commit 3a76cba5563fe4d459aed27deb63e696580fcec4
parent 5340907c1bb043c10c887990f0ba8f1b804accda
Author: Schanzenbach, Martin <mschanzenbach@posteo.de>
Date: Fri, 4 Oct 2019 18:57:16 +0200
replace rfc8032 mostly
Diffstat:
1 file changed, 12 insertions(+), 8 deletions(-)
diff --git a/draft-schanzen-gns.xml b/draft-schanzen-gns.xml
@@ -83,7 +83,8 @@
<t>
A zone in GNS is defined by a public/private ECC key pair (d,zk),
where d is the private key and zk the corresponding public key.
- GNS combines the EC parameters of Ed25519 (<xref target="RFC8032" />)
+ GNS employs the curve parameters of the twisted edwards representation
+ of Curve25519 <xref target="RFC7748" /> (edwards25519)
with the ECDSA scheme (<xref target="RFC6979" />).
The deterministic property of ECDSA (as opposed to EdDSA) is required
in order to achieve zone privacy.
@@ -93,27 +94,29 @@
<dl>
<dt>d</dt>
<dd>
- is a private key. It is defined in <xref target="RFC8032" /> as a b-bit
- string. In our case, b is 256.
+ is a 256-bit ECDSA private key.
In GNS, records are signed using a key derived from "d" as described in
<xref target="publish" />.
</dd>
<dt>p</dt>
<dd>
- is the prime of Ed25519 as defined in <xref target="RFC8032" />, i.e.
+ is the prime of edwards25519 as defined in <xref target="RFC7748" />, i.e.
2^255 - 19.
</dd>
<dt>B</dt>
<dd>
- is the group generator of the elliptic curve as defined in
- <xref target="RFC8032" /> for Ed25519.
+ is the group generator (X(P),Y(P)) of edwards25519 as defined in
+ <xref target="RFC7748" />.
+ </dd>
+ <dt>L</dt>
+ <dd>
+ is the order of edwards25519 in <xref target="RFC7748" />.
</dd>
<dt>zk</dt>
<dd>
is the ECDSA public key corresponding to d. It is defined in
<xref target="RFC6979" /> as the curve point d*B where B is the group
- generator of the elliptic curve. Note that this is NOT a Ed25519 public
- key.
+ generator of the elliptic curve.
The public key is used to uniquely identify a GNS zone and is referred to
as the "zone key".
</dd>
@@ -809,6 +812,7 @@
<back>
<references>
<name>Normative References</name>
+ <reference anchor="RFC7748" target="https://www.rfc-editor.org/info/rfc7748"><front><title>Elliptic Curves for Security</title><author initials="A." surname="Langley" fullname="A. Langley"><organization/></author><author initials="M." surname="Hamburg" fullname="M. Hamburg"><organization/></author><author initials="S." surname="Turner" fullname="S. Turner"><organization/></author><date year="2016" month="January"/><abstract><t>This memo specifies two elliptic curves over prime fields that offer a high level of practical security in cryptographic applications, including Transport Layer Security (TLS). These curves are intended to operate at the ~128-bit and ~224-bit security level, respectively, and are generated deterministically based on a list of required properties.</t></abstract></front><seriesInfo name="RFC" value="7748"/><seriesInfo name="DOI" value="10.17487/RFC7748"/></reference>
<reference anchor="RFC3826" target="https://www.rfc-editor.org/info/rfc3826"><front><title>The Advanced Encryption Standard (AES) Cipher Algorithm in the SNMP User-based Security Model</title><author initials="U." surname="Blumenthal" fullname="U. Blumenthal"><organization/></author><author initials="F." surname="Maino" fullname="F. Maino"><organization/></author><author initials="K." surname="McCloghrie" fullname="K. McCloghrie"><organization/></author><date year="2004" month="June"/><abstract><t>This document describes a symmetric encryption protocol that supplements the protocols described in the User-based Security Model (USM), which is a Security Subsystem for version 3 of the Simple Network Management Protocol for use in the SNMP Architecture. The symmetric encryption protocol described in this document is based on the Advanced Encryption Standard (AES) cipher algorithm used in Cipher FeedBack Mode (CFB), with a key size of 128 bits. [STANDARDS-TRACK]</t></abstract></front><seriesInfo name="RFC" value="3826"/><seriesInfo name="DOI" value="10.17487/RFC3826"/></reference>
<reference anchor="RFC5890" target="https://www.rfc-editor.org/info/rfc5890"><front><title>Internationalized Domain Names for Applications (IDNA): Definitions and Document Framework</title><author initials="J." surname="Klensin" fullname="J. Klensin"><organization/></author><date year="2010" month="August"/><abstract><t>This document is one of a collection that, together, describe the protocol and usage context for a revision of Internationalized Domain Names for Applications (IDNA), superseding the earlier version. It describes the document collection and provides definitions and other material that are common to the set. [STANDARDS-TRACK]</t></abstract></front><seriesInfo name="RFC" value="5890"/><seriesInfo name="DOI" value="10.17487/RFC5890"/></reference>
<reference anchor="RFC5869" target="https://www.rfc-editor.org/info/rfc5869">
