IETF Logo Mail Archive

[CFRG] Re: Progressing NTRUPrime/Classic McEliece drafts

Loganaden Velvindron <loganaden@gmail.com> Mon, 27 January 2025 09:16 UTC

Return-Path: <loganaden@gmail.com>
X-Original-To: cfrg@ietfa.amsl.com
Delivered-To: cfrg@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 44144C151068 for <cfrg@ietfa.amsl.com>; Mon, 27 Jan 2025 01:16:30 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.109
X-Spam-Level:
X-Spam-Status: No, score=-2.109 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ShFRo44l6DKH for <cfrg@ietfa.amsl.com>; Mon, 27 Jan 2025 01:16:29 -0800 (PST)
Received: from mail-oa1-x2e.google.com (mail-oa1-x2e.google.com [IPv6:2001:4860:4864:20::2e]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D21D2C14F6F4 for <cfrg@irtf.org>; Mon, 27 Jan 2025 01:16:29 -0800 (PST)
Received: by mail-oa1-x2e.google.com with SMTP id 586e51a60fabf-29fb532b668so1303691fac.0 for <cfrg@irtf.org>; Mon, 27 Jan 2025 01:16:29 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20230601; t=1737969388; x=1738574188; darn=irtf.org; h=content-transfer-encoding:cc:to:subject:message-id:date:from :in-reply-to:references:mime-version:from:to:cc:subject:date :message-id:reply-to; bh=eg2Xh6yl/2WiU8M9KI9gD6FMwlDKjREgTWsI57io70I=; b=OO9r5inmJSwlwG9dU6+q6Tm1TDOEG1c/Wm9+gR5RJGVuf453XAOUvV7jm2doLGmPIB LvKejEPMvI/I0OLeCwPKd+dFyqbhy8Iqvw7NzHck069KCzWCWAtHlC4Cnv5cIKUT65H6 bM16/HCRSH+nKhZONAwwBDjS9bVMl5RUip5uADD4cf5Iuc6ohHg5cw81jfkjwGMsftbx BXb3rAPnNTAtvLMgdILQDHHT/WPdTqT+0QH/x/Peq7/7YS71KyNtE3r75ynGqbtf0rRH hdYylj+RnEyKrwYjWFcLfcQ2PMyXzlxoDrS5ejSeI/IuWusF3HlxHQQn7P2uTOTN0wei 8rBQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1737969388; x=1738574188; h=content-transfer-encoding:cc:to:subject:message-id:date:from :in-reply-to:references:mime-version:x-gm-message-state:from:to:cc :subject:date:message-id:reply-to; bh=eg2Xh6yl/2WiU8M9KI9gD6FMwlDKjREgTWsI57io70I=; b=ZpeKaITtT+r+eEo5+JHO5Wt1wBKz/nSBnHhJeCnMrNLDR1xIm/YudcUHXxBEO0r7qL gLPAmlL9gU9v/x68v88ks3nt2O+sHxcy4IqkGxqfsxf5KdVMhFKgURzVkB11TZGsJc54 Kz3HAHTlPSO0S8G9VIseoz08oYhYjWcEAvW9pdv+e1D/jc1eEOgfT3GPh3TeozUmG17W BvoExqoMbJv9qwkyKpEbXVafob7kxiz8cIOu9t5iiMoUkjKa+35IWIa5YV0gPgTb4/gY zbH1B5C1VFNSsvOY/o8XQ4eota1YRX6Txa/NyCMUG6Ug0BjEGUkLs/ujqFbISNMPvH2X jE1Q==
X-Forwarded-Encrypted: i=1; AJvYcCWWeoVcn1o1tZWzhivNSyi3i69anwN0sTd1cRMqzsuqWIMI3ZGVE31jGvzUETP3DCC/xtnT@irtf.org
X-Gm-Message-State: AOJu0Yw+/1LsFA1nzU4YABTxxBnXknn/V0/oht1sq1Ot3cOr11f6NajP TGLWHGS8DraXQSMROG/nCzCFpWf6iMWdndzbEYC+AzrzHZWwKmodrtFNgk3yf9aRmNJIvm4wt9Y xXRpTx8yMii1N1LdI3WWeTP0iTrA=
X-Gm-Gg: ASbGncu0RFseOBkzaVeosZEue60BmUP2dJfw+ESo6NIYpMp76UEUj+6WAYKVJIS8OGt VSelJ4GCusyyr4M4vjSHjDnXDN/qDDoI9Hlgx/Rhua9J+v4AWkt7h4QaXCVqGuvsZUtmE4PAm4t xLY0EQHQJ5OTEq9Lk=
X-Google-Smtp-Source: AGHT+IFx4aR827yg1xBsy1urLakCjZznzMV4pzHNR7KmryucTvY87mliaLvtpfI0l8LW5CIxBZskXjDTMUzJMC8ZBNg=
X-Received: by 2002:a05:6871:4608:b0:2b1:8a87:a0e5 with SMTP id 586e51a60fabf-2b1c0927f09mr21386213fac.16.1737969388462; Mon, 27 Jan 2025 01:16:28 -0800 (PST)
MIME-Version: 1.0
References: <CACsn0cnJ7TgnCp1GsSnRfJCY1rt+t2BBSadm0YkDM8tuL-pE+A@mail.gmail.com> <CAOp4FwR_E4hky7RehU4c1rsy1tFxDgUTfKRRuj3NxWBThC3sow@mail.gmail.com> <CABzBS7kLoP7U=EpQmotCQntASFGcrLXpnSuTQ3i18W-W8Hf5QA@mail.gmail.com>
In-Reply-To: <CABzBS7kLoP7U=EpQmotCQntASFGcrLXpnSuTQ3i18W-W8Hf5QA@mail.gmail.com>
From: Loganaden Velvindron <loganaden@gmail.com>
Date: Mon, 27 Jan 2025 13:16:15 +0400
X-Gm-Features: AWEUYZlJUZhWnMWys95RrePQHADMrmYT-jz_GaaTl0dAdmr0tKk34xHWOqngVvI
Message-ID: <CAOp4FwRgTkWtW3iVmLw0ZDD0xPfgLnSX5HQAPSRKhnJ+jwNr0Q@mail.gmail.com>
To: Thom Wiggers <thom@thomwiggers.nl>
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
Message-ID-Hash: FWPT673JRN3TDA5PC4TEZXYR3G6HVJIO
X-Message-ID-Hash: FWPT673JRN3TDA5PC4TEZXYR3G6HVJIO
X-MailFrom: loganaden@gmail.com
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-cfrg.irtf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: CFRG <cfrg@irtf.org>
X-Mailman-Version: 3.3.9rc6
Precedence: list
Subject: [CFRG] Re: Progressing NTRUPrime/Classic McEliece drafts
List-Id: Crypto Forum Research Group <cfrg.irtf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/cfrg/y_prgp9ZTouXuBc9-QaLuZBdlbw>
List-Archive: <https://mailarchive.ietf.org/arch/browse/cfrg>
List-Help: <mailto:cfrg-request@irtf.org?subject=help>
List-Owner: <mailto:cfrg-owner@irtf.org>
List-Post: <mailto:cfrg@irtf.org>
List-Subscribe: <mailto:cfrg-join@irtf.org>
List-Unsubscribe: <mailto:cfrg-leave@irtf.org>

Classic McEliece is useful for VPNs: Mullvad VPN and Rosenpass use it already.
John Mattson also said that Classic McEliece would be adopted inside
his employer's
products.




On Mon, 27 Jan 2025 at 13:04, Thom Wiggers <thom@thomwiggers.nl> wrote:
>
> Hi all,
>
> For Classic McEliece, I think it would be helpful if people come forward with concrete applications in which they're actually wanting/trying to deploy Classic McEliece. I recall that NIST has also repeatedly asked people to come forward about (not-theoretical) use cases, so this discussion may also help them decide if they want to make Classic McEliece a NIST standard or not. The tradeoffs that McEliece presents with its very tiny ciphertext size but massive public keys may make it very difficult to actually deploy (I see that in theory, there may be use cases in which it's the only thing that can be deployed, but I've never really seen that materialize).
>
> Cheers,
>
> Thom
>
>
> Op za 25 jan 2025 om 06:01 schreef Loganaden Velvindron <loganaden@gmail.com>:
>>
>> On Fri, 24 Jan 2025 at 22:54, Watson Ladd <watsonbladd@gmail.com> wrote:
>> >
>> > Dear CFRG,
>> >
>> > Sadly I don't quite have the bandwidth, but I think it would make
>> > sense to progress an NTRUPrime draft and a Classic McEliece draft
>> > here. These algorithms avoid some IPR claims that may apply to Kyber,
>> > and there's plenty of interest in deployment. They also have a fairly
>> > long cryptoanalytic history, being largely unchanged from the original
>> > proposals of many decades ago. Obviously people may want entry ramp
>> > proposals instead, but I think the IPR picture will be less clear.
>> >
>>
>> I would tend to support this. Adopters need alternatives.
>>
>> > Sincerely,
>> > Watson
>> >
>> > --
>> > Astra mortemque praestare gradatim
>> >
>> > _______________________________________________
>> > CFRG mailing list -- cfrg@irtf.org
>> > To unsubscribe send an email to cfrg-leave@irtf.org
>>
>> _______________________________________________
>> CFRG mailing list -- cfrg@irtf.org
>> To unsubscribe send an email to cfrg-leave@irtf.org
>
> _______________________________________________
> CFRG mailing list -- cfrg@irtf.org
> To unsubscribe send an email to cfrg-leave@irtf.org

v2.29.0 | Report a Bug | By Email | System Status