IETF Logo Mail Archive

Re: [Cfrg] PAKE selection repository

"Hao, Feng" <Feng.Hao@warwick.ac.uk> Wed, 25 September 2019 10:28 UTC

Return-Path: <Feng.Hao@warwick.ac.uk>
X-Original-To: cfrg@ietfa.amsl.com
Delivered-To: cfrg@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 71566120120 for <cfrg@ietfa.amsl.com>; Wed, 25 Sep 2019 03:28:45 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id KVeMGirPcO2Q for <cfrg@ietfa.amsl.com>; Wed, 25 Sep 2019 03:28:43 -0700 (PDT)
Received: from EUR02-AM5-obe.outbound.protection.outlook.com (mail-eopbgr00074.outbound.protection.outlook.com [40.107.0.74]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E4E1A12011A for <cfrg@irtf.org>; Wed, 25 Sep 2019 03:28:42 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=K5pQAd5KauHN0/Gxan0AFhcHDmEWziaJOeNgDIh5OJK086hlCnpkivN1PUPdJenIPA4mPxrXc8DlNXdxE6BoY7nTrvf2xrUHxppjkaQGUYMMGHHOhTZheM/oZVnCEuctdlDvYz1HS7w+SA3dflK8PGD0ZXV8cNRGVy+lCgpXSvkZCv5zkbX3miNyNK46STsO5eY8GnfwusgjDTViV1HZL78F166HyzSp6tYlIyvlvjxgK5K4HP/zQVtMTROQimjRQLwJ/f6/H+ma80ajeNA2n+q1qM/hGrp7DROHPb/KtaATG3KwTEdGyNbIxoyaLq8EjFrMDvRAuv9/m7mv5ApLzQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=bCY4ATdohC0niQE+zlZnXNQg7kL+89FnbaUp8UhtSQw=; b=Jkdkp4+AdSUJqwccqTNT1sPOfrsCP4es8mYLVnRqTVBfADLH++FLaKM6PIgUqYH82WUdBo43g34pPV5T2kzh9DpDzIIQ9y47c9H1PWYJ+h8dG+xq9ooVNeoW0yzVISyvEF1LvoH2EE07ueZxliP7USKq7zEJE4HFEUOEZkVl3RrUcy2v1E+IWJLl4L8WIOg1mmkxKp2yLG70BVXnME5KOIVAkNConadZeajY8shfyteDlxWRkHHOxTHYiFnfzJOTh0r4q0mHXZugwgiGcwGp8wsOVXJOf4OJws4aT7Ln3zH5AGLupxPO8g235+aFBBB/kna3kmS8Dq8tb2BZn8TLYA==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=warwick.ac.uk; dmarc=pass action=none header.from=warwick.ac.uk; dkim=pass header.d=warwick.ac.uk; arc=none
Received: from DB7PR01MB5435.eurprd01.prod.exchangelabs.com (20.178.104.28) by DB7PR01MB5337.eurprd01.prod.exchangelabs.com (20.178.104.11) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2284.23; Wed, 25 Sep 2019 10:28:40 +0000
Received: from DB7PR01MB5435.eurprd01.prod.exchangelabs.com ([fe80::55eb:f0c1:7e8e:3af5]) by DB7PR01MB5435.eurprd01.prod.exchangelabs.com ([fe80::55eb:f0c1:7e8e:3af5%7]) with mapi id 15.20.2305.013; Wed, 25 Sep 2019 10:28:40 +0000
From: "Hao, Feng" <Feng.Hao@warwick.ac.uk>
To: Yaron Sheffer <yaronf.ietf@gmail.com>
CC: "cfrg@irtf.org" <cfrg@irtf.org>
Thread-Topic: [Cfrg] PAKE selection repository
Thread-Index: AQHVc4v/DBf3InzlMkKyuXiim6jCLw==
Date: Wed, 25 Sep 2019 10:28:39 +0000
Message-ID: <04724898-6ABB-4775-8558-ADA6E3EF2A8A@live.warwick.ac.uk>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/10.10.b.190609
authentication-results: spf=none (sender IP is ) smtp.mailfrom=Feng.Hao@warwick.ac.uk;
x-originating-ip: [137.205.238.166]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 20ff65b0-5ada-4cae-22ec-08d741a321eb
x-microsoft-antispam: BCL:0; PCL:0; RULEID:(2390118)(7020095)(4652040)(8989299)(5600167)(711020)(4605104)(1401327)(4534185)(4627221)(201703031133081)(201702281549075)(8990200)(2017052603328)(7193020); SRVR:DB7PR01MB5337;
x-ms-traffictypediagnostic: DB7PR01MB5337:
x-ms-exchange-purlcount: 1
x-microsoft-antispam-prvs: <DB7PR01MB5337FF6E5D65D8BA436A75DBD6870@DB7PR01MB5337.eurprd01.prod.exchangelabs.com>
x-ms-oob-tlc-oobclassifiers: OLM:9508;
x-forefront-prvs: 01713B2841
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(4636009)(346002)(376002)(39860400002)(396003)(366004)(136003)(189003)(199004)(316002)(14454004)(71200400001)(6512007)(486006)(54896002)(6306002)(786003)(236005)(9326002)(81156014)(6486002)(4326008)(2906002)(476003)(81166006)(6436002)(7736002)(33656002)(966005)(66476007)(66556008)(64756008)(66946007)(478600001)(66446008)(91956017)(66066001)(76116006)(25786009)(256004)(186003)(26005)(6246003)(229853002)(99286004)(8676002)(6916009)(8936002)(53546011)(6506007)(14444005)(58126008)(86362001)(5660300002)(790700001)(6116002)(606006)(71190400001)(3846002)(102836004); DIR:OUT; SFP:1101; SCL:1; SRVR:DB7PR01MB5337; H:DB7PR01MB5435.eurprd01.prod.exchangelabs.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; MX:1; A:1;
received-spf: None (protection.outlook.com: warwick.ac.uk does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam-message-info: 7J9wB0/6vg2qVRLAR7Rgo9UIweoSR/lumTN1kS6LE5hqad7mcYDNrHkRQIatWIC0GfE+G6xq5ft8Mziw4S4xPZQRX8vvdHB+4Qt87EsCZoaIC89ptlAkO4TWHh3YvSXHh27wRs9KFJ6j8aFxsU0Q9tbJEp9hgSwEgle5cdw6eTIA9l8bGQn3h8ebf1dC7g5Jrbz2HNWY+n8qeN0z+PVpPr8eKXxFzOn8s9lOmPDgKHgg2x6s19hMcPLfrnPX0qLoetwW2NLSxpZEBgjXE0o7KpuMWcDizy0zcXoyQIsAcF+mT4wgWeonWJaVDI+4lm2f7quYIBRHNGT4XNB9olfWBRKT9nTlsDdzzzM0CtI7qyKWf811eVo1UCfijwKetY1VptItnIlblOOpCeOYKPyVoAA5tp1hZOf8eBGZ4FACN2ghveTKccMt+eOngB1Kk+NlNvNFGVCv9kgua1efhI9Yhw==
x-ms-exchange-transport-forked: True
Content-Type: multipart/alternative; boundary="_000_047248986ABB47758558ADA6E3EF2A8Alivewarwickacuk_"
MIME-Version: 1.0
X-OriginatorOrg: warwick.ac.uk
X-MS-Exchange-CrossTenant-Network-Message-Id: 20ff65b0-5ada-4cae-22ec-08d741a321eb
X-MS-Exchange-CrossTenant-originalarrivaltime: 25 Sep 2019 10:28:39.9008 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 09bacfbd-47ef-4465-9265-3546f2eaf6bc
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: cCv0t6ejX99G0Th27TJZrYixTf5LKHBz5nWnD/RpwlZHiw7Uk7oFuQ+uG0bTvtsPR/0gY++k+vtBYQXSdkiVQyD9nVykanIeDyxvMiW2IwA=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DB7PR01MB5337
Archived-At: <https://mailarchive.ietf.org/arch/msg/cfrg/QdO6RvereAjv23D0hW3aFJD9h6k>
Subject: Re: [Cfrg] PAKE selection repository
X-BeenThere: cfrg@irtf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Crypto Forum Research Group <cfrg.irtf.org>
List-Unsubscribe: <https://www.irtf.org/mailman/options/cfrg>, <mailto:cfrg-request@irtf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/cfrg/>
List-Post: <mailto:cfrg@irtf.org>
List-Help: <mailto:cfrg-request@irtf.org?subject=help>
List-Subscribe: <https://www.irtf.org/mailman/listinfo/cfrg>, <mailto:cfrg-request@irtf.org?subject=subscribe>
X-List-Received-Date: Wed, 25 Sep 2019 10:28:46 -0000

Hi Yaron,

Thanks for putting this together. It’s really encouraging to see the interest and detailed comments on PAKE from different sectors in the industry. After reading all reviews, I think there is a fundamental question that needs to be addressed. The question is below:

“Trusted setup vs hash-to-curve - which  of these two is considered acceptable, or neither?”

If the former is acceptable, we need to fully understand the implications once this setup becomes a target of attack and is broken in the worst case. However, the implications are not spelt out. If the latter is acceptable, the hash-to-curve functions must be fully specified. They have to be part of the complete specification for a PAKE system, and “fixed” (not movable parts) so people can review the whole system and fairly compare it with other techniques. We should also need to anticipate the likely scenario that in 10-20 years from now new EC curves might emerge and have more desirable security/efficiency properties, and hence become the preferred choices in the industry. Does a general hash-to-curve function exist that can adapt to any such curve that may emerge in the future?

Cheers,
Feng

From: Cfrg <cfrg-bounces@irtf.org> on behalf of Yaron Sheffer <yaronf.ietf@gmail.com>
Date: Friday, 20 September 2019 at 16:30
To: "cfrg@irtf.org" <cfrg@irtf.org>
Subject: [Cfrg] PAKE selection repository

Hi,

We have established a GitHub repository [1] for the source material of the PAKE selection candidates, as well as a list of all reviews submitted so far. We will update it when new reviews come in.

If you would like to amend a review you have submitted, please send the full review to the CFRG mailing list, and then open a Pull Request (or a GitHub Issue if that’s easier) with a stable link for the new review.

Thanks,
                Yaron

[1] https://github.com/cfrg/pake-selection/

v2.23.0 | Report a Bug | By Email