Didn't we cover this rather comprehensively at the Raleigh F2F, in terms of discussing what it takes for new algorithms to be added, the implications and tradeoffs (to the ecosystem and to relying parties)? Similar with hash algorithms, and the discussion of national ciphersuites. Finally, we've heard from relying parties about how such support can be actively harmful towards interoperability and security.
I don't think this introduces anything new that had not been considered at great length in that and the follow-up meetings, and I don't think there was any clear outcome supportive of introducing such new algorithms. On Tue, Jul 3, 2018 at 3:40 PM Tim Hollebeek via Public <[email protected]> wrote: > My German is rusty, but is it actually saying it is the highest priority > curve? > > > > -Tim > > > > *From:* Public [mailto:[email protected]] *On Behalf Of *Stephen > Davidson via Public > *Sent:* Tuesday, July 3, 2018 1:52 PM > *To:* CABforum1 <[email protected]> > *Subject:* [cabfpub] BR: brainpoolp256r1 curve > > > > Hello: > > I am posting the following on behalf of Rufus Buschart of Siemens, for > discussion. > > Kind regards, Stephen > > QuoVadis > > > > - > > > > The "Bundesamt für Sicherheit in der Informationstechnik" (German Federal > Office for Information Security) published a technical guidance TR-03116-3 > which defines fundamental cryptographic requirements for governmental > projects. In chapter 2.1.3 it defines three elliptic curves that have to be > supported as a minimum for SSL/TLS. One of the three curves is the > brainpoolp256r1 curve. This curve is not currently allowed according to the > BRGs chapter 6.1.5. > > I would like to propose, that this curve becomes allowed by the BRGs as > well. > > *TR-03116-3:* > https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Publikationen/TechnischeRichtlinien/TR03116/BSI-TR-03116-4.pdf?__blob=publicationFile&v=4 > > > > > _______________________________________________ > Public mailing list > [email protected] > https://cabforum.org/mailman/listinfo/public >
_______________________________________________ Public mailing list [email protected] https://cabforum.org/mailman/listinfo/public
