Merge pull request #498 from vladimir-v-diaz/add_ecdsa_to_spec

Add ecdsa-sha2-nistp256 to specification
2026-05-24 10:08:28 +00:00 · 2017-10-11 12:24:02 -04:00 · 2017-10-11 12:24:02 -04:00 · 76b2b2d47c
commit 76b2b2d47c
parent 3fd782c7eb c2f9d63f12
1 changed files with 22 additions and 8 deletions
--- a/docs/tuf-spec.md
+++ b/docs/tuf-spec.md
@ -1,6 +1,6 @@
 # <p align="center">The Update Framework Specification

-Last modified: **2 June 2017**
+Last modified: **11 October 2017**

 Version: **1.0 (Draft)**

@ -470,16 +470,21 @@ Version: **1.0 (Draft)**
   although TUF is not restricted to any particular signature scheme,
   key type, or cryptographic library:

-       "RSASSA-PSS-SHA256" : RSA Probabilistic signature scheme with appendix.
-                      The underlying hash function is SHA256.
+       "rsassa-pss-sha256" : RSA Probabilistic signature scheme with appendix.
+          The underlying hash function is SHA256.

       "ed25519" : Elliptic curve digital signature algorithm based on Twisted
-                  Edwards curves.
+          Edwards curves.

-   RSASSA-PSS: https://tools.ietf.org/html/rfc3447#page-29
+        "ecdsa-sha2-nistp256" : Elliptic Curve Digital Signature Algorithm
+           with NIST P-256 curve signing and SHA-256 hashing.
+
+   rsassa-pss: https://tools.ietf.org/html/rfc3447#page-29

   ed25519: https://ed25519.cr.yp.to/

+   ecdsa: https://en.wikipedia.org/wiki/Elliptic_Curve_Digital_Signature_Algorithm
+
   All keys have the format:

        { "keytype" : KEYTYPE,
@ -491,9 +496,9 @@ Version: **1.0 (Draft)**
   used to sign documents.  The type determines the interpretation of
   KEYVAL.

-   We define two keytypes below: 'rsa' and 'ed25519'.  However, TUF places no
-   restrictions on cryptographic keys.  Adopters can use any particular keytype,
-   signing scheme, and cryptographic library.
+   We define three keytypes below: 'rsa', 'ed25519', and 'ecdsa'.  However, TUF
+   places no restrictions on cryptographic keys.  Adopters can use any
+   particular keytype, signing scheme, and cryptographic library.

   The 'rsa' format is:

@ -514,6 +519,15 @@ Version: **1.0 (Draft)**

   where PUBLIC is a 32-byte string.

+   The 'ecdsa' format is:
+
+        { "keytype" : "ecdsa-sha2-nistp256",
+          "scheme" : "ecdsa-sha2-nistp256",
+          "keyval" : { "public" : PUBLIC}
+        }
+
+   where PUBLIC is in PEM format and a string.
+
   The KEYID of a key is the hexdigest of the SHA-256 hash of the
   canonical JSON form of the key.