The IESG has approved the Internet-Draft 'Use of the RSAES-OAEP
Transport Algorithm in CMS' <draft-ietf-smime-cms-rsaes-oaep-07.txt>
as a Proposed Standard. This document is the product of the S/MIME
Mail Security Working Group.
The IESG contact persons are Russ Housley and Steven Bellovin.
Technical Summary
The RSAES-OAEP Key Transport Algorithm uses a new version of
of PKCS #1 to counter the so-called Million Message Attack that
Version 1.5 was sometimes susceptible to. The document describes
how to embed such wrapped keys in Cryptographic Message Syntax (CMS)
bundles.
Working Group Summary
There were no significant issues.
Protocol Quality
Steve Bellovin has reviewed the spec for the IESG.
RFC Editor note:
In the last paragraph of Section 3, please change
represent P by an algorithm identifier
to
represent P by the algorithm identifier
