Presentation is loading. Please wait.

Presentation is loading. Please wait.

Jim Schaad August Cellars

Published byJosiane Lebel Modified over 5 years ago

Similar presentations

Presentation on theme: "Jim Schaad August Cellars"— Presentation transcript:

1 Jim Schaad August Cellars
JOSE Feature Set Jim Schaad August Cellars

2 Capability List from CMS (1)
One Pass Processing (I,E) Interior Content Identification (I,E) Content encoding methods (I,E) Parallel Signatures (I) Protected Attributes (I,E) Unprotected Attributes (I,E) How much effort are we looking at for processing during the serialization process? Is interior content identification a suggestion or somehow a unique requirement? What methods of encoding of content are going to be allowed? Encapsulated, Detached, Embedded – one response saying not embedded The ALTO group is currently defining a detached method where the content is in the body and the HTTP header has the sign header and value info Are parallel signatures allowed in an integrity object. There exist ways to do this. If this is supported is it going to depend if we are looking at a signature or a MAC algorithm being applied to the object? Are we supporting the ability to have signed or authenticated attributes for both the integrity protected and the encrypted formats – AEAD algorithms such as GCM are called for but not fully utilized.

3 Capability List from CMS (2)
Multiple Recipients (I, E) Recipient Encryption Methods (I, E) Key Transport (RSA) Key Agreement (ECDH) Static-static, ephemeral-static, ephemeral-ephemeral Pre-Shared Secret w/o Key Derivation Pre-Shared Secret w/ Key Derivation (Password) Other (IBE, Plasma) Using HMAC or Encryption can we setup for multiple recipients to have different keys and get the message?

4 Capability List from CMS (3)
Recipient/Signer Identification (I, E) Re-serialization (I) Currently support URL and hash, what about the traditional issuer/signer option? Do we want to allow for re-serialization of content –implies some degree of canonization, but may be required if we want to allow for detached contents. This is a very hard problem as was found in XML, only slightly less of a problem for S/MIME

5 Discussion?

Download ppt "Jim Schaad August Cellars"

Similar presentations

Public Key Infrastructure A Quick Look Inside PKI Technology Investigation Center 3/27/2002.

Public Key Infrastructure A Quick Look Inside PKI Technology Investigation Center 3/27/2002.
Spring 2012: CS419 Computer Security Vinod Ganapathy SSL, etc.

Spring 2012: CS419 Computer Security Vinod Ganapathy SSL, etc.
XML Encryption Prabath Siriwardena Director, Security Architecture.

XML Encryption Prabath Siriwardena Director, Security Architecture.
Socket Layer Security. In this Presentation: need for web security SSL/TLS transport layer security protocols HTTPS secure shell (SSH)

Socket Layer Security. In this Presentation: need for web security SSL/TLS transport layer security protocols HTTPS secure shell (SSH)
JOSE Open Issue Discussion Chairs Jim Schaad. Process Room vote for Closure – Three Choices for topics We adopt the change We reject the change We discuss.

JOSE Open Issue Discussion Chairs Jim Schaad. Process Room vote for Closure – Three Choices for topics We adopt the change We reject the change We discuss.
Lecture 22 Internet Security Protocols and Standards modified from slides of Lawrie Brown.

Lecture 22 Internet Security Protocols and Standards modified from slides of Lawrie Brown.
Information Security. Information Security Requirements Confidentiality: Protection from disclosure to unauthorised persons Access control: Unauthorised.

Information Security. Information Security Requirements Confidentiality: Protection from disclosure to unauthorised persons Access control: Unauthorised.
Key Management Guidelines. 1. Introduction 2. Glossary of Terms and Acronyms 3. Cryptographic Algorithms, Keys and Other Keying Material 4. Key Management.

Key Management Guidelines. 1. Introduction 2. Glossary of Terms and Acronyms 3. Cryptographic Algorithms, Keys and Other Keying Material 4. Key Management.
Digital Signature Xiaoyan Guo/102587 Xiaohang Luo/104446.

Digital Signature Xiaoyan Guo/ Xiaohang Luo/
Announcement Final exam: Wed, June 9, 9:30-11:18 Scope: materials after RSA (but you need to know RSA) Open books, open notes. Calculators allowed. 1.

Announcement Final exam: Wed, June 9, 9:30-11:18 Scope: materials after RSA (but you need to know RSA) Open books, open notes. Calculators allowed. 1.
CSCI 6962: Server-side Design and Programming

CSCI 6962: Server-side Design and Programming
Electronic Mail Security

Electronic Mail Security
S/MIME and CMS Presentation for CSE712 By Yi Wen Instructor: Dr. Aidong Zhang.

S/MIME and CMS Presentation for CSE712 By Yi Wen Instructor: Dr. Aidong Zhang.
Behzad Akbari Spring 2012 (These slides are based on lecture slides by Lawrie Brown)

Behzad Akbari Spring 2012 (These slides are based on lecture slides by Lawrie Brown)
Key Management with the Voltage Data Protection Server Luther Martin IEEE P1619.3 May 7, 2007.

Key Management with the Voltage Data Protection Server Luther Martin IEEE P May 7, 2007.
WS-Security: SOAP Message Security Web-enhanced Information Management (WHIM) Justin R. Wang Professor Kaiser.

WS-Security: SOAP Message Security Web-enhanced Information Management (WHIM) Justin R. Wang Professor Kaiser.
Key Management Workshop November 1-2, 2001. 3. Cryptographic Algorithms, Keys, and other Keying Material  Approved cryptographic algorithms  Security.

Key Management Workshop November 1-2, Cryptographic Algorithms, Keys, and other Keying Material  Approved cryptographic algorithms  Security.
Web Services Security Standards Overview for the Non-Specialist Hal Lockhart Office of the CTO BEA Systems.

Web Services Security Standards Overview for the Non-Specialist Hal Lockhart Office of the CTO BEA Systems.
Network Security Essentials Chapter 5

Network Security Essentials Chapter 5
COSE Overview Jim Schaad August Cellars. Willing Changes No crypto compatibility Use of CBOR idioms Partial change of naming schemes.

COSE Overview Jim Schaad August Cellars. Willing Changes No crypto compatibility Use of CBOR idioms Partial change of naming schemes.

Similar presentations

Ads by Google