Re: [CFRG] Choice of XOF for draft-irtf-cfrg-vdaf
Peter Gutmann <pgut001@cs.auckland.ac.nz> Thu, 28 September 2023 16:28 UTC
Return-Path: <pgut001@cs.auckland.ac.nz>
X-Original-To: cfrg@ietfa.amsl.com
Delivered-To: cfrg@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 54E74C16952A for <cfrg@ietfa.amsl.com>; Thu, 28 Sep 2023 09:28:50 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.906
X-Spam-Level:
X-Spam-Status: No, score=-1.906 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id hUTiN5tQ7Dm5 for <cfrg@ietfa.amsl.com>; Thu, 28 Sep 2023 09:28:46 -0700 (PDT)
Received: from au-smtp-delivery-117.mimecast.com (au-smtp-delivery-117.mimecast.com [103.96.21.117]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 13D97C169509 for <cfrg@irtf.org>; Thu, 28 Sep 2023 09:28:45 -0700 (PDT)
Received: from AUS01-SY4-obe.outbound.protection.outlook.com (mail-sy4aus01lp2169.outbound.protection.outlook.com [104.47.71.169]) by relay.mimecast.com with ESMTP with STARTTLS (version=TLSv1.2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id au-mta-75-PN0PyoIYMzineY_R88g0fw-2; Fri, 29 Sep 2023 02:28:39 +1000
X-MC-Unique: PN0PyoIYMzineY_R88g0fw-2
Received: from SY4PR01MB6251.ausprd01.prod.outlook.com (2603:10c6:10:10b::10) by MEWPR01MB8846.ausprd01.prod.outlook.com (2603:10c6:220:1f7::13) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.6813.28; Thu, 28 Sep 2023 16:28:38 +0000
Received: from SY4PR01MB6251.ausprd01.prod.outlook.com ([fe80::51fd:5fb3:4580:447d]) by SY4PR01MB6251.ausprd01.prod.outlook.com ([fe80::51fd:5fb3:4580:447d%5]) with mapi id 15.20.6813.027; Thu, 28 Sep 2023 16:28:38 +0000
From: Peter Gutmann <pgut001@cs.auckland.ac.nz>
To: Bas Westerbaan <bas@cloudflare.com>
CC: "Riad S. Wahby" <rsw@jfet.org>, CFRG <cfrg@irtf.org>
Thread-Topic: [CFRG] Choice of XOF for draft-irtf-cfrg-vdaf
Thread-Index: AQHZ8M/atbN5DJfSBk2kZk8uEYXfqLAu1AsAgACjVACAAF4peIAAI+QAgAB2bjY=
Date: Thu, 28 Sep 2023 16:28:37 +0000
Message-ID: <SY4PR01MB6251D6BF3FCDFFC64D74C6BDEEC1A@SY4PR01MB6251.ausprd01.prod.outlook.com>
References: <CAG2Zi21761Q5kRytS6+uFvL5-YN3imiC3h6L-BGkpxkKUwCrqw@mail.gmail.com> <CACsY-OcovTdPhPvx=LgNNJYHHpLnRrAmbLV1iDmgJmAQOf23uA@mail.gmail.com> <u4ty3znp7keykl5xxugnuspwcqlvkj2uy7z4tbu3nmojsstvxk@poqwkgkaucec> <SY4PR01MB62513B80E1161E2253FF0BFDEEC1A@SY4PR01MB6251.ausprd01.prod.outlook.com> <CAMjbhoXhH_OJjstnOs8+aChCrC-uZ3Lq=aF8vo97HC_tC6Jufg@mail.gmail.com>
In-Reply-To: <CAMjbhoXhH_OJjstnOs8+aChCrC-uZ3Lq=aF8vo97HC_tC6Jufg@mail.gmail.com>
Accept-Language: en-NZ, en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
msip_labels:
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: SY4PR01MB6251:EE_|MEWPR01MB8846:EE_
x-ms-office365-filtering-correlation-id: 5d0a336d-5c87-46ca-81f6-08dbc03ff7a9
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0
x-microsoft-antispam-message-info: 36fXF0TAeWrsG9dIfGL0UX3tEWBw+bzk3rkrOVzqHbzKiwJ+yshRVFVjiYiSS6nrFiHchu+4M2jb0MViqIk0NazEwr6G6x0hHfigZOuIIN7o3CEqpx7n24CQnELdx1aZRouVNbKrX3BI/+fLXxnk5xwaPMhNDN7vREcE3IAT3UO2rImyhgcDQBaTlyqOK+LmbtTvgyxJ6EovvjvgiQ5s1CArFmbI6PXPtzGErVNVQSGd7FlgxGGDRRTtGABRokUsV0T52jrMZ7xCCvxQxHcDol0tQQLoWeYZOAUaABGwOUDRsQ743oi5W0G6dkvTaxM/3UknzsHhaoAXtWIh7eJ5e0CzHOajTJvscTF/vBdotk2OkMsnHDkJch4JB84rsxAF9y+iDlzAYrcPwX8GV8FNzf8Xushis7PFt7KzRDFP4AkrAFfJCb/kho82W4xqtcs0J1oXqpNFlCLBCi04o0AvuImwliQ0G5ZBvxFDXEyXx3emYT5J+FuzIyHVhmw6Elscf/JN6aQhmtkC2Hx4uLMBpxM1uuVneBxb1Yk0gctSkv5JJbj7ckcnK7VlhTQUAWrcOh+nRDtpKDeYY3X16UCWzr7Ak0LZ2t15UsBDzU2Ej9I=
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:SY4PR01MB6251.ausprd01.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230031)(346002)(39860400002)(366004)(136003)(376002)(396003)(230922051799003)(451199024)(64100799003)(1800799009)(186009)(91956017)(66556008)(66946007)(66476007)(64756008)(54906003)(76116006)(122000001)(66446008)(55016003)(5660300002)(7696005)(33656002)(8936002)(71200400001)(8676002)(2906002)(41300700001)(4744005)(9686003)(6506007)(26005)(786003)(86362001)(4326008)(316002)(38100700002)(52536014)(38070700005)(478600001)(6916009)(966005); DIR:OUT; SFP:1101
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
MIME-Version: 1.0
X-OriginatorOrg: cs.auckland.ac.nz
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: SY4PR01MB6251.ausprd01.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 5d0a336d-5c87-46ca-81f6-08dbc03ff7a9
X-MS-Exchange-CrossTenant-originalarrivaltime: 28 Sep 2023 16:28:37.3087 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: d1b36e95-0d50-42e9-958f-b63fa906beaa
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: jNl6ULJXpfSnT2SlU/1Jqn8CjsbWm3rY6f+pFFVQKR2D/+DPWfAnZcMILpEXIfAWFHdWMqUJwm7ft+CcmtGmhe0iMBwGbPssi1fQRoKrVZM=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: MEWPR01MB8846
X-Mimecast-Spam-Score: 0
X-Mimecast-Originator: cs.auckland.ac.nz
Content-Language: en-NZ
Content-Type: text/plain; charset="WINDOWS-1252"
Content-Transfer-Encoding: quoted-printable
Archived-At: <https://mailarchive.ietf.org/arch/msg/cfrg/8gT75cvgJZiDLproeth96Y_oKq8>
Subject: Re: [CFRG] Choice of XOF for draft-irtf-cfrg-vdaf
X-BeenThere: cfrg@irtf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Crypto Forum Research Group <cfrg.irtf.org>
List-Unsubscribe: <https://www.irtf.org/mailman/options/cfrg>, <mailto:cfrg-request@irtf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/cfrg/>
List-Post: <mailto:cfrg@irtf.org>
List-Help: <mailto:cfrg-request@irtf.org?subject=help>
List-Subscribe: <https://www.irtf.org/mailman/listinfo/cfrg>, <mailto:cfrg-request@irtf.org?subject=subscribe>
X-List-Received-Date: Thu, 28 Sep 2023 16:28:50 -0000
Bas Westerbaan <bas@cloudflare.com> writes: >You might not have to wait for that long at all: the draft for the NIST post- >quantum standards of ML-KEM (née Kyber) and ML-DSA (née Dilithium) only >specify SHA3/SHAKE. But why would NIST's "Fiat SHA-3!" work any better the second time they try it? See also: https://www.cs.auckland.ac.nz/~pgut001/pubs/heffalump_crypto.pdf Peter.
- [CFRG] Choice of XOF for draft-irtf-cfrg-vdaf Christopher Patton
- Re: [CFRG] Choice of XOF for draft-irtf-cfrg-vdaf Tim Geoghegan
- Re: [CFRG] Choice of XOF for draft-irtf-cfrg-vdaf Riad S. Wahby
- Re: [CFRG] Choice of XOF for draft-irtf-cfrg-vdaf Christopher Patton
- Re: [CFRG] Choice of XOF for draft-irtf-cfrg-vdaf Riad S. Wahby
- Re: [CFRG] Choice of XOF for draft-irtf-cfrg-vdaf David Benjamin
- Re: [CFRG] Choice of XOF for draft-irtf-cfrg-vdaf Scott Fluhrer (sfluhrer)
- Re: [CFRG] Choice of XOF for draft-irtf-cfrg-vdaf Christopher Patton
- Re: [CFRG] Choice of XOF for draft-irtf-cfrg-vdaf Ilari Liusvaara
- Re: [CFRG] Choice of XOF for draft-irtf-cfrg-vdaf Peter Gutmann
- Re: [CFRG] Choice of XOF for draft-irtf-cfrg-vdaf Bas Westerbaan
- Re: [CFRG] Choice of XOF for draft-irtf-cfrg-vdaf Peter Gutmann
- Re: [CFRG] Choice of XOF for draft-irtf-cfrg-vdaf Peter Gutmann
- Re: [CFRG] Choice of XOF for draft-irtf-cfrg-vdaf John Mattsson
- Re: [CFRG] Choice of XOF for draft-irtf-cfrg-vdaf Riad S. Wahby
- Re: [CFRG] Choice of XOF for draft-irtf-cfrg-vdaf David Benjamin
- Re: [CFRG] Choice of XOF for draft-irtf-cfrg-vdaf John Mattsson
- Re: [CFRG] [EXT] Re: Choice of XOF for draft-irtf… Blumenthal, Uri - 0553 - MITLL
- Re: [CFRG] Choice of XOF for draft-irtf-cfrg-vdaf Gilles VAN ASSCHE
- Re: [CFRG] Choice of XOF for draft-irtf-cfrg-vdaf Riad S. Wahby
- Re: [CFRG] Choice of XOF for draft-irtf-cfrg-vdaf Jon Callas
- Re: [CFRG] Choice of XOF for draft-irtf-cfrg-vdaf Jeff Burdges
- Re: [CFRG] Choice of XOF for draft-irtf-cfrg-vdaf David Cook
- Re: [CFRG] Choice of XOF for draft-irtf-cfrg-vdaf Christopher Patton