Algorithm Profiles Phillip Hallam-Baker Principal Scientist - - PowerPoint PPT Presentation

algorithm profiles
SMART_READER_LITE
LIVE PREVIEW

Algorithm Profiles Phillip Hallam-Baker Principal Scientist - - PowerPoint PPT Presentation

Algorithm Profiles Phillip Hallam-Baker Principal Scientist VeriSign Inc. Traditional Approach Plat du jour + A-la-carte MUST implement Becomes obsolete A-la-carte Combinatorial explosion Hidden Constraints Box says supports SHA-1,


slide-1
SLIDE 1

Algorithm Profiles

Phillip Hallam-Baker

Principal Scientist VeriSign Inc.

slide-2
SLIDE 2

Traditional Approach

slide-3
SLIDE 3

Plat du jour + A-la-carte

slide-4
SLIDE 4

MUST implement

Becomes obsolete

slide-5
SLIDE 5

A-la-carte

Combinatorial explosion

slide-6
SLIDE 6

Box says ‘supports SHA-1, SHA-256, RSA, DSA’ BUT DSA implementation does not support SHA-256

Hidden Constraints

slide-7
SLIDE 7

Result

Many variations to test Many configurations for security analysis Real ‘must implement’ deviates from specification Hidden constraints are not exposed

slide-8
SLIDE 8

Objectives

Constrain number of variations Allow for specialty (vanity) crypto

slide-9
SLIDE 9

Proposal

Quantum Profiles

slide-10
SLIDE 10

Each Profile defines

One encryption, one digest, one MAC, one key exchange, one signature, &ct. Has unique URI [Parameters, Modes]

slide-11
SLIDE 11

Finite Field Profile

RSA SHA2 HMAC-SHA2 AES One C18N

slide-12
SLIDE 12

ECC Profile

NIST Suite B One C18N

slide-13
SLIDE 13

SHA3 Profile

To be released 2009/2010

slide-14
SLIDE 14

Non-Standard Profile

NIST Suite A Private definition

slide-15
SLIDE 15

Parameters / Modes

Limited, discrete options Master profile specifies set of sub profiles

slide-16
SLIDE 16

Finite Field Profile

Level1: RSA2048, SHA256, AES128 Level1a: RSA4096, SHA256, AES128 Level2: RSA3072, SHA386, AES192 Level3: RSA4096, SHA512, AES256 Level3x = Level1 + Level1a + Level2 + Level3

slide-17
SLIDE 17

Finite Field Profile v2007

Level1: RSA2048, SHA256, AES128 Level2: RSA4096, SHA256, AES128 Level3: RSA4096, SHA512, AES256 Level3x = Level1 + Level2 + Level3

slide-18
SLIDE 18

Finite Field Profile v2009

Level1: RSA2048-RND-PSS, SHA256, AES128 Level2: RSA4096-RND-PSS, SHA256, AES128 Level3: RSA4096-RND-PSS, SHA512, AES256

slide-19
SLIDE 19

URIs

e.g. http://w3.org/2008/xmlsec/profile-ff-level1 [Intentionally opaque]

slide-20
SLIDE 20

Question

Specify Crypto and XML issues in same profile Specify separate profiles for crypto and XML