OASIS Key Management Interoperability Protocol (KMIP) TC

 View Only
  • 1.  split key usage guide text

    Posted 02-24-2022 21:34
    Draft text for inclusion in 3.9 Split Key in the Usage Guide For PolynomialSharingGF2_8 based splits, the specific polynomial being used varies between implementations. The OASIS Security Algorithms and Methods (SAM) TC has defined two algorithms in the SAM Threshold Sharing Schemes Version 1.0 at http://docs.oasis-open.org/sam/sam-tss/v1.0/sam-tss-v1.0.html which are referred to in KMIP as Polynomial-283 (Polynomial 1 within SAM) and Polynomial-285 (Polynomial 2 within SAM). Implementations SHOULD explicitly specify the SplitKeyPolynomial in KMIP operations in order to achieve interoperability as different KMIP implementations have historically defaulted to different polynomials. The Split Key Algorithms section of the specification for PolynomialSharingGF2_8 has been replaced with a reference to the SAM TSS 1.0. Tim.


  • 2.  Small TC-REKEY-12-30 issue

    Posted 03-31-2022 20:47
    Some missed conversions from 21 to 30 On first Create Key Pair       <PublicKeyAttributes>         <Name type= TextString value= TC-REKEY-12-21-Public-Name / >  <--- should be TC-REKEY-12-30-PUBLIC-NAME         <CryptographicUsageMask type= Integer value= Decrypt Verify />       </PublicKeyAttributes> On Certify        <RotateName type= TextString value= TC-REKEY-12-21-Rotate-Name /> On Recertify response appears twice        <RotateName type= TextString value= TC-REKEY-12-21-Rotate-Name /> Best, Mark Joseph, Ph.D.  President P6R, Inc  408-205-0361  http://www.linkedin.com/pub/mark-joseph/0/752/4b4


  • 3.  Re: Small TC-REKEY-12-30 issue

    Posted 03-31-2022 21:22
    Thanks Mark - I've now got those few and all the other ones in the "rekey" set of files that slipped through. The fixes will be included in the next update. Tim. On Fri, Apr 1, 2022 at 6:47 AM Mark Joseph < mark@p6r.com > wrote: Some missed conversions from "21" to "30" On first Create Key Pair <PublicKeyAttributes> <Name type="TextString" value= "TC-REKEY-12-21-Public-Name"/ > <--- should be TC-REKEY-12-30-PUBLIC-NAME <CryptographicUsageMask type="Integer" value="Decrypt Verify"/> </PublicKeyAttributes> On Certify <RotateName type="TextString" value=" TC-REKEY-12-21-Rotate-Name "/> On Recertify response appears twice <RotateName type="TextString" value= "TC-REKEY-12-21-Rotate-Name "/> Best, Mark Joseph, Ph.D. President P6R, Inc 408-205-0361 http://www.linkedin.com/pub/mark-joseph/0/752/4b4