IETF Logo Mail Archive

[CFRG] Re: Progressing NTRUPrime/Classic McEliece drafts

Harry Halpin <hhalpin@ibiblio.org> Mon, 27 January 2025 12:31 UTC

Return-Path: <hhalpin@ibiblio.org>
X-Original-To: cfrg@ietfa.amsl.com
Delivered-To: cfrg@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4C734C1840E4 for <cfrg@ietfa.amsl.com>; Mon, 27 Jan 2025 04:31:47 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.907
X-Spam-Level:
X-Spam-Status: No, score=-1.907 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=ibiblio-org.20230601.gappssmtp.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id zueG5VXeFqqg for <cfrg@ietfa.amsl.com>; Mon, 27 Jan 2025 04:31:43 -0800 (PST)
Received: from mail-yb1-xb34.google.com (mail-yb1-xb34.google.com [IPv6:2607:f8b0:4864:20::b34]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 389F1C1840E8 for <cfrg@irtf.org>; Mon, 27 Jan 2025 04:31:42 -0800 (PST)
Received: by mail-yb1-xb34.google.com with SMTP id 3f1490d57ef6-e3a26de697fso6343583276.3 for <cfrg@irtf.org>; Mon, 27 Jan 2025 04:31:42 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ibiblio-org.20230601.gappssmtp.com; s=20230601; t=1737981102; x=1738585902; darn=irtf.org; h=to:subject:message-id:date:from:in-reply-to:references:mime-version :from:to:cc:subject:date:message-id:reply-to; bh=Itevwq8t1UVnL7Dz95SKhO1T3dPj++2HahhlaOyg98M=; b=WWmC0YJgk7eA7xwkuAHrnIYbY3cjN3kRT08/SsI3PPqB+mxZ0Pt6jMJyzOeCc9W4G6 tFNu7ARW3Kkx6m1CBY5WLPGPQgTlWtRkk+UGeRSGDKuj2w6ztO2iHeK/52jhLu5JVqxE uK3bmE+wA9cHGMwEFc1TFdwUtOxkTR58hFrVeqF5GSTAAFEg9ONnMmWKsgW72iKHAVyX 0oFk3wCGPH+haStxMDSo9j+6h2WDbeg08KrTNLJ1Pb1POBIIwqtpkuCAtZ98kXi4t1ed wXpdBM1+fKepVPt1X4H3kjI6bNPV3BawTg4Ovbwwsids041TEcHZJ6TP/E6PCLIZOeOg 8WNA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1737981102; x=1738585902; h=to:subject:message-id:date:from:in-reply-to:references:mime-version :x-gm-message-state:from:to:cc:subject:date:message-id:reply-to; bh=Itevwq8t1UVnL7Dz95SKhO1T3dPj++2HahhlaOyg98M=; b=FGpG9zE04LB5JnL6PEeHh0YdS/JEt3RWNh/YQqZXHbveDjY08s72KX1iIdbiQcw+4g YprWU6uY348NY5XGfbW+qer4MO1mY0EABjog8uIGRx5rUBeT1lGBsPSvtroJ8qAmz/sB Oa2M3Kinn92Z1iAwlB0/HDuv14O8hojUvkQGayI90xjymuHAkJoekku1X85jk8NHm8mj dcDp2jlWKw/Ogy8nT/IyetdA6UnkBLU+M2LaYhPI5sXE6CNJA42lR1FMax+rECZKI01s C2ixMzn2rLlJgPZdBSZulcdkZKWJcQbDLxpLRCz0S5Qktb9vNAT04Tz/LudJnSCQdErZ mSLg==
X-Gm-Message-State: AOJu0Yzaw+SfXOoDZvscCqaZWt6tNZqW4r81liHBzkclHjbdTfIZ1HaZ F4FV03lY53EVUDSvEtqeanqL0sO4STShs92YjJJw6fsseYophr1cM7CJ6blsIdIng4/KaB9taEB SrOzxkfdd+l9I1B7uakeQFOkr3QKgTEo+BlarHYQIJe2WZ0c=
X-Gm-Gg: ASbGncv9qoZyIafnbWBif/YEWkfg/MMZy23vWCv1MYUoVE6vjOEetUFUP7FbPlTzBTN CkVxLfR6vQicrN/ZIsIT5snrqP3dAp4ODD0OhAboWFDdSJlxkv1d+/SrgNzQjED8=
X-Google-Smtp-Source: AGHT+IErUfOKPd7Rg5OfsvLNq8XT+zSC4CsDgx+xp/6pp++hHSKZMllebUzr+CNfdyP09eqQ7wf/Zwvyrm2Gy3Cb6qI=
X-Received: by 2002:a05:690c:c8b:b0:6ef:ac8b:529b with SMTP id 00721157ae682-6f6eb90589fmr306406767b3.26.1737981101722; Mon, 27 Jan 2025 04:31:41 -0800 (PST)
MIME-Version: 1.0
References: <CAOp4FwRgTkWtW3iVmLw0ZDD0xPfgLnSX5HQAPSRKhnJ+jwNr0Q@mail.gmail.com> <20250127113904.1293314.qmail@cr.yp.to>
In-Reply-To: <20250127113904.1293314.qmail@cr.yp.to>
From: Harry Halpin <hhalpin@ibiblio.org>
Date: Mon, 27 Jan 2025 15:31:30 +0300
X-Gm-Features: AWEUYZnBlZHERuWSLRaYp1ySKczwFpgWitsxbgdOakAr0RW-uVOfve_QrOVr7iE
Message-ID: <CAE1ny+5S+Jm1ngmT8hu7H5uE5z31O7dkNRetFjmAD3oVR9yzkA@mail.gmail.com>
To: cfrg@irtf.org
Content-Type: multipart/alternative; boundary="00000000000031ed16062caf42ce"
Message-ID-Hash: M355KRRW72ZHD54SKRMHHWNGUI4YNVGL
X-Message-ID-Hash: M355KRRW72ZHD54SKRMHHWNGUI4YNVGL
X-MailFrom: hhalpin@ibiblio.org
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-cfrg.irtf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
X-Mailman-Version: 3.3.9rc6
Precedence: list
Subject: [CFRG] Re: Progressing NTRUPrime/Classic McEliece drafts
List-Id: Crypto Forum Research Group <cfrg.irtf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/cfrg/_y1M_yaJZwt_iFEvCYfwqfer8-4>
List-Archive: <https://mailarchive.ietf.org/arch/browse/cfrg>
List-Help: <mailto:cfrg-request@irtf.org?subject=help>
List-Owner: <mailto:cfrg-owner@irtf.org>
List-Post: <mailto:cfrg@irtf.org>
List-Subscribe: <mailto:cfrg-join@irtf.org>
List-Unsubscribe: <mailto:cfrg-leave@irtf.org>

We are also working to deploy Classic McEliece in our VPN software:
https://nym.com.

The SimpleX chat protocol is using Classic McEliece:
https://simplex.chat

At least my company, Nym, would be disappointed if IETF protocols and
 algorithms were limited to NIST-approved post-quantum cryptography.

As an advisor of the Progressive International (
https://progressive.international) various governments outside of the USA
and Western Europe that we work with (mostly in Latin America, and I happen
am in Middle East rn) would also be disappointed. Although everyone in the
US (and many in Europe) have forgotten the Snowden revelations, including
the problematic relationship between NIST and NSA, various governments and
organizations in the Global South do tend to trust DJB-approved crypto more
than NIST-approved crypto.

Of course, we want to avoid too many algorithmic options, but that is not
the case with Classic McEliece. In general, support of NIST should not
preclude other deployed non-NIST approved algorithms if there is reasonable
evidence of deployment, although reasonable people may disagree on what is
reasonable.

  Yours,
     Harry

On Mon 27 Jan 2025 at 2:40 PM, D. J. Bernstein <djb@cr.yp.to> wrote:

> More data points regarding Classic McEliece deployment:
> https://mceliece.org
>
> Rationale for deployment: https://classic.mceliece.org/talks/20240917.pdf
>
> ---D. J. Bernstein
>
> _______________________________________________
> CFRG mailing list -- cfrg@irtf.org
> To unsubscribe send an email to cfrg-leave@irtf.org
>

v2.29.0 | Report a Bug | By Email | System Status