[{"author": "Christian Ams\u00fcss", "text": "<p>@meetecho please pivot speakers cam to presenter</p>", "time": "2024-03-19T05:37:32Z"}, {"author": "Christian Ams\u00fcss", "text": "<p>thanks</p>", "time": "2024-03-19T05:37:52Z"}, {"author": "Michael Prorock", "text": "<p>I am sad tobias is not here in person</p>", "time": "2024-03-19T05:46:55Z"}, {"author": "Orie Steele", "text": "<p>this should have been called: x5c with cwt</p>", "time": "2024-03-19T05:50:03Z"}, {"author": "Michael Prorock", "text": "<p>orie, that is triggering to me</p>", "time": "2024-03-19T05:50:47Z"}, {"author": "David Waite", "text": "<p>just x5cwt</p>", "time": "2024-03-19T05:51:08Z"}, {"author": "Orie Steele", "text": "<p>its supposed to trigger everyone who likes certificates... apparently</p>", "time": "2024-03-19T05:51:09Z"}, {"author": "Brendan Moran", "text": "<p><span aria-label=\"laughing\" class=\"emoji emoji-1f606\" role=\"img\" title=\"laughing\">:laughing:</span></p>", "time": "2024-03-19T05:51:29Z"}, {"author": "Michael Prorock", "text": "<p>i am concerned about the privacy rights that could arise from a bag of CWTs</p>", "time": "2024-03-19T05:54:36Z"}, {"author": "Brendan Moran", "text": "<p>Could you elaborate Mike?</p>", "time": "2024-03-19T05:55:21Z"}, {"author": "Orie Steele", "text": "<p>pretty sure he is trolling</p>", "time": "2024-03-19T05:55:32Z"}, {"author": "Michael Prorock", "text": "<p>completely trolling</p>", "time": "2024-03-19T05:55:45Z"}, {"author": "Michael Prorock", "text": "<p>apologies</p>", "time": "2024-03-19T05:55:48Z"}, {"author": "Brendan Moran", "text": "<p><span aria-label=\"face palm\" class=\"emoji emoji-1f926\" role=\"img\" title=\"face palm\">:face_palm:</span>\u200d\u2642\ufe0f I don't get the context when remote. I hate remote.</p>", "time": "2024-03-19T05:56:18Z"}, {"author": "John Preu\u00df Mattsson", "text": "<p>t and u are quite small</p>", "time": "2024-03-19T05:56:30Z"}, {"author": "Orie Steele", "text": "<p>^yes</p>", "time": "2024-03-19T05:56:37Z"}, {"author": "Michael Prorock", "text": "<p>it was a reference to the SPICE BoF that Hannes just survived</p>", "time": "2024-03-19T05:56:52Z"}, {"author": "Brendan Moran", "text": "<p>Sounds like I missed out on quite an exciting BoF</p>", "time": "2024-03-19T05:57:27Z"}, {"author": "Matthew Gillmore", "text": "<p>+1</p>", "time": "2024-03-19T05:58:12Z"}, {"author": "John Preu\u00df Mattsson", "text": "<p>Good to mention that there is already kcwt that can transport a single CWT.</p>", "time": "2024-03-19T05:58:52Z"}, {"author": "Michael Prorock", "text": "<ul>\n<li>here be dragons *</li>\n</ul>", "time": "2024-03-19T05:58:56Z"}, {"author": "Brendan Moran", "text": "<p>embedding JWT in CWT is... unfortunate.</p>", "time": "2024-03-19T06:04:59Z"}, {"author": "Brendan Moran", "text": "<p>Exactly!</p>", "time": "2024-03-19T06:06:02Z"}, {"author": "Orie Steele", "text": "<p>there can be only 1 format.</p>", "time": "2024-03-19T06:07:12Z"}, {"author": "Orie Steele", "text": "<p>x509 forever.</p>", "time": "2024-03-19T06:07:18Z"}, {"author": "Michael Prorock", "text": "<p><span aria-label=\"heart eyes\" class=\"emoji emoji-1f60d\" role=\"img\" title=\"heart eyes\">:heart_eyes:</span></p>", "time": "2024-03-19T06:07:30Z"}, {"author": "Orie Steele", "text": "<p>+1 to allowing things to be small</p>", "time": "2024-03-19T06:08:04Z"}, {"author": "Orie Steele", "text": "<p>The document I mentioned at the mic:</p>\n<p><a href=\"https://datatracker.ietf.org/doc/draft-ietf-stir-passport-rcd/\">https://datatracker.ietf.org/doc/draft-ietf-stir-passport-rcd/</a></p>\n<p><a href=\"https://datatracker.ietf.org/doc/draft-ietf-stir-certificates-ocsp/\">https://datatracker.ietf.org/doc/draft-ietf-stir-certificates-ocsp/</a></p>", "time": "2024-03-19T06:10:58Z"}, {"author": "Orie Steele", "text": "<p>in their case, they are still using certs, but perhaps a chat would be helpful anyway.</p>", "time": "2024-03-19T06:11:35Z"}, {"author": "Matthew Gillmore", "text": "<p>A well understood dispatch with common semantic understanding would be appreciated</p>", "time": "2024-03-19T06:11:51Z"}, {"author": "Brendan Moran", "text": "<p>Thanks Orie!</p>", "time": "2024-03-19T06:12:36Z"}, {"author": "Brendan Moran", "text": "<p>Nice Teleport @Mike!</p>", "time": "2024-03-19T06:13:22Z"}, {"author": "Orie Steele", "text": "<p>and we're using MT's I-D Template!</p>", "time": "2024-03-19T06:14:36Z"}, {"author": "Brendan Moran", "text": "<p>Falcon would be valuable for SUIT--provided that NIST standardises</p>", "time": "2024-03-19T06:15:21Z"}, {"author": "Orie Steele", "text": "<p>would be nice to have something from NIST that is small.</p>", "time": "2024-03-19T06:15:55Z"}, {"author": "Orie Steele", "text": "<p>early allocation?</p>", "time": "2024-03-19T06:16:28Z"}, {"author": "Orie Steele", "text": "<p>of code points?</p>", "time": "2024-03-19T06:16:33Z"}, {"author": "Orie Steele", "text": "<p>maybe private space test vectors is better path.</p>", "time": "2024-03-19T06:19:00Z"}, {"author": "Carsten Bormann", "text": "<p>Just use a ridiculously large number...</p>", "time": "2024-03-19T06:21:08Z"}, {"author": "Carsten Bormann", "text": "<p>(out of the private space)</p>", "time": "2024-03-19T06:21:19Z"}, {"author": "Michael Prorock", "text": "<p>+1 carsten</p>", "time": "2024-03-19T06:22:02Z"}, {"author": "Henk Birkholz", "text": "<p>+1</p>", "time": "2024-03-19T06:27:52Z"}, {"author": "Henk Birkholz", "text": "<p>I'll allow it</p>", "time": "2024-03-19T06:28:50Z"}, {"author": "Carsten Bormann", "text": "<p>mental note: mention EDN &lt;&lt;..&gt;&gt;</p>", "time": "2024-03-19T06:30:54Z"}, {"author": "Michael Prorock", "text": "<p>henk are you in two places at once again</p>", "time": "2024-03-19T06:31:00Z"}, {"author": "Henk Birkholz", "text": "<p>Hehe, yes</p>", "time": "2024-03-19T06:31:18Z"}, {"author": "Robert Moskowitz", "text": "<p>I would like to have a python implementation or a way to run the RUST code in python.</p>", "time": "2024-03-19T06:45:11Z"}, {"author": "G\u00f6ran Selander", "text": "<p>Can we have an indication from the WG about how to proceed?</p>", "time": "2024-03-19T06:46:04Z"}, {"author": "Carsten Bormann", "text": "<p>I read the room to be in favor of progressing, but that's for the chairs to diagnose</p>", "time": "2024-03-19T06:47:22Z"}, {"author": "Robert Moskowitz", "text": "<p>I need code that I can run to test bi-direction X509 &lt;-&gt; c509.  Then I can see what my various DRIP certs act as in c509 format.</p>", "time": "2024-03-19T06:47:39Z"}, {"author": "Ivaylo Petrov", "text": "<p>Goran, is checking this on the ML good enough or should we try to vote during AOB section?</p>", "time": "2024-03-19T06:47:42Z"}, {"author": "Carsten Bormann", "text": "<p>Robert: You can run the Rust code from the command line IIRC</p>", "time": "2024-03-19T06:48:35Z"}, {"author": "Carsten Bormann", "text": "<p>Getting a quick sense of the room is expedient</p>", "time": "2024-03-19T06:48:44Z"}, {"author": "Robert Moskowitz", "text": "<p>And personally, I don't like no updated pointers on the cose list about progress in the github.  It makes the whole work non-obvious to those that scan the list.</p>", "time": "2024-03-19T06:49:04Z"}, {"author": "G\u00f6ran Selander", "text": "<p>Ivaylo: We already had a discussion on the mailing list. Would be good with more input.</p>", "time": "2024-03-19T06:49:18Z"}, {"author": "Ivaylo Petrov", "text": "<p>Ack</p>", "time": "2024-03-19T06:50:01Z"}, {"author": "Michael Prorock", "text": "<p>+1 orie</p>", "time": "2024-03-19T06:50:01Z"}, {"author": "Robert Moskowitz", "text": "<p>I will look into running RUST.  Never had the need before.</p>", "time": "2024-03-19T06:50:23Z"}, {"author": "Michael Prorock", "text": "<p>cargo is your fiend</p>", "time": "2024-03-19T06:50:48Z"}, {"author": "Ivaylo Petrov", "text": "<p>@meetecho please pivot speakers cam to presenter</p>", "time": "2024-03-19T06:50:59Z"}, {"author": "Carsten Bormann", "text": "<p>Maybe John can give a short memo how to call the code...</p>", "time": "2024-03-19T06:51:17Z"}, {"author": "Ivaylo Petrov", "text": "<p>thanks!</p>", "time": "2024-03-19T06:51:26Z"}, {"author": "Mike Ounsworth", "text": "<p><span class=\"user-mention\" data-user-id=\"927\">@John Preu\u00df Mattsson</span> <br>\nI see:</p>\n<div class=\"codehilite\"><pre><span></span><code>C509Certificate = [\n   TBSCertificate,\n   issuerSignatureValue : any,\n]\n\n; The elements of the following group are used in a CBOR Sequence:\nTBSCertificate = (\n   c509CertificateType: int,\n   certificateSerialNumber: CertificateSerialNumber,\n   issuer: Name,\n   validityNotBefore: Time,\n   validityNotAfter: Time,\n   subject: Name,\n   subjectPublicKeyAlgorithm: AlgorithmIdentifier,\n   subjectPublicKey: any,\n   extensions: Extensions,\n   issuerSignatureAlgorithm: AlgorithmIdentifier,\n)\n</code></pre></div>\n<p>So the <code>issuerSignatureAlgorithm</code> is inside the TBSCertificate, and not in the outer C509 structure. RFC 5280 4.1.1.2 defines the unsigned copy of the signatureAlgorithm. I personally don't know why X.509 has two; but it seems reasonable to me to treat that as a bug and fix it.</p>", "time": "2024-03-19T06:51:33Z"}, {"author": "Robert Moskowitz", "text": "<p>I am asleep on my feet, so to speak, to remember why.  Probably explained in 5280.</p>", "time": "2024-03-19T06:53:06Z"}, {"author": "Mike Ounsworth", "text": "<p>Quick skim; I didn't see it explained.</p>", "time": "2024-03-19T06:53:32Z"}, {"author": "Robert Moskowitz", "text": "<p>I will try and dig tomorrow and <em>when</em> I find it, I will post to the list.</p>", "time": "2024-03-19T06:54:09Z"}, {"author": "G\u00f6ran Selander", "text": "<p>(Sorry, lost audio had to restart)</p>", "time": "2024-03-19T06:54:24Z"}, {"author": "Andrew Fregly", "text": "<p>Was there once a time when two different signers would put signatures into an X.509 cert?</p>", "time": "2024-03-19T06:54:49Z"}, {"author": "Orie Steele", "text": "<p>you want a poll?</p>", "time": "2024-03-19T06:55:36Z"}, {"author": "Mike Ounsworth", "text": "<p>No no, there's only one signature value, but two copies of the algorithm <em>name</em> -- the two values MUST match. 5280 is quite clear on that; but doesn't seem to say why.</p>", "time": "2024-03-19T06:55:54Z"}, {"author": "G\u00f6ran Selander", "text": "<p>Proposal is to move issuerSignatureAlgorithm to the top of TBSCertificate</p>", "time": "2024-03-19T06:55:56Z"}, {"author": "Robert Moskowitz", "text": "<p>Wait, are you talking issuerSig and subjectsig?  Those CAN be different!</p>", "time": "2024-03-19T06:57:06Z"}, {"author": "Mike Ounsworth", "text": "<p>... what subjectsig?</p>", "time": "2024-03-19T06:57:25Z"}, {"author": "Robert Moskowitz", "text": "<p>Issuer and subject can use different alg.   And sorry, brain is dumb now and I can't remember the right labels.</p>", "time": "2024-03-19T06:58:05Z"}, {"author": "Robert Moskowitz", "text": "<p>It is 3am for me,,,</p>", "time": "2024-03-19T06:58:54Z"}, {"author": "Robert Moskowitz", "text": "<p>Channel Jim!</p>", "time": "2024-03-19T06:59:08Z"}, {"author": "John Preu\u00df Mattsson", "text": "<p>Carstens suggestion sounds good</p>", "time": "2024-03-19T07:00:05Z"}, {"author": "Robert Moskowitz", "text": "<p>I need to look at this and review 5280 for my opinion and I will post it to the list.</p>", "time": "2024-03-19T07:00:23Z"}, {"author": "John Preu\u00df Mattsson", "text": "<p>Carstens suggestion is to register 2,3 and make 0,1 reserved</p>", "time": "2024-03-19T07:00:47Z"}, {"author": "Robert Moskowitz", "text": "<p>For interop, we will end up with all doing it one way.</p>", "time": "2024-03-19T07:01:43Z"}, {"author": "Robert Moskowitz", "text": "<p>goodnight.</p>", "time": "2024-03-19T07:01:58Z"}]