[Cfrg] NIST is requesting comments on protection guidance of the OTS private key re-use (mis-use) issue and on usage restrictions of hash-based signatures.

"Dang, Quynh (Fed)" <quynh.dang@nist.gov> Fri, 15 February 2019 11:33 UTC

Return-Path: <quynh.dang@nist.gov>
X-Original-To: cfrg@ietfa.amsl.com
Delivered-To: cfrg@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A6161130DC9 for <cfrg@ietfa.amsl.com>; Fri, 15 Feb 2019 03:33:35 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2
X-Spam-Level:
X-Spam-Status: No, score=-2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=nist.gov
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Y_htDQMkKtGL for <cfrg@ietfa.amsl.com>; Fri, 15 Feb 2019 03:33:33 -0800 (PST)
Received: from GCC01-DM2-obe.outbound.protection.outlook.com (mail-eopbgr840090.outbound.protection.outlook.com [40.107.84.90]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 67BAD130FA2 for <Cfrg@irtf.org>; Fri, 15 Feb 2019 03:33:33 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=nist.gov; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=FOKt0MWT2CI0m6nbwjkCOiVT6qyT9AmvPTguUX6L7yw=; b=hXhXurezkF6X1fvLU+RMp3KKNRG/AuV6qjsQKaslB9GMPUTUfhp8MsPhHSsqWZ8OjCrAuakP6Ko0UZ84r4ZGwJ6SfGy5ouH4VaoaHUsfaQ6Tu2IIgc/OB2ng9qPPnhZ/kko3C2MfBPidECT1ZWPSDcWQ1U8ppdHWFS+B4+EVbKU=
Received: from BN8PR09MB3604.namprd09.prod.outlook.com (20.179.76.14) by BN8PR09MB3601.namprd09.prod.outlook.com (20.179.76.11) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.1622.19; Fri, 15 Feb 2019 11:33:31 +0000
Received: from BN8PR09MB3604.namprd09.prod.outlook.com ([fe80::cd:14aa:42b:5286]) by BN8PR09MB3604.namprd09.prod.outlook.com ([fe80::cd:14aa:42b:5286%3]) with mapi id 15.20.1622.018; Fri, 15 Feb 2019 11:33:31 +0000
From: "Dang, Quynh (Fed)" <quynh.dang@nist.gov>
To: IRTF CFRG <Cfrg@irtf.org>, "spasm@ietf.org" <spasm@ietf.org>
Thread-Topic: NIST is requesting comments on protection guidance of the OTS private key re-use (mis-use) issue and on usage restrictions of hash-based signatures.
Thread-Index: AQHUxSHOYVED9NIf6E2/gotGVJrKlA==
Date: Fri, 15 Feb 2019 11:33:30 +0000
Message-ID: <BN8PR09MB36047D73636E89EB5515EC44F3600@BN8PR09MB3604.namprd09.prod.outlook.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: spf=none (sender IP is ) smtp.mailfrom=quynh.dang@nist.gov;
x-originating-ip: [2610:20:6005:220::7b]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 0174484d-321b-45e6-f493-08d693396980
x-ms-office365-filtering-ht: Tenant
x-microsoft-antispam: BCL:0; PCL:0; RULEID:(2390118)(7020095)(4652040)(8989299)(4534185)(4627221)(201703031133081)(201702281549075)(8990200)(5600110)(711020)(4605077)(4618075)(2017052603328)(7153060)(7193020); SRVR:BN8PR09MB3601;
x-ms-traffictypediagnostic: BN8PR09MB3601:
x-ms-exchange-purlcount: 1
x-microsoft-exchange-diagnostics: =?iso-8859-1?Q?1; BN8PR09MB3601; 23:lK3wAlVs/u7vI6AJNvW0F4ilttwqEquzXJ307G3?= =?iso-8859-1?Q?iv96JkGdMawNsNXiDWxfKtacmddbYqKiQ0t020rcDhsGBJINZDXIuvpRoL?= =?iso-8859-1?Q?SJ2Nb0sMfRtTuSWS0/HSKwPPwE7khCk27o/cdzXSu6J18piUggormgpRvp?= =?iso-8859-1?Q?MB0+8I5OKFu42Oz8v7vx3vRdt0SYUdI1ovMnwqUUtdiMlkMAEGWSS+7t9z?= =?iso-8859-1?Q?ZlCKwtGCdmq29folta2hMXr1dMX8KW7Elj3sGVNQD42wRUbnaYe1C7tEUh?= =?iso-8859-1?Q?NWi9Wcb3DqQFFRerkUbXatuvanU4yO2X6heegnJFdFJJTxmQILKC4LEAn6?= =?iso-8859-1?Q?KgpXj4nuHOMzmYGQBvwBZpyN61Kc3VunKOUf1dfoeCrH9OX5ZeeoTh0zSe?= =?iso-8859-1?Q?MuVFijfx6PCc0cdZQPIkimwd32fUTFafcfZDYkAhMMRKZ8JEtd9XT6VCSR?= =?iso-8859-1?Q?C9XTU4Teboemy5JRNEJmKMNSQ7WvJM/cNvniAWzXDORRkfkZ5fK215bvSe?= =?iso-8859-1?Q?+/rwH4UNsBBBt8D3wCq9s/um7eEvh4RX9E2j4CyzirUo0zCl5XeMCO97xD?= =?iso-8859-1?Q?ly4P3tSmdZLLt9vLfw2sCrxAzUsM44n2jeERjgAB9nGTlqwarjTaa7sdAv?= =?iso-8859-1?Q?FCx0zSgU5OWmaK7+8xvnjNvsfgdqQX8q3DDIf1FuBzWeOdv8KqRk7tTMZ4?= =?iso-8859-1?Q?CHfdDrQn3hOTzGeLKHzvldVQOzdn/3eeoGaT5n53dNyXnIpyeCCP8u8ZIs?= =?iso-8859-1?Q?UboXibXLHjg2xyXP5cs/2iYwG/I6y7Dexb16mM3kQ33QQG/yAo9zl0UERn?= =?iso-8859-1?Q?8PhxkrxBIbC3lczcMVibVCg+7g1pds3BVJXdtKPuGf7nElC+xTMUeOadBm?= =?iso-8859-1?Q?kmm0Xx9XfLkvtOoKVjNS+/A+bUaNQM4wm9yBtavmr5JsDXXG1XQf9Gd0uY?= =?iso-8859-1?Q?/p44Ki9oR2wVaq38ubvChWbz2wTymcYzMSP0HoVDu8tG1pVda0vqqYZ/Hv?= =?iso-8859-1?Q?VKcmG12AKswrQ9CQTYRV709v17x0jEz/KOE+EuH8EZ4GxyrItPN0jJoJwT?= =?iso-8859-1?Q?98MgF+u2kq8RJu24ONCMUlgkrH6jgeQhRMgQvztnFBxM3tjk5oFI4YJphV?= =?iso-8859-1?Q?3XNWdzaLu/nSMkkEkwc0QfL5GNZpAx7eFpxeawuxmfQMYZMTQXn1FxfOzT?= =?iso-8859-1?Q?jN+XJgmTMc0C+l0t/Z9CmJSu/JuGD9Hnww473PVcFjKU5y+uiM7NNlCvj8?= =?iso-8859-1?Q?rpqO22jvFd8TtWH96WOIuedcMQKzhkkPKtBgu+g=3D=3D?=
x-microsoft-antispam-prvs: <BN8PR09MB36016225424B5B1EC758F4D7F3600@BN8PR09MB3601.namprd09.prod.outlook.com>
x-forefront-prvs: 09497C15EB
x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(346002)(376002)(136003)(366004)(396003)(39860400002)(199004)(189003)(53754006)(71190400001)(2501003)(97736004)(105586002)(7736002)(102836004)(316002)(476003)(110136005)(966005)(478600001)(19627405001)(46003)(106356001)(486006)(54896002)(186003)(6116002)(99286004)(6606003)(2906002)(55016002)(6306002)(4744005)(236005)(9686003)(86362001)(6506007)(74316002)(7696005)(606006)(33656002)(14454004)(1015004)(6436002)(8676002)(15974865002)(8936002)(81156014)(81166006)(256004)(14444005)(71200400001)(25786009)(68736007)(53936002); DIR:OUT; SFP:1102; SCL:1; SRVR:BN8PR09MB3601; H:BN8PR09MB3604.namprd09.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; A:1; MX:1;
received-spf: None (protection.outlook.com: nist.gov does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam-message-info: RkINrYGHJ1yHWaWH3/OI9jI2zYgrOgTpNeEI1zM9dDY/NSQ4r4MoejL2inSOGdtizMOz1H5Hj1ZRfvg1ZnZdA3+31KmM4GO/9LYDkacYq8TD8IXh/Fggj6PPhsnJiWm0XmSGucaRk1ABMlO57VpxypEI/qMg6Yzak8/mNIjaPLDh0HnqS0Lra2G0afstZiQu6EigCU3SiUpdz3lGdWj+L8kWCqXykKdjIDSlVRFnWkpPp2NbmJDgJz5UEH4ggQZPtkuYbvR5STcExkBH5JAyCL4F9SRkNl51rmGI/CS4w2ncSVOOFVOAkB8PFmUYSzHN7MrYPv7Ms0FhbvG7lkL6JS/wLDIaYP/3XaReaCLYLsELlF7HnitYXaSob3/ZGTYFhVTFHtZpYtpr3uUeTDSoQDPbbNCacxWPehd2ax6IQdA=
Content-Type: multipart/alternative; boundary="_000_BN8PR09MB36047D73636E89EB5515EC44F3600BN8PR09MB3604namp_"
MIME-Version: 1.0
X-OriginatorOrg: nist.gov
X-MS-Exchange-CrossTenant-Network-Message-Id: 0174484d-321b-45e6-f493-08d693396980
X-MS-Exchange-CrossTenant-originalarrivaltime: 15 Feb 2019 11:33:30.9559 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 2ab5d82f-d8fa-4797-a93e-054655c61dec
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BN8PR09MB3601
Archived-At: <https://mailarchive.ietf.org/arch/msg/cfrg/OEe4k0hMMR9ETPva1APoWoXcLUA>
Subject: [Cfrg] NIST is requesting comments on protection guidance of the OTS private key re-use (mis-use) issue and on usage restrictions of hash-based signatures.
X-BeenThere: cfrg@irtf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Crypto Forum Research Group <cfrg.irtf.org>
List-Unsubscribe: <https://www.irtf.org/mailman/options/cfrg>, <mailto:cfrg-request@irtf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/cfrg/>
List-Post: <mailto:cfrg@irtf.org>
List-Help: <mailto:cfrg-request@irtf.org?subject=help>
List-Subscribe: <https://www.irtf.org/mailman/listinfo/cfrg>, <mailto:cfrg-request@irtf.org?subject=subscribe>
X-List-Received-Date: Fri, 15 Feb 2019 11:33:36 -0000

Hi all,


NIST is requesting comments on protection guidance of the OTS private key re-use (mis-use) issue and on usage restrictions of hash-based signatures.


Please check the link below for more information.


https://www.nist.gov/news-events/news/2019/02/request-public-comments-stateful-hash-based-signatures-hbs


Regards,

Quynh.
<https://www.nist.gov/news-events/news/2019/02/request-public-comments-stateful-hash-based-signatures-hbs>

Request for Public Comments on Stateful Hash-Based Signatures (HBS) | NIST<https://www.nist.gov/news-events/news/2019/02/request-public-comments-stateful-hash-based-signatures-hbs>
www.nist.gov
Summary. NIST is requesting public comments on the intended approval of LMS and XMSS as stateful hash-based signature (HBS) schemes. Questions for consideration and instructions for providing comments by April 1, 2019 are included at the bottom of this notice.