Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

consider adding MTI crypto suites #112

Open
Sakurann opened this issue Oct 16, 2024 · 2 comments
Open

consider adding MTI crypto suites #112

Sakurann opened this issue Oct 16, 2024 · 2 comments
Labels
Milestone

Comments

@Sakurann
Copy link
Contributor

Sakurann commented Oct 16, 2024

There has been feedback from EUDIW that having a small list of MTI (mandatory to implement) crypto suites for multiple things would greatly help for interoperability. Below is probably a least controversial list..?

Issuer Signatures:

Key binding/presentation and Verifier Signatures:

Encryption (if needed):

Hashing:

@andprian
Copy link

This list looks reasonable.

@c2bo
Copy link
Member

c2bo commented Feb 18, 2025

For encryption, it might make sense to mandate support for AES-128-GCM as well. Same Security Strength as ECDSA + P256 and most references I've seen in the past mandate support for AES-128-GCM and recommend AES-256-GCM (e.g., TLS 1.3 https://www.rfc-editor.org/rfc/rfc8446.html#section-9.1).

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
Projects
None yet
Development

No branches or pull requests

3 participants