Digital signature enhancements

• 5.1 Elliptic curve cryptography
  • 5.1.2 Proposed changes to ISO 32000-2:2020 Table 260 – SubFilter value algorithm support
  • 5.1.3 Specification of allowed elliptic curves

---

Issue #xxxx

5. Digital signature enhancements

5.1 Elliptic curve cryptography

5.1.2 Proposed changes to ISO 32000-2:2020 Table 260 – SubFilter value algorithm support

Change Table 2 as follows:

Table 2 - Additional permitted SubFilter values for ISO 32000-2:2020, Table 260

SubFilter value	adbe.pkcs7.detached, ETSI.CAdES.detached or ETSI.RFC3161	adbe.pkcs7.sha1 (c)	adbe.x509.rsa_sha1 (a)
EdDSA algorithm support	IETF RFC 8032, Edwards-curve Digital Signature Algorithm (EdDSA) (PDF 2.x) using the Ed25519 or Ed448 elliptic curvesb	No	No
b When using the Ed25519 EdDSA elliptic curve algorithm, the message digest shall be computed using the SHA512 message digest algorithm with OID id-sha512 as defined in IETF RFC 8419:2018, 2.3. When using the Ed448 EdDSA elliptic curve algorithm, the message digest shall be computed using the SHAKE256 message digest algorithm with OID id-shake256 as defined in IETF RFC 8419:2018, 2.3.

5.1.3 Specification of allowed elliptic curves

Change Table 4 as follows:

Table 4 - Supported EdDSA elliptic curves

Elliptic curve name	Digest algorithms	Restrictions
Ed25519	SHA512
Ed448	SHAKE256	Message digests shall be calculated using the fixed length id-shake256 message digest algorithm in accordance with ISO/TS 32001. The applicable stipulations of RFC 8419, 3.1, 3.2 on algorithm identifiers for SHAKE256 shall be followed.

---

Last modified: 11 Sept 2024