Closed JDavid-Thompson closed 3 months ago
Brian,
I think I made a pull request for #239. I’m still a little unsure of all the github terms and operators.
-Dave
From: Brian Wood @.> Sent: Thursday, February 15, 2024 1:36 PM To: DSC-iTC/cPP @.> Cc: J David D Thompson @.>; Assign @.> Subject: Re: [DSC-iTC/cPP] Add phrase to FCS_CKM_EXT.7.1 App Note 5 (Issue #239)
Assigned #239https://github.com/DSC-iTC/cPP/issues/239 to @JDavid-Thompsonhttps://github.com/JDavid-Thompson.
— Reply to this email directly, view it on GitHubhttps://github.com/DSC-iTC/cPP/issues/239#event-11819345963, or unsubscribehttps://github.com/notifications/unsubscribe-auth/BFSTVCI2S3EISA73ST7PQ7LYTZIRNAVCNFSM6AAAAABDE5RASSVHI2DSMVQWIX3LMV45UABCJFZXG5LFIV3GK3TUJZXXI2LGNFRWC5DJN5XDWMJRHAYTSMZUGU4TMMY. You are receiving this because you were assigned.Message ID: @.***>
I saw it
On Thu, Feb 15, 2024 at 3:02 PM JDavid-Thompson @.***> wrote:
Brian,
I think I made a pull request for #239. I’m still a little unsure of all the github terms and operators.
-Dave
From: Brian Wood @.> Sent: Thursday, February 15, 2024 1:36 PM To: DSC-iTC/cPP @.> Cc: J David D Thompson @.>; Assign @.> Subject: Re: [DSC-iTC/cPP] Add phrase to FCS_CKM_EXT.7.1 App Note 5 (Issue
239)
Assigned #239https://github.com/DSC-iTC/cPP/issues/239 to @JDavid-Thompsonhttps://github.com/JDavid-Thompson.
— Reply to this email directly, view it on GitHub< https://github.com/DSC-iTC/cPP/issues/239#event-11819345963>, or unsubscribe< https://github.com/notifications/unsubscribe-auth/BFSTVCI2S3EISA73ST7PQ7LYTZIRNAVCNFSM6AAAAABDE5RASSVHI2DSMVQWIX3LMV45UABCJFZXG5LFIV3GK3TUJZXXI2LGNFRWC5DJN5XDWMJRHAYTSMZUGU4TMMY>.
You are receiving this because you were assigned.Message ID: @.***>
— Reply to this email directly, view it on GitHub https://github.com/DSC-iTC/cPP/issues/239#issuecomment-1947196705, or unsubscribe https://github.com/notifications/unsubscribe-auth/AEVLEAPZ3O3FSPYNL4C7PGTYTZSVPAVCNFSM6AAAAABDE5RASSVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMYTSNBXGE4TMNZQGU . You are receiving this because you are subscribed to this thread.Message ID: @.***>
@woodbe will review the current crypto catalog and provide a response here (or a PR)
The second proposed change has been already updated (differently) in the catalog, and that text actually makes more sense.
In Para 3, suggest adding "and there are two parties" to the parenthetical so it reads "(e.g., if each share is 128 bits and there are two parties, then the result after concatenation is a 256-bit key, which is appropriate only for AES-256-CMAC)"
In Para 4, suggest changing “For the KDF functions and XOR, each party may have to use an asymmetric method from FCS_CKM_EXT.7 to transmit their shares to each other” to “For the KDF functions and XOR, each party must transmit their shares securely, either by encrypting with an asymmetric method from FCS_CKM_EXT.7 or by procedural means, such as sending them by courier.”