Re: [Cfrg] Elliptic Curves - poll on security levels (ends on February 17th)

Andy Lutomirski <luto@amacapital.net> Tue, 10 February 2015 20:23 UTC

MIME-Version: 1.0
In-Reply-To: <54D9E2E3.4080402@isode.com>
References: <54D9E2E3.4080402@isode.com>
From: Andy Lutomirski <luto@amacapital.net>
Date: Tue, 10 Feb 2015 12:23:35 -0800
Message-ID: <CALCETrXnbm6LQaYrPmgpp8i0Rt=CsCaPUgQq87ZfW9hDEGzshA@mail.gmail.com>
To: Alexey Melnikov <alexey.melnikov@isode.com>
Content-Type: text/plain; charset="UTF-8"
Archived-At: <http://mailarchive.ietf.org/arch/msg/cfrg/qsNRznYdqrhKiCCegsw_9XNhkYo>
Cc: "cfrg@irtf.org" <cfrg@irtf.org>
Subject: Re: [Cfrg] Elliptic Curves - poll on security levels (ends on February 17th)
Precedence: list

On Tue, Feb 10, 2015 at 2:52 AM, Alexey Melnikov
<alexey.melnikov@isode.com> wrote:
> CFRG chairs are starting a poll, containing 2 initial questions:
>
> Q1: Should CFRG recommend a curve at the 192-bit security level?

No

>
> Q2: Should CFRG recommend a curve at the 256-bit security level?

No

IMO CFRG should generate a curve with WF ~ 2^128 ASAP and should
subsequently generate *one* good paranoid curve.  If that curve ends
up having security level at or near 192 or 256 bits, then that's fine.

--Andy

[Cfrg] Elliptic Curves - poll on security levels … Alexey Melnikov
Re: [Cfrg] Elliptic Curves - poll on security lev… Torsten Schütze
Re: [Cfrg] Elliptic Curves - poll on security lev… Dan Brown
Re: [Cfrg] Elliptic Curves - poll on security lev… Nguyen Dr., Kim
Re: [Cfrg] Elliptic Curves - poll on security lev… Stanislav V. Smyshlyaev
Re: [Cfrg] Elliptic Curves - poll on security lev… Watson Ladd
Re: [Cfrg] Elliptic Curves - poll on security lev… Aaron Zauner
Re: [Cfrg] Elliptic Curves - poll on security lev… Phillip Hallam-Baker
Re: [Cfrg] Elliptic Curves - poll on security lev… Christoph Anton Mitterer
Re: [Cfrg] Elliptic Curves - poll on security lev… Dan Brown
Re: [Cfrg] Elliptic Curves - poll on security lev… Phillip Hallam-Baker
Re: [Cfrg] Elliptic Curves - poll on security lev… Paul Hoffman
Re: [Cfrg] Elliptic Curves - poll on security lev… Adam Langley
Re: [Cfrg] Elliptic Curves - poll on security lev… Yoav Nir
Re: [Cfrg] Elliptic Curves - poll on security lev… Stephen Farrell
Re: [Cfrg] Elliptic Curves - poll on security lev… Salz, Rich
Re: [Cfrg] Elliptic Curves - poll on security lev… Tony Arcieri
Re: [Cfrg] Elliptic Curves - poll on security lev… Daniel Kahn Gillmor
Re: [Cfrg] Elliptic Curves - poll on security lev… Mike Hamburg
Re: [Cfrg] Elliptic Curves - poll on security lev… Phillip Hallam-Baker
Re: [Cfrg] Elliptic Curves - poll on security lev… Yoav Nir
Re: [Cfrg] Elliptic Curves - poll on security lev… Kurt Roeckx
Re: [Cfrg] Elliptic Curves - poll on security lev… Alyssa Rowan
Re: [Cfrg] Elliptic Curves - poll on security lev… Mike Hamburg
Re: [Cfrg] Elliptic Curves - poll on security lev… Phillip Hallam-Baker
Re: [Cfrg] Elliptic Curves - poll on security lev… Tony Arcieri
Re: [Cfrg] Elliptic Curves - poll on security lev… Станислав Смышляев
Re: [Cfrg] Elliptic Curves - poll on security lev… Andy Lutomirski
Re: [Cfrg] Elliptic Curves - poll on security lev… James Cloos
Re: [Cfrg] Elliptic Curves - poll on security lev… Yoav Nir
Re: [Cfrg] Elliptic Curves - poll on security lev… Damien Miller
Re: [Cfrg] Elliptic Curves - poll on security lev… James Cloos
Re: [Cfrg] Elliptic Curves - poll on security lev… Mike Jones
Re: [Cfrg] Elliptic Curves - poll on security lev… Benjamin Beurdouche
Re: [Cfrg] Elliptic Curves - poll on security lev… Daniel Kahn Gillmor
Re: [Cfrg] Elliptic Curves - poll on security lev… David Leon Gil
Re: [Cfrg] Elliptic Curves - poll on security lev… Dan Harkins
Re: [Cfrg] Elliptic Curves - poll on security lev… Olafur Gudmundsson
Re: [Cfrg] Elliptic Curves - poll on security lev… Bindhunadhava
Re: [Cfrg] Elliptic Curves - poll on security lev… Aaron Zauner
Re: [Cfrg] Elliptic Curves - poll on security lev… Stanislav V. Smyshlyaev
Re: [Cfrg] Elliptic Curves - poll on security lev… Manger, James
Re: [Cfrg] Elliptic Curves - poll on security lev… Russ Housley
Re: [Cfrg] Elliptic Curves - poll on security lev… Russ Housley
Re: [Cfrg] Elliptic Curves - poll on security lev… Brian Smith
Re: [Cfrg] Elliptic Curves - poll on security lev… Phillip Hallam-Baker
Re: [Cfrg] Elliptic Curves - poll on security lev… Paterson, Kenny
Re: [Cfrg] Elliptic Curves - poll on security lev… Paterson, Kenny
Re: [Cfrg] Elliptic Curves - poll on security lev… Yoav Nir
Re: [Cfrg] Elliptic Curves - poll on security lev… Daniel Kahn Gillmor
Re: [Cfrg] Elliptic Curves - poll on security lev… Stanislav V. Smyshlyaev
Re: [Cfrg] Elliptic Curves - poll on security lev… Watson Ladd
Re: [Cfrg] Elliptic Curves - poll on security lev… Dan Brown
Re: [Cfrg] Elliptic Curves - poll on security lev… Phillip Hallam-Baker
Re: [Cfrg] Elliptic Curves - poll on security lev… Eric Rescorla
Re: [Cfrg] Elliptic Curves - poll on security lev… Annie Yousar
Re: [Cfrg] Elliptic Curves - poll on security lev… Russ Housley
Re: [Cfrg] Elliptic Curves - poll on security lev… Andrey Jivsov
[Cfrg] Why I think 256-level is a bad idea [Was: … Ilari Liusvaara
Re: [Cfrg] Why I think 256-level is a bad idea [W… Adam Langley
Re: [Cfrg] Elliptic Curves - poll on security lev… Michael Scott
Re: [Cfrg] Elliptic Curves - poll on security lev… Simon Josefsson
Re: [Cfrg] Elliptic Curves - poll on security lev… _MiW
Re: [Cfrg] Elliptic Curves - poll on security lev… Alexey Melnikov
Re: [Cfrg] Elliptic Curves - poll on security lev… Olafur Gudmundsson
Re: [Cfrg] Elliptic Curves - poll on security lev… Alexey Melnikov
Re: [Cfrg] Elliptic Curves - poll on security lev… Brian Smith
Re: [Cfrg] Elliptic Curves - poll on security lev… Paterson, Kenny
Re: [Cfrg] Elliptic Curves - poll on security lev… Joseph Salowey
Re: [Cfrg] Elliptic Curves - poll on security lev… Watson Ladd
Re: [Cfrg] Elliptic Curves - poll on security lev… Alexey Melnikov
Re: [Cfrg] Elliptic Curves - poll on security lev… Kurt Roeckx
Re: [Cfrg] Elliptic Curves - poll on security lev… Nex6|Bill