[{"author": "Christopher Allen", "text": "

Good afternoon everyone!

", "time": "2023-07-24T20:06:22Z"}, {"author": "Henk Birkholz", "text": "

Henk is delayed. Please skip Henk's agenda items until he will be in the room

", "time": "2023-07-24T20:08:08Z"}, {"author": "Ivaylo Petrov", "text": "


", "time": "2023-07-24T20:09:01Z"}, {"author": "Carsten Bormann", "text": "

meetecho: room audio doesn't seem to work well

", "time": "2023-07-24T20:10:21Z"}, {"author": "Thom Wiggers", "text": "


", "time": "2023-07-24T20:11:21Z"}, {"author": "Lorenzo Miniero", "text": "

Carsten: any mic in particular?

", "time": "2023-07-24T20:14:15Z"}, {"author": "Lorenzo Miniero", "text": "

The speaker sounds fine right now

", "time": "2023-07-24T20:14:20Z"}, {"author": "John Preu\u00df Mattsson", "text": "

I think you should be careful with everything at this point. None of the algorithms are even standardized. PoC only....

", "time": "2023-07-24T20:16:32Z"}, {"author": "John Preu\u00df Mattsson", "text": "

I think COSE should add everything NIST standardizes.

", "time": "2023-07-24T20:20:46Z"}, {"author": "Carsten Bormann", "text": "

Lorenzo: Sorry, I can't debug this from here....

", "time": "2023-07-24T20:23:04Z"}, {"author": "Florence D", "text": "

I think it would be really good to see something about how this aligns with the LAMPS and JOSE drafts in PQUIP. That would get more eyes on the cross-cutting parts, and would also help writers incorporating PQ sigs into other protocols.

", "time": "2023-07-24T20:23:45Z"}, {"author": "Carsten Bormann", "text": "

Two different parameters sounds like it

", "time": "2023-07-24T20:30:41Z"}, {"author": "Carsten Bormann", "text": "

If your library can't do that, bracket with 9f and ff

", "time": "2023-07-24T20:35:32Z"}, {"author": "Mike Ounsworth", "text": "

Question: CBOR-encoded-certs is still fundamentally RFC5280 certs, just encoded in CBOR rather than DER, right?
\nIE this is distinct from \"Let's define a new cert format with a reduced set of claims and get rid of X.500 DNs, etc\", right?

", "time": "2023-07-24T20:38:53Z"}, {"author": "Carsten Bormann", "text": "

(Please read https://www.ietf.org/archive/id/draft-ietf-cbor-edn-literals-02.html#name-edn-and-cddl when confused about CDDL and examples.)

", "time": "2023-07-24T20:49:18Z"}, {"author": "Carsten Bormann", "text": "


", "time": "2023-07-24T20:50:48Z"}, {"author": "John Preu\u00df Mattsson", "text": "

I think it could make sense to send thumbprints of a CCS (CWT Claims Set) and CWT (CBOR Web Token) with cnf instead. CCS is a superset of COSE key and CWT is a superset of CCS. Agree with Brendan that supporting symmetric would be good. I think SUIT can profile away symmetric.

", "time": "2023-07-24T21:02:54Z"}, {"author": "Carsten Bormann", "text": "

I liked the presentation until Orie mentioned NSSS

", "time": "2023-07-24T21:07:58Z"}, {"author": "Michael Jones", "text": "

It's completely independent of multiple structured suffixes

", "time": "2023-07-24T21:10:34Z"}, {"author": "Michael Jones", "text": "

You can use any registered media type or COAP number

", "time": "2023-07-24T21:11:19Z"}, {"author": "Carsten Bormann", "text": "

Yes. I just don't want the impression they are married

", "time": "2023-07-24T21:12:17Z"}, {"author": "Matthew Gillmore", "text": "

context of what is signed is important

", "time": "2023-07-24T21:14:28Z"}, {"author": "Giuseppe De Marco", "text": "

Hi all

", "time": "2023-07-24T21:15:38Z"}, {"author": "Leif Johansson", "text": "

hi :-)

", "time": "2023-07-24T21:16:00Z"}, {"author": "Carsten Bormann", "text": "

I couldn't quite follow Ivo's audio

", "time": "2023-07-24T21:16:28Z"}, {"author": "Hannes Tschofenig", "text": "

The transcript from Ivo was great. It talked about COVID

", "time": "2023-07-24T21:17:29Z"}, {"author": "Michael Prorock", "text": "", "time": "2023-07-24T21:17:48Z"}, {"author": "Michael Jones", "text": "

I think that Ivo said that we should discuss the draft on the list and if it looks like there's support, we could consider working group adoption. (Correct me if I'm wrong, Ivo.)

", "time": "2023-07-24T21:18:15Z"}, {"author": "Carsten Bormann", "text": "


", "time": "2023-07-24T21:19:36Z"}, {"author": "Ivaylo Petrov", "text": "

Yes, there were a few questions that I think should be followed up on the mailing list.

", "time": "2023-07-24T21:19:39Z"}, {"author": "Giuseppe De Marco", "text": "

hi ! :-)

", "time": "2023-07-24T21:20:28Z"}, {"author": "Mike Ounsworth", "text": "

+1 for HPKE \"ciphersuites\".
\nIMO COSE WG should make opinionated choices about \"good combinations\".
\nReference: DKG's \"rake factory\" comment from LAMPS 116 in reference to generic composite hybrid signatures.

", "time": "2023-07-24T21:23:42Z"}, {"author": "Giuseppe De Marco", "text": "

I've just realized that I forgot to put in my presentation the link of my draft , I share it here with the hope to geet it in the minutes


thank you

", "time": "2023-07-24T21:24:04Z"}, {"author": "Ivaylo Petrov", "text": "

Giuseppe, do you have slides?

", "time": "2023-07-24T21:25:04Z"}, {"author": "Giuseppe De Marco", "text": "

YEs, I've uploaded in the datatracker and I can share them als here

", "time": "2023-07-24T21:27:19Z"}, {"author": "Uri Blumenthal", "text": "

+1 for \"ciphersuites\".

", "time": "2023-07-24T21:28:23Z"}, {"author": "Ivaylo Petrov", "text": "

Giuseppe, I saw it and made sure it's imported, so it should be all fine for you to present it

", "time": "2023-07-24T21:30:09Z"}, {"author": "Matthew Gillmore", "text": "

+1 for proposal 2

", "time": "2023-07-24T21:30:33Z"}, {"author": "Mike Ounsworth", "text": "

Orie made the example that you have some vendor with some proprietary reason to need a weird combination of KEM + KDF + AEAD.
\nIsn't that the definition of \"non-standard\". Register your own \"ciphersuite\". Don't claim IETF approval. Done.

", "time": "2023-07-24T21:31:33Z"}, {"author": "Mike Ounsworth", "text": "

Ciphersuites make interop testing NOT become a combinatorial problem (which I think is exactly Christopher Allan's point).

", "time": "2023-07-24T21:32:12Z"}, {"author": "John Gray", "text": "

I would select the 2nd option (Ciphersuites option). It seems like it is more compact, and clients would be able to cache the meaning of the entry. Since I think the entire premise of CBOR is a more compact encoding, shouldn't that be the over riding design decision?

", "time": "2023-07-24T21:33:05Z"}, {"author": "Carsten Bormann", "text": "

Designated experts have to do a \"proof by lack of imagination\" to refuse registration of a specific combination.

", "time": "2023-07-24T21:35:29Z"}, {"author": "Mike Ounsworth", "text": "

@Carsten Bormann but the output of a KEM is not necessarily a public key -- it just happens to be for DHKEM.

", "time": "2023-07-24T21:48:40Z"}, {"author": "Carsten Bormann", "text": "

so may have to define new kty.

", "time": "2023-07-24T21:49:16Z"}, {"author": "Mike Ounsworth", "text": "

For example the output of Kyber will just be a ciphertext blob with no structure. does that deserve a kty?

", "time": "2023-07-24T21:49:56Z"}, {"author": "Carsten Bormann", "text": "

If that will be used by other Kyber applications in COSE, sure!

", "time": "2023-07-24T21:50:36Z"}, {"author": "Mike Ounsworth", "text": "

Maybe I'm missing something. Isn't kty \"key type\"? Why would you label a ciphertext blob with a kty?

", "time": "2023-07-24T21:51:16Z"}, {"author": "Carsten Bormann", "text": "

OK, indeed, in this case we don't need a kty.

", "time": "2023-07-24T21:52:33Z"}, {"author": "Mike Ounsworth", "text": "

The confusion point, I think, is that in DHKEM, the \"ciphertext\" happens to be the sender's ephemeral public key. That's just a coincidence of jamming DH into a KEM API. With real KEMs the \"ciphertext\" will be an actual ciphertext.
\n(but HPKE is choosing to call it \"enc\" (encapsulated value) rather than \"ciphertext\")

", "time": "2023-07-24T21:54:23Z"}, {"author": "Giuseppe De Marco", "text": "

Hi, this is the link where my presetation of \"COSE Header Parameter for Carrying OpenID Federation 1.0 Trust Chains\" is available for download:

", "time": "2023-07-24T22:00:16Z"}, {"author": "Matthew Gillmore", "text": "

Why cannot the API be defined in a swagger like manner

", "time": "2023-07-24T22:01:21Z"}, {"author": "Ivaylo Petrov", "text": "

thank you!

", "time": "2023-07-24T22:02:16Z"}]