From 78bbd1bd10ac8b820eeb3447e478e10f322071eb Mon Sep 17 00:00:00 2001 From: Adam R Date: Thu, 21 Nov 2024 17:44:56 +0000 Subject: [PATCH] Fixed whitespace errors --- draft-ietf-lamps-cms-ml-dsa.md | 9 ++++----- 1 file changed, 4 insertions(+), 5 deletions(-) diff --git a/draft-ietf-lamps-cms-ml-dsa.md b/draft-ietf-lamps-cms-ml-dsa.md index 4a14cd6..07e44e6 100644 --- a/draft-ietf-lamps-cms-ml-dsa.md +++ b/draft-ietf-lamps-cms-ml-dsa.md @@ -80,9 +80,9 @@ informative: author: - ins: R. Wang - - + - ins: K. Ngo - - + - ins: J. Gärtner - ins: E. Dubrova @@ -312,9 +312,8 @@ Implementers SHOULD consider implementing such protection measures if it would b To avoid algorithm substitution attacks, the CMSAlgorithmProtection attribute defined in {{!RFC6211}} SHOULD be included in signed attributes. # Operational Considerations -If ML-DSA signing is implemented in a hardware device such as hardware security module (HSM) or portable cryptographic token, implementers might want to avoid sending the full content to the device for performance reasons. -By including signed attributes, which necessarily include the message-digest attribute and the content-type attribute as described in -Section 5.3 of {{RFC5652}}, the much smaller set of signed attributes are sent to the device for signing. +If ML-DSA signing is implemented in a hardware device such as hardware security module (HSM) or portable cryptographic token, implementers might want to avoid sending the full content to the device for performance reasons. +By including signed attributes, which necessarily include the message-digest attribute and the content-type attribute as described in Section 5.3 of {{RFC5652}}, the much smaller set of signed attributes are sent to the device for signing. This approach addresses the use case for HashML-DSA, and is one reason why HashML-DSA is not specified for use with CMS in this document. Additionally, the pure variant of ML-DSA does support a form of pre-hash via the *mu* "message representative" value described in Section 6.2 of {{FIPS204}}.