OASIS Emergency Management TC

Re: [emergency] CAP and Signatures/Encryption

  • 1.  Re: [emergency] CAP and Signatures/Encryption

    Posted 01-25-2005 15:58
     MHonArc v2.5.0b2 -->
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    

    emergency message

    [Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]


    Subject: Re: [emergency] CAP and Signatures/Encryption


    Interesting discussion. I would like to add that are also a number of Internet standards (IETF) that deal with encryption and are used for encrypting messages, such as e-mail. This includes the work of the IETF S/MIME working group, specifically the S/MIME electronic mail security protocol that is widely implemented in commercial mail agents. If you want something a bit more low-level, I would also check out the work of the IPSEC group, specifically RFC 3686 - Using Advanced Encryption Standard (AES) Counter Mode With IPsec Encapsulating Security Payload (ESP). This standard incorporates the NIST standard that defines five modes of operation for AES and other FIPS approved block ciphers [MODES].
    As Bob suggests, rather than the EM TC define a new method of encryption, I would opt for a statement of best practices for encrypting a CAP message using existing, well known industry standards.
     
    Regards
     
    Carl