Re: [Cfrg] I-D Action: draft-irtf-cfrg-hash-to-curve-04.txt

Björn Haase <bjoern.m.haase@web.de> Mon, 22 July 2019 21:25 UTC

Return-Path: <bjoern.m.haase@web.de>
X-Original-To: cfrg@ietfa.amsl.com
Delivered-To: cfrg@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 836921200B6 for <cfrg@ietfa.amsl.com>; Mon, 22 Jul 2019 14:25:57 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.699
X-Spam-Level:
X-Spam-Status: No, score=-2.699 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=web.de
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Igy_NQzi-pKm for <cfrg@ietfa.amsl.com>; Mon, 22 Jul 2019 14:25:56 -0700 (PDT)
Received: from mout.web.de (mout.web.de [212.227.17.11]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 78B1C1200A3 for <cfrg@irtf.org>; Mon, 22 Jul 2019 14:25:55 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=web.de; s=dbaedf251592; t=1563830751; bh=JMJCCKJE+L/GIbPI1H4L3/RBSJ0rN+czdcL8giN8aHE=; h=X-UI-Sender-Class:Subject:To:References:From:Date:In-Reply-To; b=XrUWg2Z7HE9580Tbq+yN0sxtWtjbjTxUdPK26SroKkzunzDZLnThZn/N3hvd3737P 0Lgky3wAUNIc0+sx5YPt80vCrzc2Lch83TvcwUFA+c5HDfm4muhhUXFjYulmWYGwJf 8XwvBhz2pBNVc0UiG54A3w8PuznkX8vcaPRiQ6VQ=
X-UI-Sender-Class: c548c8c5-30a9-4db5-a2e7-cb6cb037b8f9
Received: from [192.168.2.161] ([92.75.65.225]) by smtp.web.de (mrweb101 [213.165.67.124]) with ESMTPSA (Nemesis) id 0Mfq6i-1i1rXW42IG-00NA8N; Mon, 22 Jul 2019 23:25:51 +0200
To: "Riad S. Wahby" <rsw@jfet.org>, cfrg@irtf.org
References: <46863a4d-e193-1697-058d-2c14106c317e@web.de> <84012971-70cd-da2d-55b7-944635c92b65@web.de> <F5C22BE6-7E24-43E8-B023-A5FF0A5EA960@jfet.org>
From: =?UTF-8?Q?Bj=c3=b6rn_Haase?= <bjoern.m.haase@web.de>
Message-ID: <1fd4a4e6-fdef-e1ae-709e-71b6dcf15598@web.de>
Date: Mon, 22 Jul 2019 23:25:50 +0200
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:60.0) Gecko/20100101 Thunderbird/60.8.0
MIME-Version: 1.0
In-Reply-To: <F5C22BE6-7E24-43E8-B023-A5FF0A5EA960@jfet.org>
Content-Type: text/plain; charset=utf-8; format=flowed
Content-Transfer-Encoding: quoted-printable
X-Provags-ID: V03:K1:8OOWzckcDkt/1w/dbkU4wpjNmHSWW266mb99CYN2QMG3zntz3mN mrK3SHpFE029yUuJ6V8+1k97ZMwMLQikaTjcgAIYR2E6BLJOa9YQg40oLWmHKkb/gH0UPD+ BCCjJWWBt9JpT0iqKjCFcO1MF0Tvc1794J/lZbhPSn/ROqFw3v2M8hxNcZsRWG6Kqy97GCW 4LSPr8qZSHXW/KHnURnDQ==
X-UI-Out-Filterresults: notjunk:1;V03:K0:RI5kocUWtOg=:C3zfHhjLzMO1pnuF1hYFJX Zb5Of1tCx1C0WRTTRJUdLLIRnJs+E24fMJMeGnBfH9E3f4z/WYEkE/AlymsqNMTrWIRzXKfH1 RBw9yEALmeANzWhIgjUJRxjQHgeyKmTst7TAsccdyekrzzqsW7APKLnIclgAgBvb5zrcW/sXv lljEhlWpgrZVAXA3c2D8hJeo2D9G6+zvRAF+8wFGj8DomL54S59utE3RrPEr35TmiyE62O93h Jwbs+HK5T97nkxE1jaM/X3eqxHEM8CjPYqGimL/s2YTAtMdFc63fLZnpPVcGq7XmD5QAYPaEo 8Ep1NcaQomJSrE+GnP8h1JpX0XV+zbaLRVkYhkB37WWd/c2nfm8Qw07w3JaVK8+s2Sf5Wlmb5 ODg+UHzdUM1WCs8DMkfmWKY7uowuErtgc3zH2cn3wULNrSRaaaKzys/6+N4ovCfajvVPvNM0g MTmaPHfk/qVCLnwMgvG23gBd+LGV3bLevWJlJ4a44AtOCpS3I67aje0UBmldZ/9ClJuTHlKh+ MmiLUIfC4Cc+UdL0P6gxz6HK7O4CragA9Dz7oM4OsVYQJUFSxAUaz0yhWpMhzy3Qc+Ljd23PL GjjiAcAPnQARSYJ2GrpuZT0SVsPxkpDajc8LlB/7U3A4zmxNylcCXW/RUb7okoPYJg5q97TDI EVnucJ4D6T9YTvdhLFiCPJZq+U8dls3GJFFWAbDw1FbCrY3BionuMyR9uY0W80I4MgWVHcLeC Jzs3yPlhLjMXbRJ2orXyd+UpyGmBvsVqI7cw03tSE7vyiu0jzCBLw80dR2koZHEKJKJxA8kfP XbsFiflPAYk7ZpXr0DPzc9xSp//Xz+ihJwppTXHCanAcx6TjrT3KubfMIyINnWK6IJgfQ+MoV eTreNfFoJTJuvmwNu/W1ThYA4aiEyZt9Z0tbE2UYGMEeibVI4tZM5S921JLw+6qAB/+z2b/Bj FOXzNVjWWLVRCHIi2ss9bXY15ftE3pW+yMkFV4IQyYLtrUftu8MA1KZ+Uu2ancbWqhrLG9KTg FW5QwjDfkcEtR4K0Wq+tT5PQEA09ushZlZS2PxXltn7g89COHaqWGPK1SklwIGgqvD64jWEfZ UK10ygyQ8rq3n3trXtyZRPbJBuwQHK3FMcT
Archived-At: <https://mailarchive.ietf.org/arch/msg/cfrg/O0xqt3KKMGOHRdTSZt_4iwufzYY>
Subject: Re: [Cfrg] I-D Action: draft-irtf-cfrg-hash-to-curve-04.txt
X-BeenThere: cfrg@irtf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Crypto Forum Research Group <cfrg.irtf.org>
List-Unsubscribe: <https://www.irtf.org/mailman/options/cfrg>, <mailto:cfrg-request@irtf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/cfrg/>
List-Post: <mailto:cfrg@irtf.org>
List-Help: <mailto:cfrg-request@irtf.org?subject=help>
List-Subscribe: <https://www.irtf.org/mailman/listinfo/cfrg>, <mailto:cfrg-request@irtf.org?subject=subscribe>
X-List-Received-Date: Mon, 22 Jul 2019 21:25:58 -0000

Dear Riad,

> So: if P256 ends up using Simplified SWU, P384 can as well.

Yes. Sorry for the confusion. I thought that the simplified SWU did not
work for P384. Anyway I'd clearly would like to advocate for a per-curve
mapping algorithm standard. This would any way apply to Edwards and
Montgomery curves. If we could uniformly use simplfied SWU on most
short-Weierstrass curves, I believe that this would be fine.

Yours,

Björn.