IETF Logo Mail Archive

[CFRG] Re: [EXT] Re: Progressing NTRUPrime/Classic McEliece drafts

"Blumenthal, Uri - 0553 - MITLL" <uri@ll.mit.edu> Wed, 29 January 2025 13:13 UTC

Return-Path: <prvs=6124b5d870=uri@ll.mit.edu>
X-Original-To: cfrg@ietfa.amsl.com
Delivered-To: cfrg@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 08CFEC14F726 for <cfrg@ietfa.amsl.com>; Wed, 29 Jan 2025 05:13:30 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.316
X-Spam-Level:
X-Spam-Status: No, score=-3.316 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, MIME_HTML_ONLY=0.1, MPART_ALT_DIFF=0.79, RCVD_IN_DNSWL_MED=-2.3, RCVD_IN_VALIDITY_RPBL_BLOCKED=0.001, RCVD_IN_VALIDITY_SAFE_BLOCKED=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 5Vb4q1fTnnGB for <cfrg@ietfa.amsl.com>; Wed, 29 Jan 2025 05:13:29 -0800 (PST)
Received: from MX2.LL.MIT.EDU (mx2.ll.mit.edu [129.55.12.51]) by ietfa.amsl.com (Postfix) with ESMTP id CFE69C14F70F for <cfrg@irtf.org>; Wed, 29 Jan 2025 05:13:28 -0800 (PST)
Received: from LLEX2019-03.mitll.ad.local (llex2019-03.llan.ll.mit.edu [172.25.4.99]) by MX2.LL.MIT.EDU (8.18.1.2/8.18.1.2) with ESMTPS id 50TDAqmn118653 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=FAIL) for <cfrg@irtf.org>; Wed, 29 Jan 2025 08:10:52 -0500
ARC-Seal: i=1; a=rsa-sha256; s=arcselector5401; d=microsoft.com; cv=none; b=XHWo4qhUZmp7kzxyWCWEUyBwt4s/r3viOnluHGpgtfQVZV5q3Yboz6KTEjE4+BliQjbt48CkEP24NDlxg2V2+oIY9GCVz45YMXRT6ssAqvAtEEMWxHil0UBnQdFKvdoBASHshV5fWDHc2tnZMNJvuvEukRtKsVKXcuX9pLtImcmlW6dIT5wFrzQj4zOX5g3Hw2TnNA5PwsawTiP0Oclzy6tWiNWhfSSwAlqUIIWUqUm6CZaYfIJsib2r/JfmsRAJpM1qv3KzHncblnZdmhGG0LqaPYGSKTbFaDQIVhaBVop5C+ZZb0btI1uW3uyh3oe6QzQVaFDgxZUtSW+rMGNYvw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector5401; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=HJ+LhxCT+dNvKfSScmF/MF2RMFZLpE8vB6y9F7J1Oic=; b=mqQbwda8S+rTjOb3+qCc/9Eu+nsVv7i1ko6EmBBU6sLyph/fPhVPL09uQy9FuEzlXRI5flCouQM3AkPVdiXYdqt7D8NkBGI+r9Nrwi/2lBgMI6RRR8aQvNx2eY6pXYzU37w90ibtaOaHghlhvzZO7KfTMUYHZ45+yP/BqqPnZ8WXVV8G/0moqw+52H9DvFxUfybXJBtyPlQbCQIp/Z7Hrm8o73Ftu59MVWN8kYKuWW1QfPRBkI+1ew0xxxAxHhy+xpX/70Lg7cwN5nE3zLhgCoR/rj31mb0jK+UJO3zFfqzNLn+DjLPxSSP9D8ol33AAnxjotj9pH3DLZ1/y+PBKow==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=ll.mit.edu; dmarc=pass action=none header.from=ll.mit.edu; dkim=pass header.d=ll.mit.edu; arc=none
From: "Blumenthal, Uri - 0553 - MITLL" <uri@ll.mit.edu>
To: IRTF CFRG <cfrg@irtf.org>
Thread-Topic: [EXT] [CFRG] Re: Progressing NTRUPrime/Classic McEliece drafts
Thread-Index: AQHbckPlViZ/YX2eHEmKFQYskq8S/7MttB2AgAAGd4A=
Date: Wed, 29 Jan 2025 13:13:26 +0000
Message-ID: <75ED4091-6A8B-498C-A47E-7890E3EE00E1@ll.mit.edu>
References: <CAE3-qLSoXJYHaxepMhnr7to0QBhSCcB9=jXVVNWyNgOLFxxEew@mail.gmail.com>
In-Reply-To: <CAE3-qLSoXJYHaxepMhnr7to0QBhSCcB9=jXVVNWyNgOLFxxEew@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach: yes
X-MS-TNEF-Correlator:
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: BN0P110MB1419:EE_|BN0P110MB1369:EE_
x-ms-office365-filtering-correlation-id: cf3eef88-e273-4447-2bcd-08dd4066b730
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;ARA:13230040|10070799003|1800799024|366016|4022899009|38070700018|7053199007|8096899003;
x-microsoft-antispam-message-info: FdoCUKXuxyZlG6jzhLov6nb4yv15jmVhjE68wluWM0kAX2XlUW1PzY8Haels8ZZIS7n4/j09nA8trjyd8GRfbYkJ5BK6hAhnjaVe3O++UJyz7YQ1jY5bCLb7U5cPMG8jZjwrOrHENJelFZX4nrmIUkRVz6ktpvvoU9S05gipI6krMZm1obYn8PMjzu1X7B7KREheUpZpuTrt7XzQEjQIT73KkYWIt7M3SuuAO8F5bxcaVqPds/vO1SqQam/3GMAH47loFsz3Ft5aCk6RncZWoHREHlCoj7urSbJ6vhV2JXRGqPMy5SK5jOeJxmvjqkiZuvRhcWVse+EIF6DjyhepyW3sGHBD5skpJJULGN+Luqe+LdVNZCkaFr0s1pSUrKp2hI2e00IrSnr5uWWzPLGoXmxtJbt9wD3NOHyZ0Tdrl6qx5CKBxH18jA9v6B+T+XTPoDfad/kQAnxKjOSUn8WSpUFrg7UtW5YDn5gbDGQVLbc9K3ZVUGCOv9UBr8oZpGgsZGpabBZ1HdQj2yFxiBUTomnoGoOAFO68f/HuF8zEnU2gviZsyih7JNqaBlOdKj6c52gjdblpunLyv/4CjuunRd0rZI9qm1x+T/qTGq/qbFfWIofyD23h8Cu8wtDkE4EsNCJAYEw4uBEnGsi3ce6Xglctk7uGO1CBQiU1P2NW6lPj8tXKYqzdo9kEUIX+LuPYrVZnrioC7x7zmGZsAsFBVoXIy3saC5Nhm0LC42Y9sxTQtd6t9GlkkNYmlToAU/TB+xItZ7JUybwcIPcFumvu2J78N0ZqT/bYHiSSOyncEI9fDZWkMP7AgVeRVKj2ZgBqJLxUxrcjDltWBPTMUmVPZZaxvfVi9rEXuCyyaTi4n4KJw3qKI5kjGMMgUZ4jdQw2aWnHGUN2+4F/15+KuoiCap0T6Pf3B13EvH6VKGKfumfj6ylWbWuzjboGPPmnrBuXwVcylo6va+Dz/+85IKGbQtoANX3VFyCSPgl7PD5DaRG0aefnz7PrQiGq8IxSdLZ1sDr+kFLgbqgjQiNXglMQY+QvxmgdrDP6CriSAXalcBLrsi2H7rViOTQLr4YBOuGQ2c4f7G1ZfeKluoQIuusVJrNeRMvPzsKs817UjwbG9c45eAxzJcm9m5Bh3LDkwlDRzKr9GMdI9YvBqG2cquFqHwfLCwUQtsbN9TPToNHU4obd2zFIlQOHgpZVhXlKHS1PcqtyVvrdOdEea4ihxbr7PNPaILZMJU8pxxOQ2ThwiLpxjDKpXukkTIz3awmsnORqfg9cMcYq/rEDS14uTgbrBeA8+u7XU67i6xQEZJ9otqrNMEkd30Wc1W8qM0aEbheNrXdHDtOExFGzrdR6404Po009qZN6FyGEN3mgWVeYdezsXbGkgoN1wOlD65RymcYJVWUy7+sLoT80g7zaOKZGkeEIYdkvjw3DXwgeTfspd7yF8TgBQuQrC60lE/QPtTiq
x-forefront-antispam-report: CIP:255.255.255.255;CTRY:;LANG:en;SCL:1;SRV:;IPV:NLI;SFV:NSPM;H:BN0P110MB1419.NAMP110.PROD.OUTLOOK.COM;PTR:;CAT:NONE;SFS:(13230040)(10070799003)(1800799024)(366016)(4022899009)(38070700018)(7053199007)(8096899003);DIR:OUT;SFP:1101;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 9CvorBNSstHVktmqySLDPKgmjrObvIYDdbyYDCZ4JIOz2gzGXfooQ78pZdjSr86LeuoXkF1p/QccM8YiS8CKNd2OPWjspPWVwKYgV0r4KaK89k//DdgAAka37kNu6r5CJC3U+vbXhtBY/yavGX5iRH61lc2nb5xIcm+ysnQtImDWjdaqpKxUOntZ3klpw1+RtZT4Me6bqgAm705p0tEKozolRqIbC6+wMFcBd/So0lgt+J05QATdWuisRIB3TjGbCvyVXDNLEEKaAXXSuDbGgqcbazjVdpC69m2H9wQRsFZ0gNAVtI1Vd7n4/OwXWvp6vAA1L06giGy1gEexuXrneRbsnfqwpJ12aio5GuQ/ad10FVsZ4hb+H4AmoP0lff2q64aVxnbi1Qz42fFir0+gJUnbEN8R5FIBNDVTb1MMy2kHVIqhKnc+cxOQ0fABdgr6L94uDGBAOdx1rRgtNUMhOBjFqLhvzVdgDmUZ/tFd9EddzYQdT22O1vl7nrB1fwqr598yBuw4/Ge/d4RRNVplXDrRbIkX6NBNHzZUqKudi2/VQy/Gjte5uLtmCpkatlNm0tJoaxibcb+2ngTIARJ4o/58R/n7yL+3v0FGy0nPMa+huh++U90elM9UmcaVvsKQSRFtZG2BrBVSCMTK31FLDXfJoNDaoIHoGCqUE3E4x6wwxBdaxke5uQ46Cn9qEmVkLeBmoZMOTvnHrT4GRP19HJBzvf6dhJ9ETtVF3/sps6DppHL3LjmzOOCBMgo3bWcZv0FhQXcG5MuuAljV4r5JUz/W5393sji4yMgWaVLEhIkQjZ5twoRzQMMxZgMKMjlXhxM2g2yIPaosBxMFraxHsDl7JXeYLTQaXnNKbzbsnX64kk9DDRMbql06yGk2bL0anjS0pEi2U0rL8oTmpi+uf6Ei15sKdHWbPxFRpLK0VzvnGtTVKNS0Z7xYAJgEoPjqmJaxnBvMp2v+Ja9elGzaNO+yw9E5UY7tQVlBkeY6qAJh/0tvXigYEOLnvrCcywLXRieLV8kgEQ4+LUcMhHlN0hvjR8+Out7updQ/D6mPREK2NzGzHCCrs6DzB1qkuaTttnthIYlVO+apGwUNL0O8Rvg0PvU6VRU4C+tcB/AsOnO0Y7+XfXeAWufh3HYdMDQURaL8AABJ1BQnIeweEiu0KYIImU31n1C+LTYQHLxMIg5GW2ycbpKG1Yl0LtMeC8Im3NXeWWqG6Fmyq7LhJQKfU3XNSY9yl6tSgBvzgOvTALtlS1S3ewpFBIQPSjb8VW/0XYMQypM/2+2jLpVU4s55tgsR/faTZKY8biQVIGY5bFhaJejW4tR28q74X/00b75Tjk7xwUDQDE2GHKzG/tQ8MFrc0KSBMOYoNL88Zv+iIrc=
Content-Type: multipart/signed; boundary="Apple-Mail-402089AE-0B77-44BB-B2A9-59774D24912F"; protocol="application/pkcs7-signature"; micalg="sha-256"
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: BN0P110MB1419.NAMP110.PROD.OUTLOOK.COM
X-MS-Exchange-CrossTenant-Network-Message-Id: cf3eef88-e273-4447-2bcd-08dd4066b730
X-MS-Exchange-CrossTenant-originalarrivaltime: 29 Jan 2025 13:13:26.0668 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 83d1efe3-698e-4819-911b-0a8fbe79d01c
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BN0P110MB1369
X-Proofpoint-GUID: vp25mx3dl88iXjffHA6VzDZ5IV884d8f
X-Proofpoint-ORIG-GUID: vp25mx3dl88iXjffHA6VzDZ5IV884d8f
X-Proofpoint-Virus-Version: vendor=baseguard engine=ICAP:2.0.293,Aquarius:18.0.1057,Hydra:6.0.680,FMLib:17.12.68.34 definitions=2025-01-29_01,2025-01-27_01,2024-11-22_01
X-Proofpoint-Spam-Details: rule=outbound_notspam policy=outbound score=0 bulkscore=0 malwarescore=0 phishscore=0 suspectscore=0 mlxscore=0 mlxlogscore=999 adultscore=0 spamscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.12.0-2411120000 definitions=main-2501290106
Message-ID-Hash: P4FSA4L5EF3CLVU4BPBUU47CEGMQNV3C
X-Message-ID-Hash: P4FSA4L5EF3CLVU4BPBUU47CEGMQNV3C
X-MailFrom: prvs=6124b5d870=uri@ll.mit.edu
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-cfrg.irtf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
X-Mailman-Version: 3.3.9rc6
Precedence: list
Subject: [CFRG] Re: [EXT] Re: Progressing NTRUPrime/Classic McEliece drafts
List-Id: Crypto Forum Research Group <cfrg.irtf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/cfrg/GNrfhfbrf6Jf9KBAgMqnBd5bg1U>
List-Archive: <https://mailarchive.ietf.org/arch/browse/cfrg>
List-Help: <mailto:cfrg-request@irtf.org?subject=help>
List-Owner: <mailto:cfrg-owner@irtf.org>
List-Post: <mailto:cfrg@irtf.org>
List-Subscribe: <mailto:cfrg-join@irtf.org>
List-Unsubscribe: <mailto:cfrg-leave@irtf.org>


Below is my personal view which does not imply any view from NIST or anybody else.

 

I think the CFRG needs to run a competition process to select a lattice-based KEM to provide a good option for the users who don’t want to use ML-KEM or NIST’s standardized cryptographic methods generally.


Why?

And if we’re talking about an IETF competition for a Lattice-based alternative to NIST standards - then what can be a better candidate for replacement than ML-DSA, with its huge public key and signature sizes?

On Wed, Jan 29, 2025 at 6:48 AM John Mattsson <john.mattsson=40ericsson.com@dmarc.ietf.org> wrote:

I agree that CFRG should prioritize things that are likely to be adopted by IETF, but I think it is important that CFRG is not limited to things that have a current customer in the IETF. This would be too limiting for an RG. CFRG must be able to work on things that are likely to be useful by the IETF long-term.

John

 

From: Kris Kwiatkowski <kris@amongbytes.com>
Date: Wednesday, 29 January 2025 at 12:30
To: cfrg@irtf.org <cfrg@irtf.org>
Subject: [CFRG] Re: Progressing NTRUPrime/Classic McEliece drafts

i haven't seen anyone suggest that CFRG should not publish its own

specifications regardless of what NIST does. That's certainly not

my position. That would be an odd position to take as CFRG has

already done this a number of times.

For primitives like LMS, XMSS, and HKDF, it was IETF that originally developed the specifications, with NIST later incorporating them into its standards.

+1 for CFRG focuses on defining primitives that are likely to be adopted by IETF, ensuring they are well-vetted before becoming part of widely used protocols.

 

_______________________________________________
CFRG mailing list -- cfrg@irtf.org
To unsubscribe send an email to cfrg-leave@irtf.org
_______________________________________________
CFRG mailing list -- cfrg@irtf.org
To unsubscribe send an email to cfrg-leave@irtf.org

v2.29.0 | Report a Bug | By Email | System Status