IETF Logo Mail Archive

Re: [Crypto-panel] Stage 5 of PAKE selection process

"Stanislav V. Smyshlyaev" <smyshsv@gmail.com> Mon, 23 September 2019 18:20 UTC

Return-Path: <smyshsv@gmail.com>
X-Original-To: crypto-panel@ietfa.amsl.com
Delivered-To: crypto-panel@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 672ED1208E5 for <crypto-panel@ietfa.amsl.com>; Mon, 23 Sep 2019 11:20:30 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.998
X-Spam-Level:
X-Spam-Status: No, score=-1.998 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 6qH--Fu4ERzW for <crypto-panel@ietfa.amsl.com>; Mon, 23 Sep 2019 11:20:27 -0700 (PDT)
Received: from mail-lj1-x236.google.com (mail-lj1-x236.google.com [IPv6:2a00:1450:4864:20::236]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 3EC03120958 for <crypto-panel@irtf.org>; Mon, 23 Sep 2019 11:20:27 -0700 (PDT)
Received: by mail-lj1-x236.google.com with SMTP id l21so14712941lje.4 for <crypto-panel@irtf.org>; Mon, 23 Sep 2019 11:20:27 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=wtGqGeOUuQCUEE8PRx1q2wYfardWP/jsio/GyltOzls=; b=iX9ETCX45LMTNxjifEY5OUA4uShNABHyA4qZdDluxQn7Rcv94p+hbdYEFWZG1MmMwG CvjK+abAHTj2VfmbAAWeV66PFg44GjpefGpAdBRqe+GjEaVvedxYiNzKlvN47Xg/Ciqy zq4OKl87z/iXx5EG/xvxmwQF9jR6wXzac6fdHAd+j97R/ZJVVXQUUfTQhbNQaDm5erZ0 9FyjorBFHu+gNHQFRfI2BW+ppiGWhNSX3IfJ2wPiMnGy8KdhmYA+tJMJPc4LTA7JuKre /IjXAFUVoZW+iwRw5ly0XYmrrJLIXrqzSJjj/pZXTEWT4cJEjgv4Rwad2Bf6nnYfD5/p Dakw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=wtGqGeOUuQCUEE8PRx1q2wYfardWP/jsio/GyltOzls=; b=S8o662n7FEg06WXSgRb22gLXxnsZ1LJn9z5pVwksxG3xvGWtNdjUv7ls6eicUrj1te PI2EsF9Ewnps/xTRnoZva34gTBMIShCAB/dyZYeJ4CxDmLKHVULOdj9N8orl5xNLOKpk 4JaQ5PXqz+mBPOVTbIP6YikF11m9EzTiR6+iD0Z4UVWrk0P0LJoJliXYMV729l+XhKgi cX8hUsaZnTL1BdRs83OlQht9Tbe2jTwOE+nqSmWZFLD4uZnhqb4t0jSf2Usq82iMk2aM 38KQbZsZJg2uVolEvk6JiHTGWBYQm360dXykAJeDb5+R/yJ/8FxowwaG5TToUMvmtSPx Lbdg==
X-Gm-Message-State: APjAAAWmi77tHVS/QhEEhFIPDiH8tkmX5Z2hF2Jf4fGLAakAMhcNIy8/ TG2WeXFF7ULXQs70YzWYF/4bAAGJw2S5r8N7318=
X-Google-Smtp-Source: APXvYqwBhRjEImrc2U/XHVUxWPk9ytBlkQ7BQFsOaIqu7bRCi6M8PirVDhheEQwMIMlgpRZ3bdo7XxsjkrO2SvbEuQA=
X-Received: by 2002:a2e:6586:: with SMTP id e6mr391062ljf.115.1569262825320; Mon, 23 Sep 2019 11:20:25 -0700 (PDT)
MIME-Version: 1.0
References: <CAMr0u6kNUPCMTm2Y37Q0y4pt-PPneKJYb07dxuiF9g33Qj3f_Q@mail.gmail.com> <83FAAC9C-A56C-43FC-BD68-5E1DB0794D7E@vigilsec.com> <31D078E7-08CD-46F5-AF97-6F2450C5934A@gmail.com>
In-Reply-To: <31D078E7-08CD-46F5-AF97-6F2450C5934A@gmail.com>
From: "Stanislav V. Smyshlyaev" <smyshsv@gmail.com>
Date: Mon, 23 Sep 2019 21:20:14 +0300
Message-ID: <CAMr0u6k_VW=2rb+x1CTmcjCMUr-gs2pcCPdZH5RpKdJYXFJkfw@mail.gmail.com>
To: Yaron Sheffer <yaronf.ietf@gmail.com>
Cc: Russ Housley <housley@vigilsec.com>, crypto-panel@irtf.org
Content-Type: multipart/alternative; boundary="00000000000043345a05933c795f"
Archived-At: <https://mailarchive.ietf.org/arch/msg/crypto-panel/lw8smUY1cfmYeP7MfyeKZfgzKIk>
Subject: Re: [Crypto-panel] Stage 5 of PAKE selection process
X-BeenThere: crypto-panel@irtf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: <crypto-panel.irtf.org>
List-Unsubscribe: <https://www.irtf.org/mailman/options/crypto-panel>, <mailto:crypto-panel-request@irtf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/crypto-panel/>
List-Post: <mailto:crypto-panel@irtf.org>
List-Help: <mailto:crypto-panel-request@irtf.org?subject=help>
List-Subscribe: <https://www.irtf.org/mailman/listinfo/crypto-panel>, <mailto:crypto-panel-request@irtf.org?subject=subscribe>
X-List-Received-Date: Mon, 23 Sep 2019 18:20:31 -0000

Dear Russ and Yaron,

The security proof reviews were intended only to provide input information
for the Crypto Review Members, who are intended to provide overall reviews
- thus no PAKEs were dropped in any sense.

In the PAKE selection process description it is assumed that during Stage 5
overall reviews are prepared with recommendations (of any kind) - and we
have an option that after overall reviews (conducted by the Crypto Review
Panel members) the CFRG chairs are not able to come to a decision. In that
case at IETF 106 meeting we’ll have a revision of the process (and decide
what to do next).

In any case, after a PAKE (or two PAKEs...) is selected, the process of
working on a CFRG document on Recommendations for PAKEs in IETF protocols
will only start - and then all minor things (like options, parameters,
implementation recommendations, etc.) can be handled.

So, in my personal opinion, at the current stage we need to reflect the
current understanding of pros and cons of each nominated PAKE - and then
we’ll see whether this allows the chairs to make any decision (and move to
specifying the winning PAKE in the CFRG document, taking into account all
known issues) - or continue the process of selection in some way.

Best regards,
Stanislav


пн, 23 сент. 2019 г. в 21:03, Yaron Sheffer <yaronf.ietf@gmail.com>:

> The CPace/AuCPace paper was updated “in place” (in the IACR ePrint repo)
> since the process started. Also, Hugo hinted that OPAQUE needs to be
> updated, not the base protocol but some of the options.
>
>
>
> *From: *Crypto-panel <crypto-panel-bounces@irtf.org> on behalf of Russ
> Housley <housley@vigilsec.com>
> *Date: *Monday, 23 September 2019 at 20:05
> *To: *"Stanislav V. Smyshlyaev" <smyshsv@gmail.com>
> *Cc: *<crypto-panel@irtf.org>
> *Subject: *Re: [Crypto-panel] Stage 5 of PAKE selection process
>
>
>
> Stanislav:
>
>
>
> I just want to make sure that I understand.  Is it correct that none of
> the algorithms is being dropped or revised based on the proof analysis?
>
>
>
> Russ
>
>
>
>
>
> On Sep 20, 2019, at 12:23 PM, Stanislav V. Smyshlyaev <smyshsv@gmail.com>
> wrote:
>
>
>
> Dear Bjoern, Scott, Russ, Yaron, Tibor (and myself :) ),
>
>
>
> Many thanks again for volunteering to provide overall reviews for the
> nominated PAKEs on behalf of the Crypto Review Panel.
>
>
>
> According to the PAKE selection process plan, at Stage 5 Crypto Review
> Panel members write overall reviews for all candidate PAKEs, based on the
> materials that have been gathered and verified. According to the plan,
> Stage 5 will last until October, 30th.
>
>
>
> Those materials (including all partial reviews) have been gathered (many
> thanks, Yaron!) here: https://github.com/cfrg/pake-selection
>
>
>
> Best regards,
>
> Stanislav,
>
> CFRG secretary
>
> _______________________________________________
> Crypto-panel mailing list
> Crypto-panel@irtf.org
> https://www.irtf.org/mailman/listinfo/crypto-panel
>
>
>
> _______________________________________________ Crypto-panel mailing list
> Crypto-panel@irtf.org https://www.irtf.org/mailman/listinfo/crypto-panel
>
-- 

С уважением,

Станислав Смышляев, к.ф.-м.н.,

Заместитель генерального директора

ООО «КРИПТО-ПРО»

v2.23.0 | Report a Bug | By Email