IETF Logo Mail Archive

Re: [IPsec] Further thoughts on draft-flutter-qr-ikev2 as an IPsecME WG document

"Paul Hoffman" <paul.hoffman@vpnc.org> Sun, 03 July 2016 19:59 UTC

Return-Path: <paul.hoffman@vpnc.org>
X-Original-To: ipsec@ietfa.amsl.com
Delivered-To: ipsec@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 23DB7127071 for <ipsec@ietfa.amsl.com>; Sun, 3 Jul 2016 12:59:58 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id SsqHd3FwxBRY for <ipsec@ietfa.amsl.com>; Sun, 3 Jul 2016 12:59:56 -0700 (PDT)
Received: from mail.proper.com (Opus1.Proper.COM [207.182.41.91]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 98C0E126B6D for <ipsec@ietf.org>; Sun, 3 Jul 2016 12:59:56 -0700 (PDT)
Received: from [10.32.60.33] (142-254-101-201.dsl.dynamic.fusionbroadband.com [142.254.101.201]) (authenticated bits=0) by mail.proper.com (8.15.2/8.14.9) with ESMTPSA id u63JxmlE039362 (version=TLSv1 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Sun, 3 Jul 2016 12:59:49 -0700 (MST) (envelope-from paul.hoffman@vpnc.org)
X-Authentication-Warning: mail.proper.com: Host 142-254-101-201.dsl.dynamic.fusionbroadband.com [142.254.101.201] claimed to be [10.32.60.33]
From: Paul Hoffman <paul.hoffman@vpnc.org>
To: Paul Wouters <paul@nohats.ca>
Date: Sun, 03 Jul 2016 12:59:47 -0700
Message-ID: <8D922896-8B9D-4A8C-A2E9-81646D620715@vpnc.org>
In-Reply-To: <985E4A9D-D5BD-430B-BCCC-BE64F804E2AA@nohats.ca>
References: <94FBAD9A-C67D-4B42-BD1B-B6DBACC945C5@icc-uk.com> <985E4A9D-D5BD-430B-BCCC-BE64F804E2AA@nohats.ca>
MIME-Version: 1.0
Content-Type: text/plain; format="flowed"
X-Mailer: MailMate (1.9.4r5234)
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipsec/xh98PAdPbymk0vxkVuPxQAzQjeM>
Cc: "ipsec@ietf.org" <ipsec@ietf.org>, Mark McFadden <MarkMcFadden@icc-uk.com>
Subject: Re: [IPsec] Further thoughts on draft-flutter-qr-ikev2 as an IPsecME WG document
X-BeenThere: ipsec@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: Discussion of IPsec protocols <ipsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipsec>, <mailto:ipsec-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipsec/>
List-Post: <mailto:ipsec@ietf.org>
List-Help: <mailto:ipsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipsec>, <mailto:ipsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 03 Jul 2016 19:59:58 -0000

On 3 Jul 2016, at 11:32, Paul Wouters wrote:

>> On Jul 3, 2016, at 21:08, Mark McFadden <MarkMcFadden@icc-uk.com> 
>> wrote:
>>
>> A number of quantum-resistant asymmetric public key algorithms have 
>> been proposed, e.g. NTRU, NewHope, McEliece, Super-singular isogeny 
>> Diffie-Hellman.
>
> I thought NTRU was patent encumbered? Is that still the case? How 
> about the others you mention?
>
> I agree asking CFRG for help would be a wise decision.

Isn't this kinda off-topic for the thread? I though we were first 
considering "create an IKEv2 extension that mixes in the PSK" as the 
simplest way to get around the "go back to IKEv1" guidance.

--Paul Hoffman

v2.23.0 | Report a Bug | By Email