Skip to content

Commit

Permalink
Update draft-ietf-lamps-pq-composite-sigs.md
Browse files Browse the repository at this point in the history 
Upped the version of the OIDs and domain separators.
  • Loading branch information
@johngray-dev
johngray-dev authored Sep 11, 2024
1 parent 0c5ced7 commit 1fa995a
Showing 1 changed file with 28 additions and 32 deletions.
60 changes: 28 additions & 32 deletions draft-ietf-lamps-pq-composite-sigs.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -166,11 +166,7 @@ This document introduces a set of signature schemes that use pairs of cryptograp
* Various editorial changes

## Changes since adoption by the lamps working group
* Added back in the version 13 changes which were dropped by mistake in the initial -00 adopted version
* Added Scott Fluher as an author due to his valuable contributions and participation in the draft writing process
* Removed the reference to Parallel PKI's in implementation considerations as it isn't adding value to the discussion
* Resolved comments from Kris Kwiatkowski regarding FIPS

* Changed prototype version OIDs so that standard ML-DSA may be used with composite instead of the initial public draft version

# Introduction {#sec-intro}

Expand Down Expand Up @@ -613,25 +609,25 @@ The OID referenced are TBD for prototyping only, and the following prefix is use

replace <CompSig> with the String "2.16.840.1.114027.80.8.1"

Therefore <CompSig>.1 is equal to 2.16.840.1.114027.80.8.1.1
Therefore <CompSig>.21 is equal to 2.16.840.1.114027.80.8.1.21

Signature public key types:

| Composite Signature AlgorithmID | OID | First AlgorithmID | Second AlgorithmID | Pre-Hash |
| ----------- | ----------- | ----------- | ----------- | ----------- |
| id-MLDSA44-RSA2048-PSS-SHA256 | <CompSig>.1 | id-ML-DSA-44 | id-RSASA-PSS with id-sha256 | id-sha256 |
| id-MLDSA44-RSA2048-PKCS15-SHA256 | <CompSig>.2 | id-ML-DSA-44 | sha256WithRSAEncryption | id-sha256 |
| id-MLDSA44-Ed25519-SHA512 | <CompSig>.3 | id-ML-DSA-44 | id-Ed25519 | id-sha512 |
| id-MLDSA44-ECDSA-P256-SHA256 | <CompSig>.4 | id-ML-DSA-44 | ecdsa-with-SHA256 with secp256r1 | id-sha256 |
| id-MLDSA44-ECDSA-brainpoolP256r1-SHA256 | <CompSig>.5 | id-ML-DSA-44 | ecdsa-with-SHA256 with brainpoolP256r1 | id-sha256 |
| id-MLDSA65-RSA3072-PSS-SHA512 | <CompSig>.6 | id-ML-DSA-65 | id-RSASA-PSS with id-sha512 | id-sha512 |
| id-MLDSA65-RSA3072-PKCS15-SHA512 | <CompSig>.7 | id-ML-DSA-65 | sha512WithRSAEncryption | id-sha512 |
| id-MLDSA65-ECDSA-P256-SHA512 | <CompSig>.8 | id-ML-DSA-65 | ecdsa-with-SHA512 with secp256r1 | id-sha512 |
| id-MLDSA65-ECDSA-brainpoolP256r1-SHA512 | <CompSig>.9 | id-ML-DSA-65 | ecdsa-with-SHA512 with brainpoolP256r1 | id-sha512 |
| id-MLDSA65-Ed25519-SHA512 | <CompSig>.10 | id-ML-DSA-65 | id-Ed25519 | id-sha512 |
| id-MLDSA87-ECDSA-P384-SHA512 | <CompSig>.11 | id-ML-DSA-87 | ecdsa-with-SHA512 with secp384r1 | id-sha512|
| id-MLDSA87-ECDSA-brainpoolP384r1-SHA512 | <CompSig>.12 | id-ML-DSA-87 | ecdsa-with-SHA512 with brainpoolP384r1 | id-sha512 |
| id-MLDSA87-Ed448-SHA512 | <CompSig>.13 | id-ML-DSA-87 | id-Ed448 | id-sha512 |
| id-MLDSA44-RSA2048-PSS-SHA256 | <CompSig>.21 | id-ML-DSA-44 | id-RSASA-PSS with id-sha256 | id-sha256 |
| id-MLDSA44-RSA2048-PKCS15-SHA256 | <CompSig>.22 | id-ML-DSA-44 | sha256WithRSAEncryption | id-sha256 |
| id-MLDSA44-Ed25519-SHA512 | <CompSig>.23 | id-ML-DSA-44 | id-Ed25519 | id-sha512 |
| id-MLDSA44-ECDSA-P256-SHA256 | <CompSig>.24 | id-ML-DSA-44 | ecdsa-with-SHA256 with secp256r1 | id-sha256 |
| id-MLDSA44-ECDSA-brainpoolP256r1-SHA256 | <CompSig>.25 | id-ML-DSA-44 | ecdsa-with-SHA256 with brainpoolP256r1 | id-sha256 |
| id-MLDSA65-RSA3072-PSS-SHA512 | <CompSig>.26 | id-ML-DSA-65 | id-RSASA-PSS with id-sha512 | id-sha512 |
| id-MLDSA65-RSA3072-PKCS15-SHA512 | <CompSig>.27 | id-ML-DSA-65 | sha512WithRSAEncryption | id-sha512 |
| id-MLDSA65-ECDSA-P256-SHA512 | <CompSig>.28 | id-ML-DSA-65 | ecdsa-with-SHA512 with secp256r1 | id-sha512 |
| id-MLDSA65-ECDSA-brainpoolP256r1-SHA512 | <CompSig>.29 | id-ML-DSA-65 | ecdsa-with-SHA512 with brainpoolP256r1 | id-sha512 |
| id-MLDSA65-Ed25519-SHA512 | <CompSig>.30 | id-ML-DSA-65 | id-Ed25519 | id-sha512 |
| id-MLDSA87-ECDSA-P384-SHA512 | <CompSig>.31 | id-ML-DSA-87 | ecdsa-with-SHA512 with secp384r1 | id-sha512|
| id-MLDSA87-ECDSA-brainpoolP384r1-SHA512 | <CompSig>.32 | id-ML-DSA-87 | ecdsa-with-SHA512 with brainpoolP384r1 | id-sha512 |
| id-MLDSA87-Ed448-SHA512 | <CompSig>.33 | id-ML-DSA-87 | id-Ed448 | id-sha512 |
{: #tab-sig-algs title="Composite Signature Algorithms"}

The table above contains everything needed to implement the listed explicit composite algorithms. See the ASN.1 module in section {{sec-asn1-module}} for the explicit definitions of the above Composite signature algorithms.
Expand All @@ -645,19 +641,19 @@ As mentioned above, the OID input value is used as a domain separator for the Co

| Composite Signature AlgorithmID | Domain Separator (in Hex encoding)|
| ----------- | ----------- |
| id-MLDSA44-RSA2048-PSS-SHA256 | 060B6086480186FA6B50080101|
| id-MLDSA44-RSA2048-PKCS15-SHA256 |060B6086480186FA6B50080102|
| id-MLDSA44-Ed25519-SHA512 |060B6086480186FA6B50080103|
| id-MLDSA44-ECDSA-P256-SHA256 |060B6086480186FA6B50080104|
| id-MLDSA44-ECDSA-brainpoolP256r1-SHA256 |060B6086480186FA6B50080105|
| id-MLDSA65-RSA3072-PSS-SHA512 |060B6086480186FA6B50080106|
| id-MLDSA65-RSA3072-PKCS15-SHA512 |060B6086480186FA6B50080107|
| id-MLDSA65-ECDSA-P256-SHA512 |060B6086480186FA6B50080108|
| id-MLDSA65-ECDSA-brainpoolP256r1-SHA512 |060B6086480186FA6B50080109|
| id-MLDSA65-Ed25519-SHA512 |060B6086480186FA6B5008010A|
| id-MLDSA87-ECDSA-P384-SHA512 |060B6086480186FA6B5008010B|
| id-MLDSA87-ECDSA-brainpoolP384r1-SHA512 |060B6086480186FA6B5008010C|
| id-MLDSA87-Ed448-SHA512 |060B6086480186FA6B5008010D|
| id-MLDSA44-RSA2048-PSS-SHA256 | 060B6086480186FA6B50080115|
| id-MLDSA44-RSA2048-PKCS15-SHA256 |060B6086480186FA6B50080116|
| id-MLDSA44-Ed25519-SHA512 |060B6086480186FA6B50080117|
| id-MLDSA44-ECDSA-P256-SHA256 |060B6086480186FA6B50080118|
| id-MLDSA44-ECDSA-brainpoolP256r1-SHA256 |060B6086480186FA6B50080119|
| id-MLDSA65-RSA3072-PSS-SHA512 |060B6086480186FA6B5008011A|
| id-MLDSA65-RSA3072-PKCS15-SHA512 |060B6086480186FA6B5008011B|
| id-MLDSA65-ECDSA-P256-SHA512 |060B6086480186FA6B5008011C|
| id-MLDSA65-ECDSA-brainpoolP256r1-SHA512 |060B6086480186FA6B5008011D|
| id-MLDSA65-Ed25519-SHA512 |060B6086480186FA6B5008011E|
| id-MLDSA87-ECDSA-P384-SHA512 |060B6086480186FA6B5008011F|
| id-MLDSA87-ECDSA-brainpoolP384r1-SHA512 |060B6086480186FA6B50080120|
| id-MLDSA87-Ed448-SHA512 |060B6086480186FA6B50080121|
{: #tab-sig-alg-oids title="Composite Signature Domain Separators"}


Expand Down

0 comments on commit 1fa995a

Please sign in to comment.