Re: [IPsec] Comment on draft-kampanakis-ml-kem-ikev2

"Kampanakis, Panos" <kpanos@amazon.com> Wed, 31 January 2024 04:11 UTC

Return-Path: <prvs=75388bb08=kpanos@amazon.com>
X-Original-To: ipsec@ietfa.amsl.com
Delivered-To: ipsec@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C4571C151980 for <ipsec@ietfa.amsl.com>; Tue, 30 Jan 2024 20:11:52 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.104
X-Spam-Level:
X-Spam-Status: No, score=-7.104 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H4=0.001, RCVD_IN_MSPIKE_WL=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_NONE=0.001, T_SCC_BODY_TEXT_LINE=-0.01, UNPARSEABLE_RELAY=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=amazon.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id iU_YGzWWqXhj for <ipsec@ietfa.amsl.com>; Tue, 30 Jan 2024 20:11:48 -0800 (PST)
Received: from smtp-fw-80008.amazon.com (smtp-fw-80008.amazon.com [99.78.197.219]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 3B39CC14F73E for <ipsec@ietf.org>; Tue, 30 Jan 2024 20:11:48 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=amazon.com; i=@amazon.com; q=dns/txt; s=amazon201209; t=1706674308; x=1738210308; h=from:to:date:message-id:references:in-reply-to: mime-version:subject; bh=o7RILcQs2x04Q79FLm8nzzBI12/ghffLt4qzV69DEtg=; b=VCK9vg7CLLgPu2u0UUopAgVAKiQKkp5FrBC4jBojjASbP2ZrYjg5/JeA echIImO2Y3GZVseO/DkVyDc7I2tRhSvNr3dgIA9FXKxXFudRQJ5pFfgO+ wk7qKLvFDR9Aec3qS9mwEfXhlW9wO4FDQAcWXyQUC6ztsa9EK9pXVEgjK U=;
X-IronPort-AV: E=Sophos;i="6.05,231,1701129600"; d="scan'208,217";a="62500751"
Thread-Topic: [IPsec] Comment on draft-kampanakis-ml-kem-ikev2
Received: from pdx4-co-svc-p1-lb2-vlan3.amazon.com (HELO smtpout.prod.us-west-2.prod.farcaster.email.amazon.dev) ([10.25.36.214]) by smtp-border-fw-80008.pdx80.corp.amazon.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 31 Jan 2024 04:11:46 +0000
Received: from EX19MTAUWC001.ant.amazon.com [10.0.38.20:31647] by smtpin.naws.us-west-2.prod.farcaster.email.amazon.dev [10.0.48.50:2525] with esmtp (Farcaster) id 6f7d69f7-18e4-422d-8aed-1eecb0aff7e4; Wed, 31 Jan 2024 04:11:46 +0000 (UTC)
X-Farcaster-Flow-ID: 6f7d69f7-18e4-422d-8aed-1eecb0aff7e4
Received: from EX19D001ANA001.ant.amazon.com (10.37.240.156) by EX19MTAUWC001.ant.amazon.com (10.250.64.174) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.2.1118.40; Wed, 31 Jan 2024 04:11:45 +0000
Received: from EX19D001ANA001.ant.amazon.com (10.37.240.156) by EX19D001ANA001.ant.amazon.com (10.37.240.156) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA) id 15.2.1118.40; Wed, 31 Jan 2024 04:11:44 +0000
Received: from EX19D001ANA001.ant.amazon.com ([fe80::4f78:75cd:3117:8055]) by EX19D001ANA001.ant.amazon.com ([fe80::4f78:75cd:3117:8055%5]) with mapi id 15.02.1118.040; Wed, 31 Jan 2024 04:11:44 +0000
From: "Kampanakis, Panos" <kpanos@amazon.com>
To: "Bruckert, Leonie" <Leonie.Bruckert@secunet.com>, "ipsec@ietf.org" <ipsec@ietf.org>
Thread-Index: AdpTbguY61E/A+nBR8OJo8KotVdreQAjXPcw
Date: Wed, 31 Jan 2024 04:11:44 +0000
Message-ID: <e76e4c34353942e988eda569eca9c4da@amazon.com>
References: <652d3010673246d7846fb6042e44d4d9@secunet.com>
In-Reply-To: <652d3010673246d7846fb6042e44d4d9@secunet.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [10.37.240.172]
Content-Type: multipart/alternative; boundary="_000_e76e4c34353942e988eda569eca9c4daamazoncom_"
MIME-Version: 1.0
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipsec/O3x1nImPaTK-d6MRaOGjFrqYZZs>
Subject: Re: [IPsec] Comment on draft-kampanakis-ml-kem-ikev2
X-BeenThere: ipsec@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Discussion of IPsec protocols <ipsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipsec>, <mailto:ipsec-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipsec/>
List-Post: <mailto:ipsec@ietf.org>
List-Help: <mailto:ipsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipsec>, <mailto:ipsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 31 Jan 2024 04:11:52 -0000

Thx Leonie. Good idea. Will do. I will align the text a bit with the terminology draft.

From: IPsec <ipsec-bounces@ietf.org> On Behalf Of Bruckert, Leonie
Sent: Tuesday, January 30, 2024 6:40 AM
To: ipsec@ietf.org
Subject: [EXTERNAL] [IPsec] Comment on draft-kampanakis-ml-kem-ikev2


CAUTION: This email originated from outside of the organization. Do not click links or open attachments unless you can confirm the sender and know the content is safe.


Thanks for setting up this draft!

Have you considered to align terminology with draft-ietf-pquip-pqt-hybrid-terminology? It defines a "PQ/T Hybrid Key Encapsulation Mechanism" as a "multi-algorithm KEM made up of two or more component KEM algorithms where at least one is a post-quantum algorithm and at least one is a traditional algorithm". This definition may not perfectly match how a hybrid KEM is done in IKEv2 as it is a sequential approach. However, I think it would be good to have a reference to the terminology draft.

Leonie