Skip to main content

Asymmetric Key Packages
draft-turner-asymmetrickeyformat-05

Revision differences

Document history

Date Rev. By Action
2020-01-21
05 (System) Received changes through RFC Editor sync (added Verified Errata tag)
2015-10-14
05 (System) Notify list changed from fluffy@cisco.com, turners@ieca.com, draft-turner-asymmetrickeyformat@ietf.org, cwallace@cygnacom.com to fluffy@cisco.com, cwallace@cygnacom.com
2012-08-22
05 (System) post-migration administrative database adjustment to the No Objection position for Peter Saint-Andre
2012-08-22
05 (System) post-migration administrative database adjustment to the No Objection position for Lars Eggert
2012-08-22
05 (System) post-migration administrative database adjustment to the No Objection position for Russ Housley
2010-08-24
05 Cindy Morgan [Note]: changed to 'RFC 5958' by Cindy Morgan
2010-08-24
05 Cindy Morgan State changed to RFC Published from RFC Ed Queue by Cindy Morgan
2010-08-23
05 (System) RFC published
2010-05-12
05 Amy Vezza State Changes to RFC Ed Queue from Approved-announcement sent by Amy Vezza
2010-05-11
05 (System) IANA Action state changed to RFC-Ed-Ack from Waiting on RFC Editor
2010-05-11
05 (System) IANA Action state changed to Waiting on RFC Editor from In Progress
2010-05-11
05 (System) IANA Action state changed to In Progress from Waiting on Authors
2010-05-11
05 (System) IANA Action state changed to Waiting on Authors from In Progress
2010-05-10
05 (System) IANA Action state changed to In Progress
2010-05-10
05 Amy Vezza IESG state changed to Approved-announcement sent
2010-05-10
05 Amy Vezza IESG has approved the document
2010-05-10
05 Amy Vezza Closed "Approve" ballot
2010-05-10
05 Amy Vezza State Changes to Approved-announcement to be sent from IESG Evaluation::AD Followup by Amy Vezza
2010-05-05
05 Russ Housley [Ballot Position Update] Position for Russ Housley has been changed to No Objection from Discuss by Russ Housley
2010-04-23
05 (System) Removed from agenda for telechat - 2010-04-22
2010-04-22
05 Cindy Morgan State Changes to IESG Evaluation::AD Followup from IESG Evaluation by Cindy Morgan
2010-04-22
05 Peter Saint-Andre [Ballot Position Update] Position for Peter Saint-Andre has been changed to No Objection from Discuss by Peter Saint-Andre
2010-04-22
05 Adrian Farrel [Ballot Position Update] New position, No Objection, has been recorded by Adrian Farrel
2010-04-22
05 Alexey Melnikov [Ballot Position Update] Position for Alexey Melnikov has been changed to No Objection from Discuss by Alexey Melnikov
2010-04-22
05 Alexey Melnikov [Ballot comment]
2010-04-22
05 Alexey Melnikov [Ballot discuss]
2010-04-22
05 Gonzalo Camarillo [Ballot Position Update] New position, No Objection, has been recorded by Gonzalo Camarillo
2010-04-22
05 Dan Romascanu [Ballot Position Update] New position, No Objection, has been recorded by Dan Romascanu
2010-04-22
05 Jari Arkko [Ballot Position Update] New position, No Objection, has been recorded by Jari Arkko
2010-04-21
05 Russ Housley
[Ballot comment]
Please consider the media-subtype-related comment from the Gen-ART
  Review by Roni Even:

  In section 7 what you are registering is a …
[Ballot comment]
Please consider the media-subtype-related comment from the Gen-ART
  Review by Roni Even:

  In section 7 what you are registering is a media subtype and not a
  media type. The media type is application. So "defines a new media
  type" should be "defines a new media subtype" and "Registration of
  media type" should be "Registration of media subtype".
2010-04-21
05 Russ Housley
[Ballot discuss]
I tried to compile the ASN.1 and got errors.  First, 'Attribute' is
  being imported from module 'PKIX-CommonTypes-2009' but is not
  exported …
[Ballot discuss]
I tried to compile the ASN.1 and got errors.  First, 'Attribute' is
  being imported from module 'PKIX-CommonTypes-2009' but is not
  exported by module 'PKIX-CommonTypes-2009'.  Second, this line
  contains a syntax error:

  Version ::= INTEGER {v1(0), v2(1)} (v1, ..., v2, ...)
2010-04-21
05 Russ Housley [Ballot Position Update] New position, Discuss, has been recorded by Russ Housley
2010-04-21
05 Ron Bonica [Ballot Position Update] New position, No Objection, has been recorded by Ron Bonica
2010-04-21
05 Robert Sparks [Ballot Position Update] New position, No Objection, has been recorded by Robert Sparks
2010-04-21
05 Stewart Bryant [Ballot Position Update] New position, No Objection, has been recorded by Stewart Bryant
2010-04-19
05 Peter Saint-Andre [Ballot discuss]
I second Alexey's discuss.
2010-04-19
05 Peter Saint-Andre [Ballot Position Update] New position, Discuss, has been recorded by Peter Saint-Andre
2010-04-19
05 Tim Polk State Changes to IESG Evaluation from Waiting for AD Go-Ahead by Tim Polk
2010-04-19
05 Lars Eggert [Ballot Position Update] Position for Lars Eggert has been changed to No Objection from Discuss by Lars Eggert
2010-04-19
05 Lars Eggert
[Ballot discuss]
Section 8.1., paragraph 4:
>    [RFCTBD1]  Schaad, J., and P. Hoffman, "New ASN.1 Modules for PKIX",
>            …
[Ballot discuss]
Section 8.1., paragraph 4:
>    [RFCTBD1]  Schaad, J., and P. Hoffman, "New ASN.1 Modules for PKIX",
>                draft-ietf-pkix-new-asn1-08, work-in-progress.

  DISCUSS: IETF last call listed downref to draft-ietf-smime-new-asn1
  but not this one?
2010-04-19
05 Lars Eggert [Ballot Position Update] New position, Discuss, has been recorded by Lars Eggert
2010-04-17
05 Sean Turner [Ballot Position Update] New position, Recuse, has been recorded by Sean Turner
2010-04-15
05 Tim Polk [Ballot Position Update] New position, Yes, has been recorded for Tim Polk
2010-04-15
05 Tim Polk Ballot has been issued by Tim Polk
2010-04-14
05 Alexey Melnikov Area acronymn has been changed to sec from gen
2010-04-14
05 Alexey Melnikov
[Ballot comment]
3. Encrypted Private Key Info

  This section gives the syntax for encrypted private-key information,
  which is used with [P12].

I am …
[Ballot comment]
3. Encrypted Private Key Info

  This section gives the syntax for encrypted private-key information,
  which is used with [P12].

I am not entirely convinced that this reference is Informative.
2010-04-14
05 Alexey Melnikov
[Ballot discuss]
In general this is a fine document and I only have a couple of minor issues I would like to discuss before recommending …
[Ballot discuss]
In general this is a fine document and I only have a couple of minor issues I would like to discuss before recommending its approval:

2. Asymmetric Key Package CMS Content Type

  The asymmetric key package CMS content type is used to transfer one
  or more plaintext asymmetric keys from one party to another.  An
  asymmetric key package MAY be encapsulated in one or more CMS
  protecting content types (see Section 4).  Earlier versions of this
  specification [RFC5208] did not specify a particular encoding rule
  set, but generators SHOULD use DER [X.690] and receivers SHOULD be
  prepared to handle BER [X.690] and DER [X.690].

I think the requirement on receivers is not strong enough,
it has to be a MUST. Alternatively I think you should explain why
SHOULD is appropriate here.

Note that the section 7.1 already says:

      Interoperability considerations:

          The PKCS#8 object inside this media type MUST be DER-encoded
          PrivateKeyInfo.

Can generic BER be disallowed? Is it only allowed due to backward compatibility?

Similar issue in section 3.


5. Other Private-Key Format Considerations

  .p8 files are sometimes PEM encoded.  When .p8 files are PEM encoded
  they use the .pem file extension.  PEM encoding is either the Base64
  encoding [RFC4648]

You should clarify which base64 alphabet is used, as RFC 4648 specifies 2 of them.

  of the DER encoded EncryptedPrivateKeyInfo
  sandwiched between:

  -----BEGIN ENCRYPTED PRIVATE KEY-----
  -----END ENCRYPTED PRIVATE KEY-----

  or the Base64 encoding [RFC4648] of the DER encoded PrivateKeyInfo

As above.

  sandwiched between:

  -----BEGIN PRIVATE KEY-----
  -----END PRIVATE KEY-----
2010-04-14
05 Alexey Melnikov [Ballot Position Update] New position, Discuss, has been recorded by Alexey Melnikov
2010-04-14
05 Alexey Melnikov Created "Approve" ballot
2010-04-12
05 (System) New version available: draft-turner-asymmetrickeyformat-05.txt
2010-04-12
05 Tim Polk Placed on agenda for telechat - 2010-04-22 by Tim Polk
2010-04-12
05 Tim Polk [Note]: 'Carl Wallace (cwallace@cygnacom.com) is the Document Shepherd' added by Tim Polk
2010-04-01
05 (System) State has been changed to Waiting for AD Go-Ahead from In Last Call by system
2010-03-25
05 Amanda Baber IANA comments:

NO IANA Considerations section.
We understand this document to have NO IANA Actions.
2010-03-19
05 Samuel Weiler Request for Last Call review by SECDIR Completed. Reviewer: Derek Atkins.
2010-03-08
04 (System) New version available: draft-turner-asymmetrickeyformat-04.txt
2010-03-06
05 Samuel Weiler Request for Last Call review by SECDIR is assigned to Derek Atkins
2010-03-06
05 Samuel Weiler Request for Last Call review by SECDIR is assigned to Derek Atkins
2010-03-04
05 Cindy Morgan Last call sent
2010-03-04
05 Cindy Morgan State Changes to In Last Call from Last Call Requested by Cindy Morgan
2010-03-04
05 Tim Polk State Changes to Last Call Requested from In Last Call by Tim Polk
2010-03-04
05 Tim Polk Last Call was requested by Tim Polk
2010-03-04
05 Cindy Morgan State Changes to In Last Call from Last Call Requested by Cindy Morgan
2010-03-04
05 Tim Polk Last Call was requested by Tim Polk
2010-03-04
05 Tim Polk State Changes to Last Call Requested from Publication Requested by Tim Polk
2010-03-04
05 (System) Ballot writeup text was added
2010-03-04
05 (System) Last call text was added
2010-03-04
05 (System) Ballot approval text was added
2010-03-03
05 Cullen Jennings State Change Notice email list have been change to fluffy@cisco.com, turners@ieca.com, draft-turner-asymmetrickeyformat@tools.ietf.org, cwallace@cygnacom.com from turners@ieca.com, draft-turner-asymmetrickeyformat@tools.ietf.org, cwallace@cygnacom.com
2010-02-04
05 Cindy Morgan State Change Notice email list have been change to turners@ieca.com, draft-turner-asymmetrickeyformat@tools.ietf.org, cwallace@cygnacom.com from turners@ieca.com, draft-turner-asymmetrickeyformat@tools.ietf.org
2010-02-04
05 Cindy Morgan [Note]: 'Carl Wallace (cwallace@cygnacom.com) is the Document Shepherd' added by Cindy Morgan
2010-02-04
05 Cindy Morgan
**BEGIN DOWNREF ALERT**

This document is headed for standards track, but there are normative
references to three informative RFCs and 5 superseded ITU/ISO standards.
RFC5208 …
**BEGIN DOWNREF ALERT**

This document is headed for standards track, but there are normative
references to three informative RFCs and 5 superseded ITU/ISO standards.
RFC5208 is the previous RFC that this one will obsolete. All of the
remaining references (NEWPKIXASN, NEWSMIMEASN, X.680, X.681, X.682,
X.683, and X.690) are a result of using the '02 ASN.1. I chose the '02
ASN.1 because I want to use the latest available ASN.1 that has a
freeware compiler and I'd rather import that redefine.

**END DOWNRED ALERT**

PROTO write-up:

1.a - Carl Wallace is the Shepherd. He's personally reviewed the ID
and personally knows it's ready for IESG publication.
1.b - The document has been reviewed by key IETF participants members.
There are no concerns about depth or breadth of the reviews.
1.c - There is no need for wider review.
1.d - There are no specific concerns that the AD and/or IESG should be
aware of.
1.e - The consensus is solid.
1.f - There has been no threat of an appeal.
1.g - The Shepherd has personally verified that the document satisfies
all ID nits.
1.h - The document splits it references.
1.i - The document has an IANA consideration and it is consistent with
the main body (there are no IANA considerations).
1.j - The Shepherd has personally compiled the ASN.1 modules. Note that
dummy OID values were used while we await final assignment.

Technical Summary

This document defines the syntax for private key information. This
document obsoletes RFC 5208. Changes from RFC 5208 include: defining a
CMS content type, adding public key to structure (v2 if included),
adding local storage considerations.

Working Group Summary

This document is not the product of an IETF Working Group.

Document Quality

The document is of the same quality as RFC 5208.

Personnel

Carl Wallace is the document Shepherd. Tim Polk is the
responsible Security Area AD.
2010-02-04
05 Cindy Morgan Draft Added by Cindy Morgan in state Publication Requested
2010-02-02
03 (System) New version available: draft-turner-asymmetrickeyformat-03.txt
2009-10-20
02 (System) New version available: draft-turner-asymmetrickeyformat-02.txt
2008-10-30
01 (System) New version available: draft-turner-asymmetrickeyformat-01.txt
2008-10-21
00 (System) New version available: draft-turner-asymmetrickeyformat-00.txt