[ACTION-238] [was: ACTION-303 Correct doc on length of r and s] [was: ACTION-222] from Konrad Lanz on 2009-06-09 (public-xmlsec@w3.org from June 2009)

From: Konrad Lanz <Konrad.Lanz@iaik.tugraz.at>
Date: Tue, 09 Jun 2009 16:34:50 +0200
To: Thomas Roessler <tlr@w3.org>
CC: Kelvin Yiu <kelviny@exchange.microsoft.com>, Pratik Datta <pratik.datta@oracle.com>, "public-xmlsec@w3.org" <public-xmlsec@w3.org>
Message-ID: <4A2E730A.3010709@iaik.tugraz.at>

Hi Thomas,

seems we need the same text here:

2.2.2.  ECDSA-RIPEMD160 and ECDSA-Whirlpool
http://www.w3.org/2008/xmlsec/Drafts/algorithms-rfc/draft.html

Konrad

see also:
http://www.w3.org/2008/xmlsec/track/actions/238
http://www.w3.org/2008/xmlsec/track/actions/222

Kelvin Yiu schrieb:
> Sounds good to me. Text updated to the following:
>
> Integer to octet-stream conversion must be done according to the I2OSP operation defined in the RFC 2437 [ PKCS1 ] specification with the l parameter equal to the size of the base point order of the curve in bytes (e.g. 32 for the P-256 curve and 66 for the P-521 curve).
>
> Kelvin
>
> -----Original Message-----
> From: Pratik Datta [mailto:pratik.datta@oracle.com] 
> Sent: Monday, June 08, 2009 2:47 PM
> To: Kelvin Yiu
> Cc: public-xmlsec@w3.org
> Subject: Re: ACTION-303 Correct doc on length of r and s
>
> Suggested text:
>
> Integer to octet-stream conversion must be done according to the I2OSP 
> operation defined in the RFC 2437 [ PKCS1 ] specification with the l 
> parameter equal to the size of the base point order of the curve rounded 
> up to bytes (e.g. 66 for the P-521 curve).
>
> Pratik Datta wrote:
>   
>> Although it is probably obvious, I would prefer that we make it 
>> explicit that one needs to round up when converting length in bits to 
>> bytes. Also using P-521 as an example instead of P-256 will illustrate 
>> this rounding up.
>>
>> Pratik
>>
>> Kelvin Yiu wrote:
>>     
>>> The text in section 6.4.3 has been updated from:
>>>
>>> Integer to octet-stream conversion must be done according to the 
>>> I2OSP operation defined in the RFC 2437 [ PKCS1 ] specification with 
>>> the l parameter equal to the size of the output of the digest 
>>> function in bytes (e.g. 32 for SHA-256).
>>>
>>> to:
>>>
>>> Integer to octet-stream conversion must be done according to the 
>>> I2OSP operation defined in the RFC 2437 [ PKCS1 ] specification with 
>>> the l parameter equal to the size of the base point order of the 
>>> curve in bytes (e.g. 32 for the P-256 curve).
>>>
>>> Comments?
>>>
>>> Kelvin
>>>
>>>   
>>>       
>>     
>
>
>   


-- 
Konrad Lanz, IAIK/SIC - Graz University of Technology
Inffeldgasse 16a, 8010 Graz, Austria
Tel: +43 316 873 5547
Fax: +43 316 873 5520
http://www.iaik.tugraz.at/content/about_iaik/people/lanz_konrad/
http://jce.iaik.tugraz.at/sic/products/xml_security/

Downlaod certificate chain (including the EuroPKI root certificate):
http://ca.iaik.tugraz.at/capso/certs.jsp

Received on Tuesday, 9 June 2009 14:35:39 UTC