W3C home > Mailing lists > Public > public-xmlsec@w3.org > October 2011

Re: ACTION-829: Provide additional proposal text regarding xml encryption changes for pkcs1.5

From: Cantor, Scott <cantor.2@osu.edu>
Date: Tue, 4 Oct 2011 19:09:38 +0000
To: Pratik Datta <pratik.datta@oracle.com>, "Frederick.Hirsch@nokia.com" <Frederick.Hirsch@nokia.com>, Magnus Nystrom <mnystrom@microsoft.com>
CC: "public-xmlsec@w3.org" <public-xmlsec@w3.org>
Message-ID: <CAB0D1D8.10E4A%cantor.2@osu.edu>
On 10/4/11 2:40 PM, "Pratik Datta" <pratik.datta@oracle.com> wrote:

>We can't remove the OAEPparams element because we use it. It corresponds
>to the "EncodingParameters" element as defined in PKCS 2.1 , also called
>"label L"  (see page 42 of
>ftp://ftp.rsasecurity.com/pub/pkcs/pkcs-1/pkcs-1v2-1.pdf ) .  The value
>of Label L can be specified, or it can be an empty string. <OAEPparams>
>is the mechanism to specify this value.

I think it would be helpful to add some material to the spec that explains
what that element corresponds to.

With respect to adding an attribute or element to parameterize the MGF, I
suspect for compatibility reasons, you couldn't do that without changing
the algorithm identifier for RSA-OAEP. It would just be a new version of
the algorithm.

-- Scott
Received on Tuesday, 4 October 2011 19:10:26 GMT

This archive was generated by hypermail 2.2.0+W3C-0.50 : Tuesday, 4 October 2011 19:10:26 GMT