Re: [Crypto-panel] Request for review: draft-ribose-openpgp-oscca-01

"Stanislav V. Smyshlyaev" <smyshsv@gmail.com> Wed, 29 November 2017 13:23 UTC

Return-Path: <smyshsv@gmail.com>
X-Original-To: crypto-panel@ietfa.amsl.com
Delivered-To: crypto-panel@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 28C6D126C3D for <crypto-panel@ietfa.amsl.com>; Wed, 29 Nov 2017 05:23:45 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.999
X-Spam-Level:
X-Spam-Status: No, score=-1.999 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id YKBTyBEduV88 for <crypto-panel@ietfa.amsl.com>; Wed, 29 Nov 2017 05:23:41 -0800 (PST)
Received: from mail-qt0-x22c.google.com (mail-qt0-x22c.google.com [IPv6:2607:f8b0:400d:c0d::22c]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 99301126B71 for <crypto-panel@irtf.org>; Wed, 29 Nov 2017 05:23:41 -0800 (PST)
Received: by mail-qt0-x22c.google.com with SMTP id w10so4224103qtb.10 for <crypto-panel@irtf.org>; Wed, 29 Nov 2017 05:23:41 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=1vC67Q0dWDxmsMbXx3HTBAHHZ8ksrL9fRSTCetZOy2o=; b=JUq9fTjbVPBE9Y26HIfGd2yKkvoXcVjLllRqiSjDucMCRg4kQckOVrySOaUfUkJvBS rNEWly8Ag68kJE1Vl1fhiPs6vP8eGJ/Jn5ZIfwBvBuU+HR3A8ZrYIE/G8jHAXgnCPYZU kNesb6kUZHL4xixJJsocZCrEMZfERGjxLXAyWXw2GnLmB+MjZjmH4lZ6e3KurR7/jcQ3 FDEd4YBP3Rk3QKNg2jHZWwWyQxTB4aLjPGd0O0mQ6Maj8r7HdN8lyweZSGV5zq6FjN/5 woXlvhnUEMt1gcgp+jLDwxex9VUZNlf04A8+izSYnBYB/wn3mhoUgv1nNiJZ52n4jL9T HnPA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc; bh=1vC67Q0dWDxmsMbXx3HTBAHHZ8ksrL9fRSTCetZOy2o=; b=XWTUokt1t6gxQ1k3GVjSJcMDMxqbl8gy43giIMoeAxWW4Hal8MRh0prT1Ih/da3MYz YiA1COJLsx1oBLOXPXlEurTRezq16Bxv0V6gM0ajAsjKlu2Vtsf5VnGCfo//9xU2AbzD KID5InTDrDxtX+DwJJ6RtGPX5jDyQE/AJ+a81LpIcfvH1zgxwSlneeMAFDaTgL1iyAS/ VT9Gb0+pYoJz9gMzs4NvJjalseTAYpUlZ5GO3k4JpTr5QUgj3jr1bw/yXR5CDAFylbPb FDwLI8+X0LHWfdl+vvZCqFl4lJuBQHUUNqXlkIVpnk3L7HJPjxIldvsIIGkiEs44QPWb ckvA==
X-Gm-Message-State: AJaThX4ZvBZFcLrGZTmw1WGLFemBmYGehmdMbs/Mi9jS4noVExLh9Jbv DFsTdqQPNyNeVHGfNPlMim0Guwxuo4NvEtilNi0=
X-Google-Smtp-Source: AGs4zMaTWYU5c6+wTzsrdPu0VBvsgg8s3X/z0JqM9L/2evt4ukOM6aHyWbgFtShNq1H01zRst3ngICI6lf+Gxny45Yc=
X-Received: by 10.200.46.149 with SMTP id h21mr1509795qta.73.1511961820695; Wed, 29 Nov 2017 05:23:40 -0800 (PST)
MIME-Version: 1.0
Received: by 10.12.142.139 with HTTP; Wed, 29 Nov 2017 05:23:40 -0800 (PST)
In-Reply-To: <087A0995-B344-4CBE-B300-D2431F1E5552@ribose.com>
References: <56db317a-07ad-0ad4-b1d1-31f12283115e@isode.com> <CAMr0u6nk5xo18Y93uWXKvXsbKX8o7pVx-MWrumvQnkYERPgbpw@mail.gmail.com> <E6993497-43A6-4CB2-866E-D5AF55E1D168@ribose.com> <CAMr0u6kk4HDKUKJqt3WPjO3jX+B4BoiidTQvdr7k7TLDqcG0-A@mail.gmail.com> <087A0995-B344-4CBE-B300-D2431F1E5552@ribose.com>
From: "Stanislav V. Smyshlyaev" <smyshsv@gmail.com>
Date: Wed, 29 Nov 2017 16:23:40 +0300
Message-ID: <CAMr0u6kCzMeZgLALSoWxggMH6A=ou9U05umFLHGvT6MLdeSwng@mail.gmail.com>
To: Ronald Tse <tse@ribose.com>
Cc: Alexey Melnikov <alexey.melnikov@isode.com>, "crypto-panel@irtf.org" <crypto-panel@irtf.org>, Nancy Cam-Winget <ncamwing@cisco.com>, "draft-ribose-openpgp-oscca.authors@ietf.org" <draft-ribose-openpgp-oscca.authors@ietf.org>, Tim Polk <tim.polk@nist.gov>
Content-Type: multipart/alternative; boundary="001a11c012763c9114055f1f0bbb"
Archived-At: <https://mailarchive.ietf.org/arch/msg/crypto-panel/UlzMb6a8bpV0PlckefQrizUeKJg>
Subject: Re: [Crypto-panel] Request for review: draft-ribose-openpgp-oscca-01
X-BeenThere: crypto-panel@irtf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: <crypto-panel.irtf.org>
List-Unsubscribe: <https://www.irtf.org/mailman/options/crypto-panel>, <mailto:crypto-panel-request@irtf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/crypto-panel/>
List-Post: <mailto:crypto-panel@irtf.org>
List-Help: <mailto:crypto-panel-request@irtf.org?subject=help>
List-Subscribe: <https://www.irtf.org/mailman/listinfo/crypto-panel>, <mailto:crypto-panel-request@irtf.org?subject=subscribe>
X-List-Received-Date: Wed, 29 Nov 2017 13:23:45 -0000

Dear Ronald,

Thank you very much for the links!
The review is conducted by Crypto Review Panel, thus the analysis is being
done more from the cryptographic perspective, and the current state of the
analysis of the proposed mechanisms is taken into account.

Best regards,
Stanislav


2017-11-28 19:28 GMT+03:00 Ronald Tse <tse@ribose.com>om>:

> Dear Stanislav,
>
> You are absolutely right. Here are the IETF drafts of SM2, SM3 and SM4
> (they are referred to within this draft, too):
>
> SM2: https://tools.ietf.org/html/draft-shen-sm2-ecdsa-02
> SM3: https://tools.ietf.org/html/draft-oscca-cfrg-sm3-02
> SM4: https://tools.ietf.org/html/draft-ribose-cfrg-sm4-05
>
> The SM3 and SM4 drafts contain both a design rationale and a cryptanalysis
> section. Specifically, the cryptanalysis section contain bibliography
> references with links to research publications of the latest cryptanalysis
> results (English + Chinese). Most of these results are freely available in
> English (Google Scholar).
>
> As a matter of fact, we are currently updating the SM2 draft to provide
> the same level of detail as the other two.
>
> I’d just like to clarify that the current review is purely on the OpenPGP
> side of things. That said, we have previously requested a CFRG review of
> the SM4 draft too, so if you have some time to review that draft, it would
> be even more awesome :-)
>
> Hope this helps!
>
> Kind regards,
> Ron
>
> _____________________________________
>
> Ronald Tse
> Ribose Inc.
>
> On Nov 29, 2017, at 12:08 AM, Stanislav V. Smyshlyaev <smyshsv@gmail.com>
> wrote:
>
> Dear Ronald,
>
> Since the document is dedicated to the algorithms and elliptic curve
> parameters, it would be very helpful if you could point at papers with
> their analysis in English, if some of them are not publicly available (or
> could not be easily found via public resources). Also, it will be extremely
> important if you could provide some materials with design rationale of the
> algorithms and parameters presented in the I-D.
>
> Of course, full cryptanalysis from a scratch is impossible to be made as a
> part of review, so all known results/attacks/notes on design
> rationale/results of evaluation of curve parameters will be very important
> for making the review(s) as objective as possible.
>
> Best regards,
> Stanislav Smyshlyaev, Ph.D.
> Head of Information Security Department,
> CryptoPro LLC
>
>
>
> 2017-11-28 18:47 GMT+03:00 Ronald Tse <tse@ribose.com>om>:
>
>> Dear Stanislav,
>>
>> Thank you very much for performing the review. Look forward to it!
>>
>> Kind regards,
>> Ron
>>
>> _____________________________________
>>
>> Ronald Tse
>> Ribose Inc.
>>
>> On Nov 28, 2017, at 11:21 PM, Stanislav V. Smyshlyaev <smyshsv@gmail.com>
>> wrote:
>>
>> Dear Alexey,
>>
>> I'll be happy to do this.
>>
>> Will it be OK, if I provide a review by the 20th of December?
>>
>> Best regards,
>>
>> Stanislav
>>
>>
>> 2017-11-28 17:02 GMT+03:00 Alexey Melnikov <alexey.melnikov@isode.com>om>:
>>
>>> Dear Crypto Panel,
>>>
>>> SAAG’s SECDISPATCH chairs have requested review of
>>> <https://datatracker.ietf.org/doc/draft-ribose-openpgp-oscca/>
>>> before the document fate will be decided (it is likely to end up in the
>>> CURDLE WG).
>>>
>>> Can we have some volunteer(s) please?
>>>
>>> The draft Abstract is:
>>>
>>>    This document enables OpenPGP (RFC4880) usage in an compliant manner
>>>    with OSCCA (Office of State Commercial Cipher Administration)
>>>    regulations for use within China.
>>>
>>>    Specifically, it extends OpenPGP to support the usage of SM2, SM3 and
>>>    SM4 algorithms, and provides the OSCCA-compliant OpenPGP profile
>>>    "OSCCA-SM234".
>>>
>>>
>>> Thank you,
>>> Alexey
>>>
>>> _______________________________________________
>>> Crypto-panel mailing list
>>> Crypto-panel@irtf.org
>>> https://www.irtf.org/mailman/listinfo/crypto-panel
>>>
>>
>>
>>
>
>