61   Signature Algrothm for GDOI Push needs to be more explicit

Created: 11 Oct 2024

Status: Approval (Editoral)

Part: Part 9 (2023, Edition2)

Links:

Page: 98

Clause: 8.6.1

Paragraph: 2nd

Issue

Implementors often don't check 6407 for the Signature algorithm and it is over plaintext of the message (including the header). Often, they create a hash of using the header with the length of the encrypted payload.

6407 specifies that the header used in the HASH shall use the length of the unencrypted payload

Proposal

Add the sentence:

"The signature is calculated over the plaintext payload of the message before it is encrypted as outlined in section 4 of RFC 6407."

Discussion Created Status
Proposal is OK for me. 21 Oct 24 Approval (Editoral)
If implementors are struggeling, this is an easy addition. Specifically as we have encrypt-than-MAC in IEC 62351-3 the order of operation is different here, which may be confusing.

Proposal to include the proposed text to provide the information to the implementors.
11 Oct 24 Approval (Editoral)

 

Privacy | Contact | Disclaimer

Tissue DB v. 24.11.8.1