A4aEn032yCr4f&lt;/xenc:CipherValue&gt;</p>
  <p>&lt;/xenc:CipherData&gt;</p>
</div>
  <div dir="ltr">&nbsp;</div>
  <div dir="ltr">
  <div dir="ltr">Why do we need EncryptionScheme at all? Since we know it is a 
  derived key in the main element?</div>
  <div dir="ltr">&nbsp;</div>
  <div dir="ltr">Should these not be like the preshared key one?:</div>
  <div dir="ltr">&nbsp;</div>
  <div dir="ltr">PRE-SHARED-KEY</div>
  <div dir="ltr">&nbsp;</div>
  <div dir="ltr">&lt;Secret&gt;<br>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
  &lt;EncryptedValue&gt;<br>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
  &lt;xenc:EncryptionMethod 
  <br>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
  Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/&gt;<br>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
  &lt;xenc:CipherData&gt;<br>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
  &lt;xenc:CipherValue&gt;<br>&nbsp;&nbsp;&nbsp; 
  AAECAwQFBgcICQoLDA0OD+cIHItlB3Wra1DUpxVvOx2lef1VmNPCMl8jwZqIUqGv<br>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
  &lt;/xenc:CipherValue&gt;<br>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
  &lt;/xenc:CipherData&gt;<br>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
  &lt;/EncryptedValue&gt;<br>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
  &lt;ValueMAC&gt;aSRlEG1agUo0CS2dt/OvIAqQ6Co=&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
  <br>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
  &lt;/ValueMAC&gt;<br>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
  &lt;/Secret&gt;<br>
</div>
</div>
  <div dir="ltr">&nbsp;</div>
  <div dir="ltr">Also should we align the examples that 
  they use prefixed namespace for pskc. e.g. &lt;pskc:element&gt; I rather have 
  default namespace of pskc so that it reads:&nbsp;&lt;element&gt;.</div>
  <div dir="ltr">&nbsp;</div>
  <div dir="ltr">Additional question, should we add the 
  xenc11 import statement to the schema?</div>
  <div dir="ltr">&nbsp;</div>
  <div dir="ltr">Philip</div>
  <div dir="ltr">&nbsp;</div>
</div>
  <div dir="ltr">
<br>From: Pei, Mingliang 
  [mailto:mpei@...]<br>Sent: Wed 02/09/2009 7.43<br>To: 
  Philip Hoyer; Hannes.Tschofenig@...; Phillip Hallam-Baker; Salah Machani; 
  Sean Turner<br>Cc: Doherty, Andrea; Magnus Nystr&ouml;m; 
  KEYPROV<br>Subject: RE: New version of PSKC<br><br>
</div>
  <div>
  <div dir="ltr" align="left"><span class="790313805-02092009">Hi Philip,</span></div>
  <div dir="ltr" align="left">
<span class="790313805-02092009"></span>&nbsp;</div>
  <div dir="ltr" align="left"><span class="790313805-02092009">Please see the forwarded email that includes the examples 
  from my implementation that I sent earlier. The latest draft doesn't seem to 
  have the CipherValue for the MAC key right. Please update it 
  to</span></div>
  <div dir="ltr" align="left">
<span class="790313805-02092009"></span>&nbsp;</div>
  <div dir="ltr" align="left"><span class="790313805-02092009">2GTTnLwM3I4e5IO5FkufoOEiOhNj91fhKRQBtBJYluUDsPOLTfUvoU2dStyOwYZx</span></div>
  <div dir="ltr" align="left">
<span class="790313805-02092009"></span>&nbsp;</div>
  <div dir="ltr" align="left"><span class="790313805-02092009">Thanks,</span></div>
  <div dir="ltr" align="left">
<span class="790313805-02092009"></span>&nbsp;</div>
  <div dir="ltr" align="left"><span class="790313805-02092009">- Ming</span></div>
<br><blockquote dir="ltr">
    <div class="OutlookMessageHeader" lang="en-us" dir="ltr" align="left">
    From: Philip Hoyer 
    [mailto:phoyer@...] <br>Sent: Friday, August 28, 2009 
    9:56 AM<br>To: Hannes.Tschofenig@...; Phillip Hallam-Baker; Pei, 
    Mingliang; Salah Machani; Sean Turner<br>Cc: Doherty, Andrea; Magnus 
    Nystr&ouml;m; KEYPROV<br>Subject: New version of PSKC<br><br>
</div>
    <div></div>
    <div class="Section1">
    <p class="MsoNormal"><span lang="EN-GB">Ladies and 
    Gentlemen,</span></p>
    <p class="MsoNormal"><span lang="EN-GB">Please find attached the new 
    version of PSKC.</span></p>
    <p class="MsoNormal"><span lang="EN-GB"></span>&nbsp;</p>
    <p class="MsoNormal"><span lang="EN-GB">Changes:</span></p>
    <p class="MsoNormal"><span lang="EN-GB"></span>&nbsp;</p>
    <ul type="disc">
<li class="MsoNormal">
<span lang="EN-GB">incorporated all of the 
      feedback from Andrea and Sean.</span> 
      </li>
<li class="MsoNormal">
<span lang="EN-GB">reference name change to the 
      new DerivedKey element (moved to XMLEnc11)</span> 
      </li>
<li class="MsoNormal">
<span lang="EN-GB">Corrected AES example to 
      include (prepend) IV inline with XMLENC spec and mentions IV 
      handling.</span> </li>
</ul>
<p class="MsoNormal"><span lang="EN-GB"></span>&nbsp;</p>
    <p class="MsoNormal"><span lang="EN-GB">I have one big 
    problem:</span></p>
    <p class="MsoNormal"><span lang="EN-GB"></span>&nbsp;</p>
    <p class="MsoNormal"><span lang="EN-GB">The samples that Ming sent out 
    for PBE and RSA do not match the ones in the spec.</span></p>
    <p class="MsoNormal"><span lang="EN-GB"></span>&nbsp;</p>
    <p class="MsoNormal"><span lang="EN-GB">Especially the PBE is different 
    form the one Ming already says was corrected.</span></p>
    <p class="MsoNormal"><span lang="EN-GB"></span>&nbsp;</p>
    <p class="MsoNormal"><span lang="EN-GB">Based on the new XML Enc 1.1 
    spec for PBE and DerivedKeys. Are we sure we are aligned 
    here?</span></p>
    <p class="MsoNormal"><span lang="EN-GB"></span>&nbsp;</p>
    <p class="MsoNormal"><span lang="EN-GB">This is the only thing that 
    needs to be clarified.</span></p>
    <p class="MsoNormal"><span lang="EN-GB"></span>&nbsp;</p>
    <p class="MsoNormal"><span lang="EN-GB">Otherwise,</span></p>
    <p class="MsoNormal"><span lang="EN-GB">What do I need to do 
    now.</span></p>
    <p class="MsoNormal"><span lang="EN-GB"></span>&nbsp;</p>
    <p class="MsoNormal"><span lang="EN-GB">Do I just submit or send to Russ 
    and Pasi directly?</span></p>
    <p class="MsoNormal"><span lang="EN-GB"></span>&nbsp;</p>
    <p class="MsoNormal"><span lang="EN-GB">Philip</span></p>
    <p class="MsoNormal"><span lang="EN-GB"></span>&nbsp;</p>
    <p class="MsoNormal"><span lang="EN-GB"></span>&nbsp;</p>
    <p class="MsoNormal"><span lang="EN-GB">________________________________</span></p>
    <p class="MsoNormal"><span lang="EN-GB"></span>&nbsp;</p>
    <p class="MsoNormal"><span lang="EN-GB">Philip Hoyer 
    </span></p>
    <p class="MsoNormal"><span lang="EN-GB"></span>&nbsp;</p>
    <p class="MsoNormal"><span lang="EN-GB">Senior Architect - 
    Office of CTO</span></p>
    <p class="MsoNormal"><span lang="EN-GB"></span>&nbsp;</p>
    <p class="MsoNormal"><span lang="EN-GB">ActivIdentity 
    (UK)</span></p>
    <p class="MsoNormal"><span lang="EN-GB">117&nbsp;Waterloo 
    Road</span><span lang="EN-GB"></span></p>
    <p class="MsoNormal"><span lang="EN-GB">London</span><span lang="EN-GB"> SE1 
    8UL</span><span lang="EN-GB"></span></p>
    <p class="MsoNormal"><span lang="EN-GB"></span>&nbsp;</p>
    <p class="MsoNormal"><span lang="EN-GB">Telephone: +44 (0) 20 
    7960 0220</span><span lang="EN-GB"></span></p>
    <p class="MsoNormal"><span lang="EN-GB">Fax: +44 (0) 20 7902 
    1985</span><span lang="EN-GB"></span></p>
    <p class="MsoNormal"><span lang="EN-GB"></span>&nbsp;</p>
    <p class="MsoNormal"><span lang="EN-GB">Private and 
    confidential: This message and any attachments may contain</span></p>
    <p class="MsoNormal"><span lang="EN-GB">privileged / 
    confidential information. If you are not an intended 
    recipient,</span></p>
    <p class="MsoNormal"><span lang="EN-GB">you must not copy, 
    distribute, discuss or take any action in reliance on it.</span></p>
    <p class="MsoNormal"><span lang="EN-GB">If you have received 
    this communication in error, please notify the sender</span></p>
    <p class="MsoNormal"><span lang="EN-GB">and delete this message 
    immediately.</span><span lang="EN-GB"></span></p>
    <p class="MsoNormal"><span lang="EN-GB"></span>&nbsp;</p>
</div>
</blockquote>
  </div>
</blockquote>
</div>

Re: New version of PSKC