On Monday 16 February 2015 18:40:59 Hanno Böck wrote: > I don't really know what channels I'd have to go through to pursue > such a preset-OID. Can an OID be defined by an RFC? How does the > interaction between the OID registration and RFCs work? Is this > something the CFRG would do or some other entity in the IETF?
OIDs in private organisation trees are defined by the organisation, so if Mozilla just publishes a document stating that such and such numbers mean this and this it's practically defined no need for involvement of any external entities to define it. But I don't think we need or even want OID in the ClientKeyExchange or ServerKeyExchange... There's just a need to define a new SignatureAlgorithm (e.g. 4) that would say rsa-pss. Then the RFC would bind specific parameter sizes to given hashes. The OID would just be an implementation detail in NSS, though it could in theory be reused for X.509. -- Regards, Hubert Kario Quality Engineer, QE BaseOS Security team Web: www.cz.redhat.com Red Hat Czech s.r.o., Purkyňova 99/71, 612 45, Brno, Czech Republic
signature.asc
Description: This is a digitally signed message part.
-- dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
