RFC Errata
Found 4 records.
Status: Verified (4)
RFC 4357, "Additional Cryptographic Algorithms for Use with GOST 28147-89, GOST R 34.10-94, GOST R 34.10-2001, and GOST R 34.11-94 Algorithms", January 2006
Source of RFC: IETF - NON WORKING GROUPArea Assignment: sec
Errata ID: 1473
Status: Verified
Type: Technical
Publication Format(s) : TEXT
Reported By: Serguei Leontiev
Date Reported: 2008-07-16
Verifier Name: Russ Housley
Date Verified: 2010-03-11
Section 7 says:
This algorithm creates a GOST 28147-89 key Kd, given GOST R 34.10-94 or GOST R 34.10-2001 secret key K and diversification data D of size 4..40 bytes.
It should say:
This algorithm creates a GOST 28147-89 key Kd, produced from given 256-bit secret key K and diversification data D of size 4..40 bytes.
Notes:
In this place "secret key" means any key, which MUST NOT be used to
protect of raw data. For example, private keys, shared secret keys,
wrap/unwrap keys, etc.
Russian-English terminology translation bug
Errata ID: 5927
Status: Verified
Type: Technical
Publication Format(s) : TEXT
Reported By: Stanislav Smyshlyaev
Date Reported: 2019-12-06
Verifier Name: Paul Wouters
Date Verified: 2024-01-16
Section 10.6 says:
Gost28147-89-ParamSet
FROM Gost28147-89-EncryptionSyntax
...
GostR3410-94-PublicKeyParameters ::=
SEQUENCE {
publicKeyParamSet
OBJECT IDENTIFIER (
id-GostR3410-94-TestParamSet |
-- Only for testing purposes
id-GostR3410-94-CryptoPro-A-ParamSet |
id-GostR3410-94-CryptoPro-B-ParamSet |
id-GostR3410-94-CryptoPro-C-ParamSet |
id-GostR3410-94-CryptoPro-D-ParamSet |
id-GostR3410-94-CryptoPro-XchA-ParamSet |
id-GostR3410-94-CryptoPro-XchB-ParamSet |
id-GostR3410-94-CryptoPro-XchC-ParamSet
),
digestParamSet
OBJECT IDENTIFIER (
id-GostR3411-94-TestParamSet |
-- Only for testing purposes
id-GostR3411-94-CryptoProParamSet
),
encryptionParamSet Gost28147-89-ParamSet OPTIONAL
}
It should say:
id-Gost28147-89-CryptoPro-A-ParamSet, Gost28147-89-ParamSet
FROM Gost28147-89-EncryptionSyntax
...
GostR3410-94-PublicKeyParameters ::=
SEQUENCE {
publicKeyParamSet
OBJECT IDENTIFIER (
id-GostR3410-94-TestParamSet |
-- Only for testing purposes
id-GostR3410-94-CryptoPro-A-ParamSet |
id-GostR3410-94-CryptoPro-B-ParamSet |
id-GostR3410-94-CryptoPro-C-ParamSet |
id-GostR3410-94-CryptoPro-D-ParamSet |
id-GostR3410-94-CryptoPro-XchA-ParamSet |
id-GostR3410-94-CryptoPro-XchB-ParamSet |
id-GostR3410-94-CryptoPro-XchC-ParamSet
),
digestParamSet
OBJECT IDENTIFIER (
id-GostR3411-94-TestParamSet |
-- Only for testing purposes
id-GostR3411-94-CryptoProParamSet
),
encryptionParamSet Gost28147-89-ParamSet DEFAULT
id-Gost28147-89-CryptoPro-A-ParamSet
}
Notes:
The parameters structures of GostR3410-94-PublicKeyParameters defined in RFC 4357 and RFC 4491 that do not match. In RFC4491, a DEFAULT is provided for the 'encryptionParamSet' object identifier, while in RFC 4357, the 'encryptionParamSet' object identifier is OPTIONAL.
---Verifier Notes:---
Paul Wouters (AD): Closed as Verified. There won't be any updates for RFC 4357 as the algorithms are not used anymore.
The current GOST algorithms are defined in RFC 6986, RFC 7801 and RFC 7836.
Errata ID: 5928
Status: Verified
Type: Technical
Publication Format(s) : TEXT
Reported By: Stanislav Smyshlyaev
Date Reported: 2019-12-06
Verifier Name: Paul Wouters
Date Verified: 2024-01-16
Section 10.8 says:
Gost28147-89-ParamSet
FROM Gost28147-89-EncryptionSyntax
...
GostR3410-2001-PublicKeyParameters ::=
SEQUENCE {
publicKeyParamSet
OBJECT IDENTIFIER (
id-GostR3410-2001-TestParamSet |
-- Only for testing purposes
id-GostR3410-2001-CryptoPro-A-ParamSet |
id-GostR3410-2001-CryptoPro-B-ParamSet |
id-GostR3410-2001-CryptoPro-C-ParamSet |
id-GostR3410-2001-CryptoPro-XchA-ParamSet |
id-GostR3410-2001-CryptoPro-XchB-ParamSet
),
digestParamSet
OBJECT IDENTIFIER (
id-GostR3411-94-TestParamSet |
-- Only for testing purposes
id-GostR3411-94-CryptoProParamSet
),
encryptionParamSet Gost28147-89-ParamSet OPTIONAL
}
It should say:
id-Gost28147-89-CryptoPro-A-ParamSet, Gost28147-89-ParamSet
FROM Gost28147-89-EncryptionSyntax
...
GostR3410-2001-PublicKeyParameters ::=
SEQUENCE {
publicKeyParamSet
OBJECT IDENTIFIER (
id-GostR3410-2001-TestParamSet |
-- Only for testing purposes
id-GostR3410-2001-CryptoPro-A-ParamSet |
id-GostR3410-2001-CryptoPro-B-ParamSet |
id-GostR3410-2001-CryptoPro-C-ParamSet |
id-GostR3410-2001-CryptoPro-XchA-ParamSet |
id-GostR3410-2001-CryptoPro-XchB-ParamSet
),
digestParamSet
OBJECT IDENTIFIER (
id-GostR3411-94-TestParamSet |
-- Only for testing purposes
id-GostR3411-94-CryptoProParamSet
),
encryptionParamSet Gost28147-89-ParamSet DEFAULT
id-Gost28147-89-CryptoPro-A-ParamSet
}
Notes:
The parameters structures of GostR3410-2001-PublicKeyParameters defined in RFC 4357 and RFC 4491 do not match. In RFC4491, a DEFAULT is provided for the 'encryptionParamSet' object identifier, while in RFC 4357, the 'encryptionParamSet' object identifier is OPTIONAL.
---Verifier Notes:---
Paul Wouters (AD): Closed as Verified. There won't be any updates for RFC 4357 as the algorithms are not used anymore.
The current GOST algorithms are defined in RFC 6986, RFC 7801 and RFC 7836.
Errata ID: 1467
Status: Verified
Type: Editorial
Publication Format(s) : TEXT
Reported By: Serguei Leontiev
Date Reported: 2008-07-09
Verifier Name: Russ Housley
Date Verified: 2010-03-11
Section 13.2 says:
[RFDSL] "Russian Federal Digital Signature Law", 10 Jan 2002 N
1-FZ
It should say:
[RFDSL] "Russian Federal Electronic Digital Signature Law",
10 Jan 2002 N 1-FZ.
Notes:
Russian-English terminology translation bug