Document Actions  

Document:
Add X3DH and Double Ratchet mechanisms to PKCS#11

Draft (A preliminary unapproved sketch, outline, or version.)

Details

Submitted By Stefan Marsiske on 2017-12-19 2:14 pm UTC

Publication Type

None at this time.

Group / Folder

OASIS PKCS 11 TC / Working Drafts

Modified by

Not modified.

Copy

This document is not a copy.

Technical Contact

None at this time.

Download Count

1333

Download Agreement

None at this time.

Description

Extended Triple DH[1], the key-exchange of the Signal protocol, it depends on XEDDSA since it uses the peers long-term identity keys to both sign and DH in this protocol.

The Double Ratchet[2] also part of the Signal protocol, this derives keys at every send/receiving of messages, providing self-healing and forward secrecy.

i guess i also have to add the footnotes from table 10, to the attributes of the double ratchet secret key attribute table. but i'm a bit unsure about all this.

[1] https://signal.org/docs/specifications/x3dh/
[2] https://signal.org/docs/specifications/doubleratchet/