- From: Joseph Reagle <reagle@w3.org>
- Date: Wed, 27 Nov 2002 11:49:44 -0500
- To: "Tom Gindin" <tgindin@us.ibm.com>, Donald Eastlake <dee3@torque.pothole.com>
- Cc: <xml-encryption@w3.org>
On Tuesday 26 November 2002 05:09 pm, Tom Gindin wrote: > On the other hand, CMS-AES draft 5 makes no reference to RSA#1 v1.5 > until the security considerations section, and IMHO there seems to be > little point in using it as an intermediate reference instead of going > straight to the stable RFC 2437. You could say that the two RSA variants > are the ones which have been used for key transport in documents of the > CMS series, of course. Honestly, I'm somewhat confused by this on further investigation. 5.4 Key Transport The Key Transport algorithms given below are those used in conjunction with the Cryptographic Message Syntax (CMS) of S/MIME [CMS-Algorithms, CMS-AES]. (These specifications are still works in progress so we include those parts of their present specification within this document as the normative specification.) But is this section actually profiling these specs? "5.6.2 CMS Triple DES Key Wrap" has a profile CMS-Algorithms. However, the only mention of CMS-AES is in the text above, and in the bibliography...?
Received on Wednesday, 27 November 2002 11:49:47 UTC