IETF Logo Mail Archive

Re: [COSE] draft-prorock-cose-post-quantum-signatures [Was: Re: Call for COSE Agenda Items for IETF 113 in Vienna]

Mike Prorock <mprorock@mesur.io> Tue, 08 March 2022 19:37 UTC

Return-Path: <mprorock@mesur.io>
X-Original-To: cose@ietfa.amsl.com
Delivered-To: cose@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6D5EC3A1317 for <cose@ietfa.amsl.com>; Tue, 8 Mar 2022 11:37:15 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.908
X-Spam-Level:
X-Spam-Status: No, score=-1.908 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_BLOCKED=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=mesur-io.20210112.gappssmtp.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id dbwpKqtKxm0C for <cose@ietfa.amsl.com>; Tue, 8 Mar 2022 11:37:13 -0800 (PST)
Received: from mail-vs1-xe36.google.com (mail-vs1-xe36.google.com [IPv6:2607:f8b0:4864:20::e36]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id AC6543A12C9 for <cose@ietf.org>; Tue, 8 Mar 2022 11:37:09 -0800 (PST)
Received: by mail-vs1-xe36.google.com with SMTP id b190so7530181vsc.4 for <cose@ietf.org>; Tue, 08 Mar 2022 11:37:09 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=mesur-io.20210112.gappssmtp.com; s=20210112; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=7SvQtvqf4iCGfReAj08GYTDzhDPabTWoQ3YtTcQDDK8=; b=46eANakQv3XO7HmoPBH2nYaRUK5x7c5/nWnvXoewPyvSCajkiPepuShsPIM7h0OJUG NUSSGFVwTIjFshFLY+6+qA9cRBVB8pv2iIuPqisfALYpxVloX8sOENPztl7b+8iCDKDH 8EKSVhe7JdhwEZ/ZRwysmR+U9YizYhkvuP86wtdeK2YR2PIWipnlAMk7YIzqQVm50iNP kju9FUWzCC+yK+fOQNctvbtzW3LTuEvv0Qmu6yQg2wQoc7/r1HJreJyMjogTCFx9lpF5 y4wI4A9w+l7ow85IXfgwj5bED/FsQa2/tRCN5eXOAi9NRTgbeNs+cAtcDr87casKkM0J gbGA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=7SvQtvqf4iCGfReAj08GYTDzhDPabTWoQ3YtTcQDDK8=; b=jsEtmpKoDzQz4qM9PMMZN2A+TX+A13yWKJBfx0EYoDLdpM776dRVs8veVc1IefgnW5 c/YEsLcT+lA33KxzJVLVIGMn1qcDqjNG4nK7qeSyOukJWlPAg6iKrfnEr2YaSqs8P5K1 c4hu+CpyOEdvKLtebn47bi8if9Hrc/IwAFHCKSR81bdfTlrIb9nZSo0l2fYfamVRenR9 Gqq6EyrvX5DWlTlbATsExsIgiQenSGGSks4vY0GhOnXbNRFLk93Bz1PnJ9bJid1tYJx1 1wLsEkEtC6SE6W/2r0cCjAp1cgrIvLx9cqPsvlWAiHR+96rdbBElllnkm3VMHASUvxB/ fBLw==
X-Gm-Message-State: AOAM531aD7trL9M2ufCapl79H59vWgX3lo8e2VBLXWTaBXJctA71W/U3 3N2jw7yzN63cmQW3iaF2AxgYm6L705fiWbC/dRtT
X-Google-Smtp-Source: ABdhPJzSPj/+cSQHlWRCi93GekO9VHllpT6TN3mIiXOITKz0W+A4pb75H+gI5W/6gOjVqtQjD3Nf7UBrWjv2cqQJBuk=
X-Received: by 2002:a67:3397:0:b0:320:a63a:7144 with SMTP id z145-20020a673397000000b00320a63a7144mr5966600vsz.75.1646768228128; Tue, 08 Mar 2022 11:37:08 -0800 (PST)
MIME-Version: 1.0
References: <CAGJKSNSzuw7i2BXAw6DPQjTN7ujZiKPvU+o+N-agTLrSeRCUCw@mail.gmail.com> <YieQ4g30tZAK0uRL@LK-Perkele-VII2.locald> <4b0c9e4a-c4b7-80b6-382e-1a76311cc543@gmail.com>
In-Reply-To: <4b0c9e4a-c4b7-80b6-382e-1a76311cc543@gmail.com>
From: Mike Prorock <mprorock@mesur.io>
Date: Tue, 8 Mar 2022 14:36:57 -0500
Message-ID: <CAGJKSNSuvmTWBkFPk-at3bZn57Y_VH6CoNx3VEwbQx37MeL8SQ@mail.gmail.com>
To: Anders Rundgren <anders.rundgren.net@gmail.com>
Cc: Ilari Liusvaara <ilariliusvaara@welho.com>, cose@ietf.org, Orie <orie@transmute.industries>
Content-Type: multipart/alternative; boundary="00000000000043f0d805d9ba1bb8"
Archived-At: <https://mailarchive.ietf.org/arch/msg/cose/oJ3fxGbGH04rHqlSO0l1TzLSK6g>
Subject: Re: [COSE] draft-prorock-cose-post-quantum-signatures [Was: Re: Call for COSE Agenda Items for IETF 113 in Vienna]
X-BeenThere: cose@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: CBOR Object Signing and Encryption <cose.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/cose>, <mailto:cose-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/cose/>
List-Post: <mailto:cose@ietf.org>
List-Help: <mailto:cose-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/cose>, <mailto:cose-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 08 Mar 2022 19:37:16 -0000

>
> I believe most people (in retrospect) have rather come to the conclusion
> that polymorphic algorithms were a mistake.
>

+1 - that seems to be something that folks are finding out

Where the actual "kty" shakes out as we continue to improve the draft is
yet to be seen.  "PQK" made sense at the time as this is dealing with post
quantum keys and signatures - just as easily we could be looking at two key
types, probably by family - e.g. one for lattice based, and one for hash
based signatures, or could just as easily be "OKP" - we opened an issue to
track that here:
https://github.com/mesur-io/post-quantum-signatures/issues/48
and will discuss on our next call.

This is exactly why we wanted the broader input from the COSE WG

v2.8.7 | Report a Bug | By Email