Presentation is loading. Please wait.

Presentation is loading. Please wait.

Dan Brown, Certicom Research November 10, 2004

Published byViolet Greer Modified over 6 years ago

Similar presentations

Presentation on theme: "Dan Brown, Certicom Research November 10, 2004"— Presentation transcript:

1 Dan Brown, Certicom Research November 10, 2004
Additional Algorithms and Identifiers for Elliptic Curve Cryptography in PKIX Dan Brown, Certicom Research November 10, 2004

2 Purpose of I-D New algorithm identifiers for:
NIST recommended curves (FIPS 186-2) New random curve generation ECDSA with new SHAs ECDH & ECMQV with new SHAs Key derivation, wrap & confirmation Restricting certificates to certain algorithms November 10, 2004 New-ECC-in-PKIX

3 Parallel Standardization
Revision of ANSI X9.62 (ECDSA) New ECDSA syntax (but no key management) Additional Algs and Ids for RSA in PKIX New SHAs, New Algs (OAEP, PSS) November 10, 2004 New-ECC-in-PKIX

4 NIST Recommended Curves
FIPS recommended 15 curves Old curves named in: Old X RFC 3279 Some old curves have potential security problems: e.g. defined over GF(2m) with m composite November 10, 2004 New-ECC-in-PKIX

5 New Random Curve Generation
The base point generator G can now be derived randomly from a seed Reason: mainly as a precautionary measure Requires update to EC domain syntax November 10, 2004 New-ECC-in-PKIX

6 ECDSA with New SHAs FIPS defines SHA-224, SHA-256, SHA-384 and SHA-512 X9.62 requires hash for message digesting be determined from EC key size Except in backwards compatibility mode where SHA-1 can be used New syntax is even more flexible November 10, 2004 New-ECC-in-PKIX

7 New ECDSA Algorithm Identification
OID ecdsa-with-Recommended (with no parameters) means to use new X9.62 required hash (function of key size) OID ecdsa-with-Sha1 for backwards compatible mode OID ecdsa-with-Specified allows for other combinations (just for flexibility) November 10, 2004 New-ECC-in-PKIX

8 ECDH and ECMQV ECDH and ECMQV are used in RFC 3278 (an Informational in S/MIME) Old syntax from X9.63 (SHA1 only) New syntax needed for new SHAs Perhaps for new KDFs (NIST Sp ) Perhaps for new key confirmation (800-56) Perhaps for new key wraps November 10, 2004 New-ECC-in-PKIX

9 Algorithm Restriction
Current cert key usage restrictions very general (signing, encrypting, etc) Finer algorithm restrictions may be needed Algorithm restrictions with a new Alg. Id. in SubjectPublicKeyInfo algorithm for: Elliptic curve Set of ECC algorithms November 10, 2004 New-ECC-in-PKIX

Download ppt "Dan Brown, Certicom Research November 10, 2004"

Similar presentations

Doc.: IEEE 802.11-09/1012r0 Submission September 2009 Dan Harkins, Aruba NetworksSlide 1 Suite-B Compliance for a Mesh Network Date: 2009-09-15 Authors:

Doc.: IEEE /1012r0 Submission September 2009 Dan Harkins, Aruba NetworksSlide 1 Suite-B Compliance for a Mesh Network Date: Authors:
FIPS 201 Framework: Special Pubs 800-73,76,78 Jim Dray HSPD-12 Workshop May 4/5, 2005.

FIPS 201 Framework: Special Pubs ,76,78 Jim Dray HSPD-12 Workshop May 4/5, 2005.
Fundamental Elliptic Curve Cryptography Algorithms draft-mcgrew-fundamental-ecc-02

Fundamental Elliptic Curve Cryptography Algorithms draft-mcgrew-fundamental-ecc-02
Cryptography and Network Security

Cryptography and Network Security
Crypto Agility and Key Wrap Attributes for RADIUS Glen Zorn Joe Salowey Hao Zhou Dan Harkins.

Crypto Agility and Key Wrap Attributes for RADIUS Glen Zorn Joe Salowey Hao Zhou Dan Harkins.
JOSE Open Issue Discussion Chairs Jim Schaad. Process Room vote for Closure – Three Choices for topics We adopt the change We reject the change We discuss.

JOSE Open Issue Discussion Chairs Jim Schaad. Process Room vote for Closure – Three Choices for topics We adopt the change We reject the change We discuss.
Dr Alejandra Flores-Mosri Message Authentication Internet Management & Security 06 Learning outcomes At the end of this session, you should be able to:

Dr Alejandra Flores-Mosri Message Authentication Internet Management & Security 06 Learning outcomes At the end of this session, you should be able to:
SHA (secure hash algorithm) Jen-Chang Liu, 2005 Adapted from lecture slides by Lawrie Brown.

SHA (secure hash algorithm) Jen-Chang Liu, 2005 Adapted from lecture slides by Lawrie Brown.
Cryptography and Network Security Chapter 12 Fourth Edition by William Stallings Lecture slides by Lawrie Brown.

Cryptography and Network Security Chapter 12 Fourth Edition by William Stallings Lecture slides by Lawrie Brown.
Cryptography1 CPSC 3730 Cryptography Chapter 13 Digital Signature Standard (DSS)

Cryptography1 CPSC 3730 Cryptography Chapter 13 Digital Signature Standard (DSS)
S/MIME v3.2 draft-ietf-smime-3850bis-00.txt draft-ietf-smime-3851bis-00.txt Sean Turner Blake Ramsdell.

S/MIME v3.2 draft-ietf-smime-3850bis-00.txt draft-ietf-smime-3851bis-00.txt Sean Turner Blake Ramsdell.
Cryptography and Network Security Chapter 15 Fourth Edition by William Stallings Lecture slides by Lawrie Brown.

Cryptography and Network Security Chapter 15 Fourth Edition by William Stallings Lecture slides by Lawrie Brown.
Strong Cryptographic Infrastructure and its Applications Dr Lucas Hui Center for Information Security & Cryptography Department of Computer Science & Information.

Strong Cryptographic Infrastructure and its Applications Dr Lucas Hui Center for Information Security & Cryptography Department of Computer Science & Information.
1 Workshop on algorithms and parameters for Electronic Signatures November 25, 2004. Brussels.

1 Workshop on algorithms and parameters for Electronic Signatures November 25, Brussels.
CMS Interoperability Matrix Jim Schaad Soaring Hawk Security.

CMS Interoperability Matrix Jim Schaad Soaring Hawk Security.
Digital Signatures: Mathematics Zdeněk Říha. Data authentication Data integrity + data origin Digital signature Asymmetric cryptography public and private.

Digital Signatures: Mathematics Zdeněk Říha. Data authentication Data integrity + data origin Digital signature Asymmetric cryptography public and private.
1 Optimal Mail Certificates in Mail Payment Applications Leon Pintsov Pitney Bowes 2nd CACR Information Security Workshop 31 March 1999.

1 Optimal Mail Certificates in Mail Payment Applications Leon Pintsov Pitney Bowes 2nd CACR Information Security Workshop 31 March 1999.
Key Management Workshop November 1-2, 2001. 3. Cryptographic Algorithms, Keys, and other Keying Material  Approved cryptographic algorithms  Security.

Key Management Workshop November 1-2, Cryptographic Algorithms, Keys, and other Keying Material  Approved cryptographic algorithms  Security.
PKCS #1 v2.1: RSA Cryptography Standard

PKCS #1 v2.1: RSA Cryptography Standard
Thursday, October 15, 2015 Securing the Wireless World.

Thursday, October 15, 2015 Securing the Wireless World.

Similar presentations

Ads by Google