Add to collection(s) Add to saved
  1. No category

ALGOworkshop09 LStoECRYPTandISOSC27 - Docbox

advertisement 
2004-12-06
ETSI TC ESI Liaison Statement
ALGO Workshop TD09
page 1 of 2
Usage of Whirlpool for electronic signatures
From:
Group:
Organisation:
Approval / Status:
Respond by Date:
Contact Persons:
e-mail:
TC ESI
ETSI
Ernst Günter Giessmann
ErnstG.Giessmann@t-systems.com
To:
Group:
Organisation:
Contact Persons:
e-mail:
ECRYPT and ISO SC 27
For:
Action:
Information:
X
ETSI Technical Committee ESI ("Electronic Signatures and Infrastructures") is currently
working on a Technical Specification with the following title: Algorithms and Parameters
for Electronic Signatures (Part 1: hash functions and asymmetric algorithms).
The current draft is available at:
http://docbox.etsi.org/esi/open/200411ALGOworkshop/ALGOworkshop02%20DraftTS1021761.zip
Whirlpool (approved by the NESSIE project) has been proposed as an additional secure
hash function.
In the context of electronic signatures, hash functions can be used to compute the digest
of a message that is placed inside a time-stamp token or in combination with a signature
scheme.
Whirlpool, as currently defined, has a 512 bits output. The OID for Whirlpool is defined
as:
{ iso(1) standard(0) hash-functions(10118) part3(3) algorithm(0) whirlpool(55) }
This output is however too large to be used with Elliptic Curve schemes. The question is
whether or not Whirlpool can be safely used in modes where the output would be smaller
than 512 bits? How would these modes be defined? Can they be simply based on a
truncation?
If this is the case, it is important to notice that such modes would need to be identified
with an algorithm identifier different from the current one which is only applicable for a
2004-12-06
ETSI TC ESI Liaison Statement
ALGO Workshop TD09
page 2 of 2
Usage of Whirlpool for electronic signatures
512 bits output. Such algorithm identifier then would be usable in ASN.1 syntaxes such
as:
AlgorithmIdentifier ::= SEQUENCE {
algorithm
OBJECT IDENTIFIER,
parameters
ANY DEFINED BY algorithm OPTIONAL }
When used in combination with a signature scheme, can Whirlpool be safely used with
any signature scheme?
For example, can Whirlpool be used together with RSA, like when sha224 is used with
RSA the signature suite specific OID is sha224WithRSAEncryption?
Which committee/organization would be well placed to define the OIDs for signature
suite so that Whirlpool can be used, at least, with ECDSA and RSA?
Related documents
Part 2: Market Research
Part 2: Market Research
Uglies Novel Vocabulary
Uglies Novel Vocabulary
Knowledge Management @ Whirlpool
Knowledge Management @ Whirlpool
Case Study - Whirlpool
Case Study - Whirlpool
2004-07-13 WHR Portal on DHL Conference
2004-07-13 WHR Portal on DHL Conference
Whirlpool Corporation
Whirlpool Corporation
DFFN_exec_summary_Wh.. - Interaction Design Institute Ivrea
DFFN_exec_summary_Wh.. - Interaction Design Institute Ivrea
FOR IMMEDIATE RELEASE - Maytag Commercial Laundry
FOR IMMEDIATE RELEASE - Maytag Commercial Laundry
Direct and Inverse Variation notes
Direct and Inverse Variation notes
Slide 1 - ServiceMatters
Slide 1 - ServiceMatters
Jeff Durham, Whirlpool Corporation
Jeff Durham, Whirlpool Corporation
Presentation
Presentation
Download
advertisement