-
Notifications
You must be signed in to change notification settings - Fork 4
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
incorporate Orie's diagrams from #31
Signed-off-by: Thomas Fossati <[email protected]>
- Loading branch information
1 parent
87a1d12
commit c59ef67
Showing
3 changed files
with
59 additions
and
4 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,26 @@ | ||
.--------. .-----. | ||
| Signer | | TSA | | ||
+--------+----------------------------------. +-----+-------------. | ||
| .-------------. .-----------. .-------. | | .-------------. | | ||
| / private-key / | protected | | datum | | | / private-key / | | ||
| '-----+-------' '---+-------' '---+---' | | '------+------' | | ||
| | | | | | | | | ||
| +---------------+------------' | | | | | ||
| | | | .+. | | ||
| v .---------. | | | L | Clock | | ||
| .---------. .----. | message | | | '+' | | ||
| | Sign1 +->+ hash +->+ Imprint +-------->| | | | ||
| '-+-------' '----' '---------' | | v | | ||
| | .-------. | | .---------. | | ||
| | | nonce +---------->| | timestamp | | | ||
| | '-------' | | '---------' | | ||
'----|--------------------------------------' '---------+---------' | ||
| .-------------. | | ||
+-------------+-----------+ | unprotected | | | ||
| | | | .-----. | | | ||
[protected] [payload] [signature] | | TST |<-----' | ||
| | | | '-----' | | ||
| v v '------+------' | ||
| .-------+------------+-----. | | ||
'--->+ rfc3161-ctt COSE +<-----' | ||
'--------------------------' |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,27 @@ | ||
.--------. .-----. | ||
| Signer | | TSA | | ||
+--------+----------------------------------. +-----+-------------. | ||
| .-------------. .-------. | | .-------------. | | ||
| / private-key / | nonce +--------->+ / private-key / | | ||
| '-+-----------' '-------' | | '------+------' | | ||
| | .---------. | | | | | ||
| | .-------. .----. | message | | | | | ||
| | + datum +->+ hash +->+ Imprint +------->+ .+. | | ||
| | '-+-----' '----' '---------' | | | L | Clock | | ||
| | | | | '+' | | ||
| | | .-------------. | | | | | ||
| v v | protected | | | v | | ||
| .-------. | .-----. | | | .---------. | | ||
| | Sign1 +<-----------+ | TST |<----------+ | timestamp | | | ||
| '-+-----' | '-----' | | | '---------' | | ||
| | '-------------' | | | | ||
'----|--------------------------------------' '-------------------' | ||
| .-------------. | ||
+-------------+-----------+ | unprotected | | ||
| | | | .-----. | | ||
[protected] [payload] [signature] | | ... | | | ||
| | | | '-----' | | ||
| v v '------+------' | ||
| .-------+------------+-----. | | ||
'--->+ rfc3161-ttc COSE +<-----' | ||
'--------------------------' |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
|
@@ -30,6 +30,10 @@ author: | |
contributor: | ||
- name: Carsten Bormann | ||
email: [email protected] | ||
contribution: Carsten contributed part of the security considerations. | ||
- name: Orie Steele | ||
email: [email protected] | ||
contribution: Orie contributed an improved version of the diagrams. | ||
|
||
normative: | ||
STD70: | ||
|
@@ -81,8 +85,7 @@ A signed COSE message is then built as follows: | |
The message imprint sent to the TSA ({{Section 2.4 of -TSA}}) MUST be the hash of the payload field of the COSE signed object. | ||
|
||
~~~ aasvg | ||
{::include ascii-art/ttc.ascii-art} | ||
{::include ascii-art/legenda.ascii-art} | ||
{::include ascii-art/ttc-alt.ascii-art} | ||
~~~ | ||
{: #fig-timestamp-then-cose artwork-align="center" | ||
title="Timestamp, then COSE (TCC)"} | ||
|
@@ -95,8 +98,7 @@ The obtained timestamp token is then added back as an unprotected header into th | |
This mode is utilized when a record of the timing of the signature operation is desired. | ||
|
||
~~~ aasvg | ||
{::include ascii-art/ctt.ascii-art} | ||
{::include ascii-art/legenda.ascii-art} | ||
{::include ascii-art/ctt-alt.ascii-art} | ||
~~~ | ||
{: #fig-cose-then-timestamp artwork-align="center" | ||
title="COSE, then Timestamp (CTT)"} | ||
|