Uploaded image for project: 'OASIS Open Document Format for Office Applications (OpenDocument) TC'
  1. OASIS Open Document Format for Office Applications (OpenDocument) TC
  2. OFFICE-2727

ODF 1.2 Part 3 4.8.7 manifest:key-size units, constraints, and defaults

    XMLWordPrintable

    Details

    • Type: Bug
    • Status: Applied
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: ODF 1.2 CD 05
    • Fix Version/s: ODF 1.2 CD 06
    • Component/s: Packaging, Part 2 (Packages) [1.2: 3], Security
    • Labels:
      None
    • Environment:

      The optional manifest:key-size attribute is introduced with ODF 1.2. This issue is described specifically against the text in ODF 1.2 CD05 Part 3.

    • Proposal:
      Hide

      1. Replace the sentence in 4.8.8 manifest:key size with

      """
      The manifest:key-size attribute specifies the length in octets of a key to be delivered by a key-developing algorithm. When such an algorithm delivers a fixed-size result, the key that is extracted shall consist of the left-most available octets of the attribute-specified size. The manifest:key-size attribute shall not exceed the number of octets available in an algorithm's fixed-size result. If an algorithm will produce a parameter-specified variable-sized key, the attribute value shall not exceed any limiting number on the number of octets that the algorithm can produce.
      """

      2. Add the two new subsection

      """
      4.8.7.1 <manifest:key-derivation>

      The default value for the optional <manifest:key-derivation> manifest:key-size attribute is 16 (for 128-bit key size).

      4.8.7.2 <manifest:start-key-generation>

      For algorithms that produce parameter-specified variable-size keys, the manifest:key-size attribute shall not be omitted. The default value for omitted <manifest:start-key-generation> manifest:key-size attributes is the number of fixed-size full octets produced by the digest method identified in the accompanying manifest:start-key-generation-name attribute Note: For example, the default value for SHA-1 is 20 (for 160 bits), the value for SHA-256 is 32 (for 256 bits), and the value for SHA-512 is 64 (for 512 bits).

      Show
      1. Replace the sentence in 4.8.8 manifest:key size with """ The manifest:key-size attribute specifies the length in octets of a key to be delivered by a key-developing algorithm. When such an algorithm delivers a fixed-size result, the key that is extracted shall consist of the left-most available octets of the attribute-specified size. The manifest:key-size attribute shall not exceed the number of octets available in an algorithm's fixed-size result. If an algorithm will produce a parameter-specified variable-sized key, the attribute value shall not exceed any limiting number on the number of octets that the algorithm can produce. """ 2. Add the two new subsection """ 4.8.7.1 <manifest:key-derivation> The default value for the optional <manifest:key-derivation> manifest:key-size attribute is 16 (for 128-bit key size). 4.8.7.2 <manifest:start-key-generation> For algorithms that produce parameter-specified variable-size keys, the manifest:key-size attribute shall not be omitted. The default value for omitted <manifest:start-key-generation> manifest:key-size attributes is the number of fixed-size full octets produced by the digest method identified in the accompanying manifest:start-key-generation-name attribute Note: For example, the default value for SHA-1 is 20 (for 160 bits), the value for SHA-256 is 32 (for 256 bits), and the value for SHA-512 is 64 (for 512 bits).
    • Resolution:
      Hide

      Fixed defaults are specified. This has been accomplished in the resolution of OFFICE-2741. No additional resolution is required here.

      Addition by Michael on 11/05:
      In 4.8.7, replace the first paragraph with:

      The manifest:key-size attribute specifies the length in octets of a key to be delivered by a key-developing algorithm.

      Show
      Fixed defaults are specified. This has been accomplished in the resolution of OFFICE-2741 . No additional resolution is required here. Addition by Michael on 11/05: In 4.8.7, replace the first paragraph with: The manifest:key-size attribute specifies the length in octets of a key to be delivered by a key-developing algorithm.

      Description

      Key sizes are typically expressed in bits or octets (the number of consecutive 8-bit groups contained in the key) and are regarded as big-endian numbers. No size unit is specified for the manifest:key-size attributes, but examination of current implementations indicates that the value is a number of octets. Those units and how short keys are extracted from algorithms that produce longers ones needs to be explicit.

      There are also natural constraints on key sizes, either because an algorithm produces a fixed-size result or because an algorithm to which the key will be supplied has constraints on the sizes of keys it accepts. These effects need to be accounted for in some way.

        Attachments

          Activity

            People

            • Assignee:
              orcmid Dennis Hamilton (Inactive)
              Reporter:
              orcmid Dennis Hamilton (Inactive)
            • Watchers:
              0 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: