IETF Logo Mail Archive

Re: [CFRG] Choice of XOF for draft-irtf-cfrg-vdaf

Gilles VAN ASSCHE <gilles.vanassche@st.com> Fri, 29 September 2023 13:42 UTC

Return-Path: <prvs=8636f99d35=gilles.vanassche@st.com>
X-Original-To: cfrg@ietfa.amsl.com
Delivered-To: cfrg@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D693DC151092 for <cfrg@ietfa.amsl.com>; Fri, 29 Sep 2023 06:42:01 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.107
X-Spam-Level:
X-Spam-Status: No, score=-7.107 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_HI=-5, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=st.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id HgrrwLs2NmjX for <cfrg@ietfa.amsl.com>; Fri, 29 Sep 2023 06:41:58 -0700 (PDT)
Received: from mx08-00178001.pphosted.com (mx08-00178001.pphosted.com [91.207.212.93]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C01F3C13194D for <cfrg@irtf.org>; Fri, 29 Sep 2023 06:41:57 -0700 (PDT)
Received: from pps.filterd (m0369457.ppops.net [127.0.0.1]) by mx07-00178001.pphosted.com (8.17.1.22/8.17.1.22) with ESMTP id 38TAeI7x005143; Fri, 29 Sep 2023 15:41:54 +0200
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=st.com; h=from :to:cc:subject:date:message-id:references:in-reply-to :content-type:content-transfer-encoding:mime-version; s= STMicroelectronics; bh=NA9eCENjLnfgqHlq1aIUZd3yV5ythXZPNbn9+JuJJ qs=; b=QzewsTeVxyDUEUIlGJQLnw9kJjf95qbkQGuBjaQ7oobgx258lYTSewDTF lrEle0r9wxiiox+O7s+rbjBB6Go3xJivquQsN7d0oT5gVFWEAl8iAON3NHOSdt6z a6w2pBnz06jS04ODUVYu8qm40Us/mxYYYApsPd4TAP294/rPFOVGfx3/KShbpL0s gsLPmh9wv9KMO+iqO5Md+hZvk5NIc6/ExlPYKAEgsbj1JkMhj47NpicFnejFE3Jf 3G2qSGEj7GzZvehn+uz07gJIk/0nBt6ETNwVpTPkMevUwYi+sAdac/X17qAbvAts rEil7DLOE6xPA+FtjAfYBEkvgs72w==
Received: from eur03-am7-obe.outbound.protection.outlook.com (mail-am7eur03lp2238.outbound.protection.outlook.com [104.47.51.238]) by mx07-00178001.pphosted.com (PPS) with ESMTPS id 3taayj1pb5-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Fri, 29 Sep 2023 15:41:54 +0200 (MEST)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=VyZjuR7VyFIpd4CszZ1x/asg8vXnuohT0POTYry8d98VW8FOyivLtfkkHrY12DdX9kMGiDwrPS3ydVo2uiBWTchNw/K4Hcy/UX8sD0RtiQPqu1kRGudXcWSyJ3M0nw/+J5nbbg+GEp2SX6sIgZYogkF/XuBkhNLwKFoJYurNpDhc9J9lzMDiuUrjU9y5c+HwIl6ThesOgXkcFzm+rrGlcJ7OhQmXnIZPEAYgNC6NDvQfbU4bKxFYRH1FsbwP1n7wy2N8F2HnE89m1ay6USkHbU9zO+MyAKXnpxvm3LWyIMDPbD4SXttHNzxX9xrpS5N/v7pM57OPS5aBvSywvIQYkQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=NA9eCENjLnfgqHlq1aIUZd3yV5ythXZPNbn9+JuJJqs=; b=meN4pyF0vQzP8Btav6jWsLQUmd08MMiHG5U7nUeF52+RVmJNDiX5QNniLb3edEYW3K/WO6wZ74Moj8QKCiI2cvGOSS9k+/JKsAVHbe5NlwmTfNGoTE18VIVaxmDL6Lv3/wgvMZ12bdWTiW9mTfLqTe9kHnDjfQ14UIRD+1/F8g3EXHeKlJjBdDiTdOrn78zLwkcjkWFwW3ZmiciCBO7iHX0443yECbu75NznytZtdJQSaKdPOUzufWgJIp20v7yKpzzmRylo83cxB0qEGUwFDsLaggGgHH8YE5uTe7y6z2h6zZxENAJvge/OHlfSh14cff8zUJ+92wVfvgthVsQbgQ==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=st.com; dmarc=pass action=none header.from=st.com; dkim=pass header.d=st.com; arc=none
Received: from AM9PR10MB5005.EURPRD10.PROD.OUTLOOK.COM (2603:10a6:20b:41e::15) by PAVPR10MB6909.EURPRD10.PROD.OUTLOOK.COM (2603:10a6:102:328::12) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.6813.37; Fri, 29 Sep 2023 13:41:52 +0000
Received: from AM9PR10MB5005.EURPRD10.PROD.OUTLOOK.COM ([fe80::e33d:4b2b:a43:908d]) by AM9PR10MB5005.EURPRD10.PROD.OUTLOOK.COM ([fe80::e33d:4b2b:a43:908d%4]) with mapi id 15.20.6838.016; Fri, 29 Sep 2023 13:41:52 +0000
From: Gilles VAN ASSCHE <gilles.vanassche@st.com>
To: "Riad S. Wahby" <riad@cmu.edu>
CC: CFRG <cfrg@irtf.org>
Thread-Topic: [CFRG] Choice of XOF for draft-irtf-cfrg-vdaf
Thread-Index: AQHZ8M/QjCPmbK/4+kKmeJPHJYJayLAu1AsAgACjVACAAAnKAIAAvW4AgAAbJACAABkOgIAAB6aAgAAEgwCAABuMAIABLdVw
Date: Fri, 29 Sep 2023 13:41:52 +0000
Message-ID: <AM9PR10MB5005F906EDE47594BFAD3100F2C0A@AM9PR10MB5005.EURPRD10.PROD.OUTLOOK.COM>
References: <CAG2Zi21761Q5kRytS6+uFvL5-YN3imiC3h6L-BGkpxkKUwCrqw@mail.gmail.com> <CACsY-OcovTdPhPvx=LgNNJYHHpLnRrAmbLV1iDmgJmAQOf23uA@mail.gmail.com> <u4ty3znp7keykl5xxugnuspwcqlvkj2uy7z4tbu3nmojsstvxk@poqwkgkaucec> <CAG2Zi23dAhZcx-kFpfpeYBhtc2HibQRY_8iaKnD500428VdcKg@mail.gmail.com> <gpddabcxx3yll2qsgo6tbcz2uwvlug7ahmzm3fdpx2oetnomx3@vhxyhmfptltn> <CAF8qwaB2FWfnDUN5X4ZTk1o__-xgn_9dMM4y+QbQXyJU+KKH_g@mail.gmail.com> <xyymjmczddd3n3bladqslr7dokrwlwmvqcv6u5rnf2svmqfcgz@afd6akxyvubq> <ZRWybTjL0CIx8qbz@LK-Perkele-VII2.locald> <CAF8qwaAQAVfJeddgVheh3Q+FM=ObAPjzVABWBLM+At2UKoCkxw@mail.gmail.com> <kwwoi6j6bhyb5nqtlk7vvrcdolparsdw2e3lhphv2k4dqhics7@obnn3e3hnrtv>
In-Reply-To: <kwwoi6j6bhyb5nqtlk7vvrcdolparsdw2e3lhphv2k4dqhics7@obnn3e3hnrtv>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
msip_labels: MSIP_Label_cf8c7287-838c-46dd-b281-b1140229e67a_Enabled=true; MSIP_Label_cf8c7287-838c-46dd-b281-b1140229e67a_SetDate=2023-09-29T13:01:08Z; MSIP_Label_cf8c7287-838c-46dd-b281-b1140229e67a_Method=Privileged; MSIP_Label_cf8c7287-838c-46dd-b281-b1140229e67a_Name=cf8c7287-838c-46dd-b281-b1140229e67a; MSIP_Label_cf8c7287-838c-46dd-b281-b1140229e67a_SiteId=75e027c9-20d5-47d5-b82f-77d7cd041e8f; MSIP_Label_cf8c7287-838c-46dd-b281-b1140229e67a_ActionId=b4ac0639-5def-485f-b424-738f4144b70f; MSIP_Label_cf8c7287-838c-46dd-b281-b1140229e67a_ContentBits=0
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: AM9PR10MB5005:EE_|PAVPR10MB6909:EE_
x-ms-office365-filtering-correlation-id: 6cd1854f-277c-464e-2dbb-08dbc0f1d6a5
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:AM9PR10MB5005.EURPRD10.PROD.OUTLOOK.COM; PTR:; CAT:NONE; SFS:(13230031)(396003)(366004)(346002)(39860400002)(136003)(376002)(230922051799003)(451199024)(1800799009)(186009)(64100799003)(55016003)(71200400001)(76116006)(64756008)(6916009)(66476007)(66446008)(66556008)(66946007)(41300700001)(478600001)(316002)(33656002)(86362001)(122000001)(38100700002)(38070700005)(55236004)(9686003)(7696005)(6506007)(26005)(4744005)(8936002)(8676002)(4326008)(2906002)(52536014)(5660300002); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: BbwI0p4yEJX2cWJfs4LrkHh11AoRKKtQKbAuAGjGSd9M1NskUKy1n+04TfchGL2AtEP9Cj//FEXF4uzWvf8WSpb/a6UR+ADd4zU9G3DvdwqSUtYFbPc75Q+yQRTGuBDWMtl8lPCFHY+m0xZ8r90hUe2VvBhuP2X5xCAwLsky85m8Q9bbmeTpVXjZ2UE1kSHeiACtN2idczcD29/m6gFg18jv1XVG3mSifmZredBLyCDN9iRZREHuuXoADEmhqA3G4AW3jt4DuVyAs21x6oo/bhyle5DySxiGcR7HHijzDaL6RhhT0NwkC7FUfPLQzOvHByYU0QMxvVF2adxaOrnV22iphUgUNI2cuFfMDh4Vv5lvlq9gowIqLjHq7huzZa07v4nBgobX4rGHNDxch3WUVQRNcpcF1I5YtWy/pMrF2n2SRsfnZTAuxrTuDiPk3QhdBT7YR2AK4udOos7gdprZxJ8KvUmoqBsT/vckeWAvmV8NXXslgF9EnLeJE/BKZLJY8qs5+QL0btDnVcMdS9e9c8NQ8qRZYBr2JltJ8Ikb6GgmOMFVVTSUWrAEzjt1+JQDFb9kJqfXZA/ZvAawiOoCI/mQAOTRuvu8RtZlmPzS/d36hBFydEw8swiCPCtUuQPyAEjQ9lbd3me+uQgeqaydj4jPWwVyP8i7DfirYY8319aECNquEfO3v72HREkEKqK+fZeiGSAFYv4Z3Qf3Pzp7zzNITGPA8l9q9dnAsQqgOTJ3ccIE9u9ipNbSgt8od+C7r+F2sDY+sgaGbU1UMATPpzWT+0ZJSsyKcjW6t4R+O2esS7RTuA+PaZ7t6ksEYCyq3jZX7YNvH7ipAe6e+7zR32LcElXHX4IEo5lAutyAfXeQrkrx6bxzIjpZDXbhBROgE0vbMUfiJK8txas4/vlgPSzwaTvd+SHklTvtJ4afyARxn6StcUYNszd0Pfe2tMAl2qAAsEuvHQlE1aOF6fJo0SPVwHYI6ocmQwF8xqt9QE7xuhMKe1V7j4R3CRJIra5afvxMZUJbLsgX877y+IqczGLtWmIY55BhwnkVG6i+Hz/S+Py0pRMgACfkZHzTO2QQpXxbGyyo0nxwVsf8g+hagGqvnCLR/xLN3MGPLDMeeZbK7dnUDvGbAMD4FviBD2qTi8s+DYRP47SE73XsJHbUaFN5+7lRstVa3mpDkChv3sE13QIlH0wXVN4kN4zTZ62xoldKvWPZxUKSzp3o6G5uLbdRtjXkvgKKN6197dOq6KX0wI7z0Fd+SCkn8CeHaqevPwupoTfXW8YdaXsiHluvFYrgmY+Qc0HQMmY91gtk+CcWj598+DDYYzIskU3FhBLcRyLuRfQutkITNPlUHbyXX2s6nIeamMoqAhXbkOX/k0Zq1apzafom2/OuY4XnMufm47otdVqnuiIJTgScy9ys5ewUwbiINpji6wcG7spRUIAgP1BMjcgmHhLSC5idr3pCnEYNARC/OHbGdRgQaltjvH6Nknlyz/KkNtuJ7z5dA1iV+eGDdkvB21SNHGVB3sQ2+rdSWl5/ij1NLviHBe2BJ5bvGEymvErP9WDClzweA4US5U/j23L9UZHfy1ZK8C3H
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-OriginatorOrg: ST.COM
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: AM9PR10MB5005.EURPRD10.PROD.OUTLOOK.COM
X-MS-Exchange-CrossTenant-Network-Message-Id: 6cd1854f-277c-464e-2dbb-08dbc0f1d6a5
X-MS-Exchange-CrossTenant-originalarrivaltime: 29 Sep 2023 13:41:52.3504 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 75e027c9-20d5-47d5-b82f-77d7cd041e8f
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: 3QgA8b9SMI535fgiMZjH5XkQc7eXdo9uXjWFetlR7i7o9L4+5R5+xfnojp9BMtABj7AJKVIx/uy9EQss3FtYzw==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: PAVPR10MB6909
X-Proofpoint-ORIG-GUID: R_T2PX2wUacQ9dGY4hV5ZX5FkV53XO1i
X-Proofpoint-GUID: R_T2PX2wUacQ9dGY4hV5ZX5FkV53XO1i
X-Proofpoint-Virus-Version: vendor=baseguard engine=ICAP:2.0.267,Aquarius:18.0.980,Hydra:6.0.619,FMLib:17.11.176.26 definitions=2023-09-29_11,2023-09-28_03,2023-05-22_02
X-Proofpoint-Spam-Details: rule=notspam policy=default score=0 priorityscore=1501 phishscore=0 clxscore=1011 adultscore=0 suspectscore=0 spamscore=0 bulkscore=0 mlxscore=0 malwarescore=0 impostorscore=0 lowpriorityscore=0 mlxlogscore=464 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.19.0-2309180000 definitions=main-2309290117
Archived-At: <https://mailarchive.ietf.org/arch/msg/cfrg/jIHm-BDT9QAFy9DQYawXIhPR1mk>
Subject: Re: [CFRG] Choice of XOF for draft-irtf-cfrg-vdaf
X-BeenThere: cfrg@irtf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Crypto Forum Research Group <cfrg.irtf.org>
List-Unsubscribe: <https://www.irtf.org/mailman/options/cfrg>, <mailto:cfrg-request@irtf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/cfrg/>
List-Post: <mailto:cfrg@irtf.org>
List-Help: <mailto:cfrg-request@irtf.org?subject=help>
List-Subscribe: <https://www.irtf.org/mailman/listinfo/cfrg>, <mailto:cfrg-request@irtf.org?subject=subscribe>
X-List-Received-Date: Fri, 29 Sep 2023 13:42:01 -0000

Hi Riad,

> Choosing TurboSHAKE smells vaguely like the kind of optimization that will appear strange once it's ten years in the rearview.

I see your point. Yet, as a co-designer of Keccak/TurboSHAKE, I have a somewhat different feeling. Now that we have a good view on Keccak's safety margin thanks to lots of cryptanalysis, it could appear strange in ten years if we'd still always stick to the full 24-round version.

Kind regards,
Gilles

v2.23.0 | Report a Bug | By Email