W3C home > Mailing lists > Public > public-webcrypto@w3.org > July 2014

Re: [W3C Web Crypto WG] Call for contributors on curve 25519 extension

From: Ryan Sleevi <sleevi@google.com>
Date: Mon, 28 Jul 2014 12:08:34 -0700
Message-ID: <CACvaWvYfmgcr7a9fULp-HVk+eMOvv=EwSje63NAAnC_vHqrMMQ@mail.gmail.com>
To: "Salz, Rich" <rsalz@akamai.com>
Cc: GALINDO Virginie <Virginie.Galindo@gemalto.com>, "public-webcrypto@w3.org" <public-webcrypto@w3.org>, "webcrypto@trevp.net" <webcrypto@trevp.net>
Correct. This is what I referred to as "the debate in the IETF", since
there is not clear consensus on the approaches this document has taken.

The fact that multiple interpretations exist, and have let to this
incongruity, is proof of the issues. Which is not to say that they are not
all eminently solvable, but the draft makes decisions that violate the
"common sense" approach, and that highlights all the more reason for a very
tightly worded, very explicit specification within Web Crypto.


On Sat, Jul 26, 2014 at 7:55 AM, Salz, Rich <rsalz@akamai.com> wrote:

> In response to some of the comments in the bugzilla entry about lack of
> documentation, I’ll point out that there is an existing I-D:
>
>     http://tools.ietf.org/html/draft-josefsson-tls-curve25519-05
>
> Some people had concern that this referred to external papers for
> implementation details. In order to address those concerns, a new I-D on
> using Curve25519 will be submitted shortly; we just didn’t get it out in
> time for before the IETF meeting that just happened.
>
>
>
>                 /r$, co-author thereof
>
>
>
> --
>
> Principal Security Engineer
>
> Akamai Technologies, Cambridge, MA
>
> IM: rsalz@jabber.me; Twitter: RichSalz
>
Received on Monday, 28 July 2014 19:09:01 UTC

This archive was generated by hypermail 2.3.1 : Tuesday, 6 January 2015 21:17:23 UTC