Re: [jose] [COSE] Fwd: New Version Notification for draft-reddy-cose-jose-pqc-kem-00.txt
AJITOMI Daisuke <ajitomi@gmail.com> Tue, 05 March 2024 14:42 UTC
Return-Path: <ajitomi@gmail.com>
X-Original-To: jose@ietfa.amsl.com
Delivered-To: jose@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A0A6EC151531; Tue, 5 Mar 2024 06:42:47 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.103
X-Spam-Level:
X-Spam-Status: No, score=-2.103 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_BLOCKED=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id vZ3DR8g7Knt1; Tue, 5 Mar 2024 06:42:43 -0800 (PST)
Received: from mail-yw1-x1136.google.com (mail-yw1-x1136.google.com [IPv6:2607:f8b0:4864:20::1136]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A4AB5C1516F3; Tue, 5 Mar 2024 06:42:06 -0800 (PST)
Received: by mail-yw1-x1136.google.com with SMTP id 00721157ae682-607f8894550so40131187b3.1; Tue, 05 Mar 2024 06:42:06 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20230601; t=1709649726; x=1710254526; darn=ietf.org; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:from:to:cc:subject:date:message-id:reply-to; bh=sSg7lP02GgNbzgIxCyQF355Rx2sbp2NDe5jPF8qdN+0=; b=gUi7eYN1KVHEiKmVZGbvZUiymgocJIdMCmiWsfQKqMQdGW9ZXCFHW7jkYdTH2/XIvS uq4inMNj+1BK2YCBkjKS5oDQGS7+npsLS1QTlZ3GT1+nARyhB8Z8b0wctQ1yp5nyZuMp iyf9ccKI12iy0AJgHC8nbqO2M1ZM0wUr5OzteFO+m7fenaU79128CEGd34VXGRBWlO1z 7EPj95rLglTFhDC4CQQKJ/aeOQ3HCxI5mdgnF1u7vZ1b61PaRNIiutNXbSaFeckctvH6 1uxYR686NfAF5aBZEJw0JyLIZSBqyDv8Qokz1xMD9HO+0tcmhGCTpnYobdLVnC1dSqbP XWlg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1709649726; x=1710254526; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:x-gm-message-state:from:to:cc:subject:date:message-id :reply-to; bh=sSg7lP02GgNbzgIxCyQF355Rx2sbp2NDe5jPF8qdN+0=; b=uHNAosJqr85n5VcWNxllYV1LVs/J4F2M7hGs0FJyZjswdPkx2vO79swYyZFhBQ3Ak3 ISDZ3T1bV7eyqpBuiWeUdC3NED3Kx4ngcWS0jo/lOHE/2umFuCAOyGfGJTUaVXnKPmgO 4KkrsoklNCxmonSF/iwFlOwvSx/30/t8SmyGAxUTDo16+mJLKOvg6aXmMbo3VWLiFojh 2IYG/vaJfCUY4kE4wG+tiYOW2ViKdah0/g5deSNYa8haTotCo2oYVM9oEkCOjPq3mI49 6NPJtu5IVnmDhg5DxGs5Tho/+/n83wH2gmbs+cMuTT1jYLKnDyd1VWHualoxSXgPV6vz 0/Sw==
X-Forwarded-Encrypted: i=1; AJvYcCW7E/XFK9IMYlEdMlq4Oashfoyr1m12KrEkv01mLjQlyNHsbU30d/gxu4w2PMNnUX4RgxEdgtbLa2GIetvPZvYnKWsGwkGMnpgXSFxL
X-Gm-Message-State: AOJu0YwPbm2o/CtPM1KzHU3d/iNaYpJMMLcMXsli9QcNMekBdkPwg92Y zdq5Kr9HycIPN/cuvqWesPrMezlf+R5Vk7rKlzmZIRmZru+f3CR/vX5bkhAnUQaJ80N2b77z0DY xULKpa3skGbce984Eb3VExGTcEQ==
X-Google-Smtp-Source: AGHT+IEKpGDHk2AEN9LWT7j9UsxRumyHVT7gSmOjVPHnGmxDIgyNmvwAJAFsZSVKfHiar9hG/l9j3/hwoWhjDMtRdfk=
X-Received: by 2002:a81:c214:0:b0:609:37fe:fb97 with SMTP id z20-20020a81c214000000b0060937fefb97mr12281747ywc.4.1709649725751; Tue, 05 Mar 2024 06:42:05 -0800 (PST)
MIME-Version: 1.0
References: <170944215832.65165.15558599263256086018@ietfa.amsl.com> <CAFpG3gdGiw2wap8C1H+AOWvEn1ewSjmtBmghKKAvNBmXnDmoYg@mail.gmail.com> <CAN8C-_KZifohssn3WoZa6Qn3QMeh0YMya6c8RGa1ZieWgRY9=A@mail.gmail.com>
In-Reply-To: <CAN8C-_KZifohssn3WoZa6Qn3QMeh0YMya6c8RGa1ZieWgRY9=A@mail.gmail.com>
From: AJITOMI Daisuke <ajitomi@gmail.com>
Date: Tue, 05 Mar 2024 23:41:54 +0900
Message-ID: <CAFWvErUpD+p5enboksM1QiPq1ixJnRMi2NM4oyu+_8XQo_f++Q@mail.gmail.com>
To: Orie Steele <orie@transmute.industries>
Cc: tirumal reddy <kondtir@gmail.com>, cose <cose@ietf.org>, JOSE WG <jose@ietf.org>
Content-Type: multipart/alternative; boundary="000000000000980e250612ead804"
Archived-At: <https://mailarchive.ietf.org/arch/msg/jose/puZCBwlJtlPx7zew_5cokZmdWE0>
Subject: Re: [jose] [COSE] Fwd: New Version Notification for draft-reddy-cose-jose-pqc-kem-00.txt
X-BeenThere: jose@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Javascript Object Signing and Encryption <jose.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/jose>, <mailto:jose-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/jose/>
List-Post: <mailto:jose@ietf.org>
List-Help: <mailto:jose-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/jose>, <mailto:jose-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 05 Mar 2024 14:42:47 -0000
> I think we should use HPKE until there is reason not to use it. I agree. Regarding ML-KEM, I was thinking that we should add X-Wing as a PQ/T Hybrid KEM to the list of COSE-HPKE ciphersuites at first. X-Wing: general-purpose hybrid post-quantum KEM https://datatracker.ietf.org/doc/draft-connolly-cfrg-xwing-kem/ Daisuke https://datatracker.ietf.org/doc/draft-connolly-cfrg-xwing-kem/ 2024年3月5日(火) 22:32 Orie Steele <orie@transmute.industries>: > Draft looks very familiar after have spent so much time with HPKE. > > And it would be nice to have at least one pq encryption suite on track for > standardization. > > Having different direct mode alg values for ML-KEM and HPKE that are both > basically telling you to look an enc... Is wasting registry space. > > alg: dir, is sufficient. > > The documents that register the new enc modes can explain why. > > I think it would be better to see ML-KEM suites in HPKE, instead of seeing > duplicates. > > There will also be different security issues, without the HPKE context and > key commiting, etc... > > There will be worse interop with 2 ways to do the same things. > > With hydrids on the horizon... it's a mistake to register hydrids twice... > Once for HPKE and once for standalone. > > I think we should use HPKE until there is reason not to use it. > > Is this draft motivated by implementers who could not use HPKE? > > Are there critical use cases that multiple vendors need to support that > only work without using HPKE? > > OS > > On Tue, Mar 5, 2024, 5:34 AM tirumal reddy <kondtir@gmail.com> wrote: > >> We have published a new draft >> https://www.ietf.org/archive/id/draft-reddy-cose-jose-pqc-kem-00.html, >> that describes the conventions for using Post-Quantum Key Encapsulation >> Mechanisms (PQ-KEMs) within JOSE and COSE. Although this mechanism could >> be used with any PQ-KEM, this document focuses on Module-Lattice-based Key >> Encapsulation Mechanisms (ML-KEMs). >> >> Comments and Suggestions are welcome. >> >> -Tiru >> >> ---------- Forwarded message --------- >> From: <internet-drafts@ietf.org> >> Date: Sun, 3 Mar 2024 at 10:32 >> Subject: New Version Notification for draft-reddy-cose-jose-pqc-kem-00.txt >> To: Tirumaleswar Reddy.K <kondtir@gmail.com>, Aritra Banerjee < >> aritra.banerjee@nokia.com>, Hannes Tschofenig <Hannes.Tschofenig@gmx.net>, >> Hannes Tschofenig <hannes.tschofenig@gmx.net> >> >> >> A new version of Internet-Draft draft-reddy-cose-jose-pqc-kem-00.txt has >> been >> successfully submitted by Tirumaleswar Reddy and posted to the >> IETF repository. >> >> Name: draft-reddy-cose-jose-pqc-kem >> Revision: 00 >> Title: Post-Quantum Key Encapsulation Mechanisms (PQ KEMs) for JOSE >> and COSE >> Date: 2024-03-03 >> Group: Individual Submission >> Pages: 16 >> URL: >> https://www.ietf.org/archive/id/draft-reddy-cose-jose-pqc-kem-00.txt >> Status: https://datatracker.ietf.org/doc/draft-reddy-cose-jose-pqc-kem/ >> HTML: >> https://www.ietf.org/archive/id/draft-reddy-cose-jose-pqc-kem-00.html >> HTMLized: >> https://datatracker.ietf.org/doc/html/draft-reddy-cose-jose-pqc-kem >> >> >> Abstract: >> >> This document describes the conventions for using Post-Quantum Key >> Encapsulation Mechanisms (PQ-KEMs) within JOSE and COSE. >> >> About This Document >> >> This note is to be removed before publishing as an RFC. >> >> Status information for this document may be found at >> https://datatracker.ietf.org/doc/draft-reddy-cose-jose-pqc/. >> >> Discussion of this document takes place on the cose Working Group >> mailing list (mailto:cose@ietf.org), which is archived at >> https://mailarchive.ietf.org/arch/browse/cose/. Subscribe at >> https://www.ietf.org/mailman/listinfo/cose/. >> >> >> >> The IETF Secretariat >> >> >> _______________________________________________ >> jose mailing list >> jose@ietf.org >> https://www.ietf.org/mailman/listinfo/jose >> > _______________________________________________ > COSE mailing list > COSE@ietf.org > https://www.ietf.org/mailman/listinfo/cose >
- [jose] Fwd: New Version Notification for draft-re… tirumal reddy
- Re: [jose] Fwd: New Version Notification for draf… Orie Steele
- Re: [jose] [COSE] Fwd: New Version Notification f… AJITOMI Daisuke
- Re: [jose] [COSE] Fwd: New Version Notification f… Neil Madden
- Re: [jose] Fwd: New Version Notification for draf… Ilari Liusvaara
- Re: [jose] [COSE] Fwd: New Version Notification f… Ilari Liusvaara
- Re: [jose] Fwd: New Version Notification for draf… tirumal reddy
- Re: [jose] [COSE] Fwd: New Version Notification f… tirumal reddy
- Re: [jose] [COSE] Fwd: New Version Notification f… tirumal reddy
- Re: [jose] [COSE] Fwd: New Version Notification f… Ilari Liusvaara
- Re: [jose] [COSE] Fwd: New Version Notification f… tirumal reddy
- Re: [jose] [COSE] Fwd: New Version Notification f… Ilari Liusvaara
- Re: [jose] [COSE] Fwd: New Version Notification f… tirumal reddy
- Re: [jose] [COSE] Fwd: New Version Notification f… Ilari Liusvaara
- Re: [jose] [COSE] Fwd: New Version Notification f… Neil Madden
- Re: [jose] [COSE] Fwd: New Version Notification f… tirumal reddy
- Re: [jose] [COSE] Fwd: New Version Notification f… tirumal reddy
- Re: [jose] [COSE] Fwd: New Version Notification f… Neil Madden
- Re: [jose] [COSE] Fwd: New Version Notification f… Ilari Liusvaara
- Re: [jose] [COSE] Fwd: New Version Notification f… tirumal reddy