OpenSSL PKCS #7 supports AES & SHA-2 ?

Tolga Acar t.acar at computer.org
Thu Oct 12 23:56:53 EDT 2006 

Read RFC4055 for RSA with various hashes, OAEP, and PSS combinations.

- Tolga

> -----Original Message-----
> From: owner-cryptography at metzdowd.com 
> [mailto:owner-cryptography at metzdowd.com] On Behalf Of Alex Alten
> Sent: Tuesday, October 10, 2006 9:47 AM
> To: Russ Housley; cryptography at metzdowd.com
> Cc: rivest at theory.lcs.mit.edu; rivest at mit.edu; 
> pkcs-editor at rsasecurity.com; ekr at networkresonance.com; 
> rse at engelschall.com; shenson at drh-consultancy.demon.co.uk; 
> ben at algroup.co.uk
> Subject: Re: OpenSSL PKCS #7 supports AES & SHA-2 ?
> 
> Russ,
> 
> OK.  I found SHA-2 in RFC 4634 (only 3 months old), which 
> refers back to FIPS 180-2.
> 
> But I reach a dead-end with PKCS #7 (now RFC 3852).  There's 
> no support for
> SHA-2
> algorithm types (RFC 3279). Also PKCS #1 (now RFC 3447) needs 
> an update for
> SHA-2 with RSA encryption (OIDs, etc.).
> 
> Did I miss something or do you need help in updating these, 
> since I, and probably others too, need them?
> 
> - Alex
> 
> 
> At 01:19 PM 10/9/2006 -0400, Russ Housley wrote:
> >PKCS#7 has been turned over to the IETF for maintenance.  The most 
> >recent version is RFC 3852.  Since the protocol is more 
> stable than the 
> >cryptographic algorithms, the algorithm discussion appear in 
> separate RFCs.
> >
> >TLS 1.2 is under development in the IETF.  It is being done 
> in such a 
> >way that none of the ciphersuites that have already been 
> defined need 
> >to be updated, including the ones that use AES and the SHA-2 family.
> >
> >Russ
> >
> >
> >At 01:28 AM 10/7/2006, Alex Alten wrote:
> >>After reading PKCS #1 v2 more closely and SHA-2 is not even in the 
> >>specs, therefore OpenSSL PKCS #7 functions won't support 
> SHA-2.  This 
> >>spec was last updated in 1998.
> >>
> >>PKCS Editor, is there a new update in progress by RSA Labs to 
> >>incorporate
> >>SHA-2 and AES?
> >>
> >>Does OpenSSL implement PKCS #1 v2 or just v1.5?  If the latter then 
> >>not even
> >>SHA-1 is supported.
> >>
> >>PKCS editor, is there any timeline as to when PKCS #7 will then be 
> >>updated with references to official OIDs, etc., for 
> specifying SHA-2 and AES?
> >>
> >>Dr. Ron Rivest, are you going to publish new message-digest 
> IETF RFCs 
> >>for
> >>SHA-1
> >>and SHA-2?  (So that they can be referenced by an updated PKCS #7.)
> >>
> >>Mr. Russ Housley, can you weigh in with what happening in 
> the IETF WG 
> >>security area?  I know that Mr. Eric Rescorla is working on 
> a new TLS 
> >>v1.2 draft.  Will this be done/ratified soon?  I assume 
> OpenSSL will 
> >>incorporate this soon thereafter?
> >>
> >>This mess with the MD5 and SHA-1 hashes is really starting 
> to becoming 
> >>a problem.
> >>It's certainly impacting new development projects/products I'm 
> >>involved with using SSL and PKI certificates.  My customers are 
> >>concerned about using MD5 and SHA-1, and they don't want to keep 
> >>paying for implementations repeatedly as the standards catch up to 
> >>reality.  Updating these various heavily used standards quickly is 
> >>quite important.
> >>
> >>Sincerely (and thanks in advance for all of your replies),
> >>
> >>- Alex
> >>
> >>
> >>At 09:05 AM 10/6/2006 -0700, Alex Alten wrote:
> >>>Does anyone know if the OpenSSL PKCS #7 functions support 
> AES and SHA-2?
> >>>(I assuming OpenSSL 0.9.7 or later.)
> >>>
> >>>Thanks,
> >>>
> >>>- Alex
> 
> --
> 
> Alex Alten
> Alten Security Engineering, Inc.
> alex at alten.org
> 
> 
> 
> 
> ---------------------------------------------------------------------
> The Cryptography Mailing List
> Unsubscribe by sending "unsubscribe cryptography" to 
> majordomo at metzdowd.com
> 


---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo at metzdowd.com

More information about the cryptography mailing list