Re: [CFRG] [EXTERNAL] Re: Streamlined NTRU Prime: sntrup761
Peter C <Peter.C@ncsc.gov.uk> Tue, 16 May 2023 09:24 UTC
Return-Path: <Peter.C@ncsc.gov.uk>
X-Original-To: cfrg@ietfa.amsl.com
Delivered-To: cfrg@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 61C7DC06F256 for <cfrg@ietfa.amsl.com>; Tue, 16 May 2023 02:24:06 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.099
X-Spam-Level:
X-Spam-Status: No, score=-7.099 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FROM_GOV_DKIM_AU=-0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=ncsc.gov.uk
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 9WpDcztvP_5H for <cfrg@ietfa.amsl.com>; Tue, 16 May 2023 02:24:01 -0700 (PDT)
Received: from GBR01-LO2-obe.outbound.protection.outlook.com (mail-lo2gbr01on0707.outbound.protection.outlook.com [IPv6:2a01:111:f400:fe15::707]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 1696AC06F226 for <cfrg@ietf.org>; Tue, 16 May 2023 02:22:49 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=WAVLxqm2NAZe5XrJJ0m8kp7Lwiev7E6zRaA2bI5mXPJcwKmNN7OmROxqP0RYRa2FwuO5Oze9PzX5mqCgALCu8QE6M1Qo45Wu7f6xfJjtM36bbvkCI2qQIC/Iz+CgVX4dGnVLx7HSmLNfvus6zrF5RU/CDsCXKeZbY3RbK3x3Sh6MKluBRfLAeBXjAjn34/aULiXkybtEBCmRH/LZ2THwFswe8aL5EXLzAydw38ccIbIX83OacxFrOkD+Vij3vRUlVP0bCArMw3ty+X2xZpik8LkQ/jiUEtqSicvId9B1M/sslbNHMiapnPMIlC3aiqqEwsDPUtHiLsghqExRkRmDzA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=WkJhCh8wKyC1go1uDOFShGCts0IEXFpKqCqlMvlu9Dg=; b=jh1jRbwDSPZdY+d+3jHe5/1P3lIU82518sLHUKI4SfP1U2QTmLXxNyHo454gGwIo+mx3lXdXPpJAdc8wYb9zgP2a7XJrzd1g64gyQN4a70vaSEqG6b7XdlBkt1vSAdWD1EJpKR6qIj2qFyf4swYGyZfY7dG2dWAX3w4hfArdIoeJIQwgT85KnFA9srUW+As509jDXcZ0RSJpAxJx/Czei+PEWIsEhTQ54GHRoVbuWaMLTdfgLHaHSScaCak2AxdDY/VItOtEq72IU6+QEcCIyj38ptcUasjHusn/yJh0fO5b8qxWuRk2ohnOR9vFls6KrMnGW5IQq/pOGNLE4vgwtQ==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=ncsc.gov.uk; dmarc=pass action=none header.from=ncsc.gov.uk; dkim=pass header.d=ncsc.gov.uk; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ncsc.gov.uk; s=selector2; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=WkJhCh8wKyC1go1uDOFShGCts0IEXFpKqCqlMvlu9Dg=; b=njh3GHh3Ch1d9weRf3moI+suHsADcwXb3RKh6azR2mxsEp6QTO5BYTFoFOJp+3441BP4idOny9RmOKuOFUFQ0n2Nsj6pmtKAwyAgyuf9P8/OGH/Yojf0UDwfZU4yjEt98G4ZYNtUouibY+LdC+HXXM5IpsLkaYzSL8fFskggF0Zw2YPsMYehmLVCVaKCuOtitITONxD4FFQAndhsSEiO089AnEIYshISU8VUeSyb9nsrZ9/vUB4dtmEHGbWwD8CkZzCnVwZEJjiD7o7nyJBNe5JmzZyiAOmGsqfKwrP/y1NeP3sHgP/zgtgnlGDfXpg6qhx8ijsngzpKQcJhq/NrCQ==
Received: from LO2P123MB4927.GBRP123.PROD.OUTLOOK.COM (2603:10a6:600:1e3::6) by LOYP123MB3150.GBRP123.PROD.OUTLOOK.COM (2603:10a6:600:f1::10) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.6387.33; Tue, 16 May 2023 09:22:45 +0000
Received: from LO2P123MB4927.GBRP123.PROD.OUTLOOK.COM ([fe80::93f6:c43:1b75:465d]) by LO2P123MB4927.GBRP123.PROD.OUTLOOK.COM ([fe80::93f6:c43:1b75:465d%6]) with mapi id 15.20.6387.033; Tue, 16 May 2023 09:22:45 +0000
From: Peter C <Peter.C@ncsc.gov.uk>
To: Mike Ounsworth <Mike.Ounsworth@entrust.com>
CC: "cfrg@ietf.org" <cfrg@ietf.org>
Thread-Topic: [CFRG] [EXTERNAL] Re: Streamlined NTRU Prime: sntrup761
Thread-Index: AQHZhNgBZnC23HkfEk2VANv4UP2jo69Wt9EAgAAsNoCAACvtAIAADITQgAGWYACAAysNAA==
Date: Tue, 16 May 2023 09:22:45 +0000
Message-ID: <LO2P123MB4927C5995EF71071E93B549DBC799@LO2P123MB4927.GBRP123.PROD.OUTLOOK.COM>
References: <871qjm4ikm.fsf@kaka.sjd.se> <CAN8C-_LmurEBGA-e6YjNd2W0f+1gajqoSAq-F-fHOugbJO0xBg@mail.gmail.com> <CH0PR11MB57396AE5BFC2FA681425A7BC9F759@CH0PR11MB5739.namprd11.prod.outlook.com> <LO2P123MB492793A5C785D17ECDF2C6ABBC759@LO2P123MB4927.GBRP123.PROD.OUTLOOK.COM> <CH0PR11MB57397C6048EF71AC477B268B9F759@CH0PR11MB5739.namprd11.prod.outlook.com> <CH0PR11MB573955922D5A757483440B389F759@CH0PR11MB5739.namprd11.prod.outlook.com> <LO2P123MB4927ABC0807EDA8ECD5B3F1CBC759@LO2P123MB4927.GBRP123.PROD.OUTLOOK.COM> <DM8PR11MB5736FA9C22B6F4830C101CC29F7A9@DM8PR11MB5736.namprd11.prod.outlook.com>
In-Reply-To: <DM8PR11MB5736FA9C22B6F4830C101CC29F7A9@DM8PR11MB5736.namprd11.prod.outlook.com>
Accept-Language: en-GB, en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=ncsc.gov.uk;
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: LO2P123MB4927:EE_|LOYP123MB3150:EE_
x-ms-office365-filtering-correlation-id: 653b308b-669b-4f71-5a1d-08db55ef1c07
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: aUPfNRiNbjOsAy4NqziPcedrBFt+vn0DViQail7Fj8XJDhZ2mJ8TKFuJcuWiW+Ezec3pKad0HrafpOWAyTjxMM6JMoDkUH/PdE3i+nOc/LYKV2B0PnHqxAw+xx/6X9KNDEzrpQBumIEhVHWL9dBGudVZ/MiAcR6IXrAJEcff56orrZzMCuV2M80Kku+mYvbvlVf4nCl1oRFJSyvrrCG2+RhVbJ0XRbcT0wXja38ztgDR+1a8NUZJyhB7aaH1SFUy07ryDCY1a7MGqHCAdXoTBlU6M1vUWuVDQORbbRADZgc675h2wUkEt2+Hl816MZ/575AEF8IcElc7RuqagwfWo6J0olPkmmg4yDixC+dkSKHbMqlx6/SX4jZPYyGv/9sXBOEdoExflPNLdGrO6pqhhiQtsusdi+qBDzTJJMsGJYddTreDKhsTLfXOSRSK4/aFDxWyqGC86QH7CCCxhtsAMl/spGdkimwXl56txfF8ViruPwW177pFxLOH5anWEj9e1FtECgCviAp/t6DBByPbczcdDwqurCcfajojYi+fQCYU5xkuyvNHCNMHHn2+qPVNJQ6lRmYfgsOCedbKI441h9fdVzP1beagYnsw650S2MOE/tK1r7lW75JnfQFFGYNo
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:LO2P123MB4927.GBRP123.PROD.OUTLOOK.COM; PTR:; CAT:NONE; SFS:(13230028)(4636009)(396003)(39860400002)(376002)(366004)(346002)(136003)(451199021)(71200400001)(66556008)(76116006)(66946007)(38070700005)(478600001)(64756008)(66476007)(66446008)(7696005)(316002)(6916009)(4326008)(86362001)(186003)(6506007)(122000001)(38100700002)(82960400001)(55016003)(26005)(5660300002)(41300700001)(2906002)(8936002)(52536014)(8676002)(33656002)(83380400001)(9686003); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-OriginatorOrg: ncsc.gov.uk
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: LO2P123MB4927.GBRP123.PROD.OUTLOOK.COM
X-MS-Exchange-CrossTenant-Network-Message-Id: 653b308b-669b-4f71-5a1d-08db55ef1c07
X-MS-Exchange-CrossTenant-originalarrivaltime: 16 May 2023 09:22:45.8456 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 14aa5744-ece1-474e-a2d7-34f46dda64a1
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: 5BWqgeex/GHCmDifQdtcMK8aN+jb77qJ7QhhEn5j2Vu06c4m6dCkUFyqd828y6Qb1AbEeEaAHE3Z2V05niSFnA==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: LOYP123MB3150
Archived-At: <https://mailarchive.ietf.org/arch/msg/cfrg/1IWpjPHf78NQL17muEYpQsUhgpk>
Subject: Re: [CFRG] [EXTERNAL] Re: Streamlined NTRU Prime: sntrup761
X-BeenThere: cfrg@irtf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Crypto Forum Research Group <cfrg.irtf.org>
List-Unsubscribe: <https://www.irtf.org/mailman/options/cfrg>, <mailto:cfrg-request@irtf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/cfrg/>
List-Post: <mailto:cfrg@irtf.org>
List-Help: <mailto:cfrg-request@irtf.org?subject=help>
List-Subscribe: <https://www.irtf.org/mailman/listinfo/cfrg>, <mailto:cfrg-request@irtf.org?subject=subscribe>
X-List-Received-Date: Tue, 16 May 2023 09:24:06 -0000
Mike, > Thank you for the discussion; I learned something. Thank you in return. I found it helpful to think about the details. > Going back to the top; the discussion was whether > the SNTRU hybrid draft aligns with the combiner in > draft-ounsworth-cfrg-kem-combiners, which we've > established that it does not, and then whether it > should -- or whether we should change the combiner > in draft-ounsworth-cfrg-kem-combiners. I'm not sure > how to interpret this discussion in terms of making > progress on that question. Are you suggesting changing draft-ounsworth-cfrg-kem-combiners so that it matches the hybrid construction in draft-josefsson-ntruprime-hybrid? That would limit its applicability. You couldn't use for anything that required IND-CCA security. Changing draft-josefsson-ntruprime-hybrid is up to the author, but if it is intended to document the hybrid construction used by OpenSSH then that might not be possible. Peter Peter Campbell Industry Liaison and International Standards peter.c@ncsc.gov.uk
- [CFRG] Streamlined NTRU Prime: sntrup761 Simon Josefsson
- Re: [CFRG] Streamlined NTRU Prime: sntrup761 Orie Steele
- Re: [CFRG] [EXTERNAL] Re: Streamlined NTRU Prime:… Mike Ounsworth
- Re: [CFRG] [EXTERNAL] Re: Streamlined NTRU Prime:… Peter C
- Re: [CFRG] [EXTERNAL] Re: Streamlined NTRU Prime:… Mike Ounsworth
- Re: [CFRG] [EXTERNAL] Re: Streamlined NTRU Prime:… Mike Ounsworth
- Re: [CFRG] [EXTERNAL] Re: Streamlined NTRU Prime:… Peter C
- Re: [CFRG] [EXTERNAL] Re: Streamlined NTRU Prime:… Mike Ounsworth
- Re: [CFRG] [EXTERNAL] Re: Streamlined NTRU Prime:… Peter C
- Re: [CFRG] [EXTERNAL] Re: Streamlined NTRU Prime:… Mike Ounsworth
- Re: [CFRG] [EXTERNAL] Re: Streamlined NTRU Prime:… Simon Josefsson
- Re: [CFRG] [EXTERNAL] Re: Streamlined NTRU Prime:… Peter C