Re: [Cfrg] ECC reboot (Was: When's the decision?)

Alyssa Rowan <akr@akr.io> Fri, 17 October 2014 09:40 UTC

Return-Path: <akr@akr.io>
X-Original-To: cfrg@ietfa.amsl.com
Delivered-To: cfrg@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9337F1AC3AC for <cfrg@ietfa.amsl.com>; Fri, 17 Oct 2014 02:40:09 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.902
X-Spam-Level:
X-Spam-Status: No, score=-1.902 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id fmSbkJg7tblM for <cfrg@ietfa.amsl.com>; Fri, 17 Oct 2014 02:40:06 -0700 (PDT)
Received: from entima.net (entima.net [78.129.143.175]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 1F2CC1AC3A8 for <cfrg@irtf.org>; Fri, 17 Oct 2014 02:40:06 -0700 (PDT)
In-Reply-To: <5440DFA7.80208@secunet.com>
References: <D065A817.30406%kenny.paterson@rhul.ac.uk> <543FF1A7.8030908@secunet.com> <544002AF.1020107@akr.io> <5440DFA7.80208@secunet.com>
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit
Content-Type: text/plain; charset=UTF-8
From: Alyssa Rowan <akr@akr.io>
Date: Fri, 17 Oct 2014 10:40:01 +0100
To: cfrg@irtf.org
Message-ID: <863EB75F-4C6D-48E8-B4F3-0795F7D1269B@akr.io>
Archived-At: http://mailarchive.ietf.org/arch/msg/cfrg/GnRLKPf9ALD4tEDy2c6lEiHRluI
Subject: Re: [Cfrg] ECC reboot (Was: When's the decision?)
X-BeenThere: cfrg@irtf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Crypto Forum Research Group <cfrg.irtf.org>
List-Unsubscribe: <http://www.irtf.org/mailman/options/cfrg>, <mailto:cfrg-request@irtf.org?subject=unsubscribe>
List-Archive: <http://www.irtf.org/mail-archive/web/cfrg/>
List-Post: <mailto:cfrg@irtf.org>
List-Help: <mailto:cfrg-request@irtf.org?subject=help>
List-Subscribe: <http://www.irtf.org/mailman/listinfo/cfrg>, <mailto:cfrg-request@irtf.org?subject=subscribe>
X-List-Received-Date: Fri, 17 Oct 2014 09:40:10 -0000

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

On 17 October 2014 10:21:43 BST, Johannes Merkle <johannes.merkle@secunet.com> wrote:

>> from the hesitant adoption of Brainpool in the wider community,
>this assertion is only true for software implementations. Brainpool curves are used by more than 50 million smartcards rolled out and several vpn solutions (e.g., based on IPSec) widely used within German and EU public authorities.

Yes, that's exactly my point. Brainpool usage seems to be concentrated under a relatively small, interlocked group of governmental stakeholders in specialist applications - not really rolled out in the wider community like the NIST curves, let alone like RSA.

Besides, those smartcards are surely already provisioned and keyed so not relevant to any new curve?

- --
/akr
-----BEGIN PGP SIGNATURE-----
Version: APG v1.1.1

iQI3BAEBCgAhBQJUQOPxGhxBbHlzc2EgUm93YW4gPGFrckBha3IuaW8+AAoJEOyE
jtkWi2t6l2wQAKQl3oAeNLEwLYvfObDgGfJmmyptkrU292k21zZQED9Gee/5zeyF
XrW5bOHyp07ui/CVdes/OV2+94qQLYKim5CCw45UfAuFOW5ztueU/99hf7N6Fr6t
CWk14/OonvnU5SrY8a+3TrxIhT37B0vvbdqXtznwmpIfgFMRe4qZBukjTp5kQ+WJ
AMs+EumaaF/GjBUNKnevljHd+yFmFDKxkNF8Dx/SkDmztfUZdw3z4cpgn7tEMkzq
XnDp76H4/Fvhy4DO/0S3aL8N/arKkA96wr7HtmVNx93dzzPhVz2XumlU/jXLRb/4
suvD3VoVEJtkhqCTskV736ZzPj6x4Krm2ysJb8ss807X6gTXziJsn7L0CW3ZjAYc
NIFjIXQaVrjbZAmc5pbijYUpwlTnY5Y5s+3Is49OiTO+HGVArC5EXHAuty2xwuPe
3XX32WHmvZRwOXpPbkgidK7BuFR1oifXvtE3Qn4OvUUH9z3nd9PN58Npft3wnA6Q
AGFyJ5kyJpLUCyYCEbD4qun/I2MljxbpmxBhFeAsrgSVE3fhtLvkyveYsDQoxwss
KD42C9cRynYn2GHUxLNm7Kr4gvXUrsQ8Aug97EEaZSwpcfBJXl0k6xQMNNH3N9sP
fv7lrV5j6NR5hwLhyawiq4cRM4LxAgegzOZH53cvuWeIOBygtCT4kh4G
=RoSr
-----END PGP SIGNATURE-----