Re: [Lwip] I-D Action: draft-ietf-lwig-curve-representations-09.txt
Rene Struik <rstruik.ext@gmail.com> Tue, 10 March 2020 16:20 UTC
Return-Path: <rstruik.ext@gmail.com>
X-Original-To: lwip@ietfa.amsl.com
Delivered-To: lwip@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 63FBD3A14E1 for <lwip@ietfa.amsl.com>; Tue, 10 Mar 2020 09:20:56 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.098
X-Spam-Level:
X-Spam-Status: No, score=-2.098 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id QSeZKgDiM_KG for <lwip@ietfa.amsl.com>; Tue, 10 Mar 2020 09:20:54 -0700 (PDT)
Received: from mail-qk1-x72c.google.com (mail-qk1-x72c.google.com [IPv6:2607:f8b0:4864:20::72c]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A03F73A14D2 for <lwip@ietf.org>; Tue, 10 Mar 2020 09:20:54 -0700 (PDT)
Received: by mail-qk1-x72c.google.com with SMTP id m2so13261659qka.7 for <lwip@ietf.org>; Tue, 10 Mar 2020 09:20:54 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=subject:to:references:from:message-id:date:user-agent:mime-version :in-reply-to:content-transfer-encoding:content-language; bh=P68IzeMeKOgeHGfa22m7qZSllKubd1GL4LJWfaKZhfQ=; b=hIWGTMr4uwWbmh8KgMxbuqGdqhfz9imyMCW6+7SIGNM/MKRPrUu+KtePpkSEtzAlh/ 3PZ0nNRmVepv4ojCF0RkI2oCvCBYNXo594QZjY4dDRKbIXwJjfANMt+hYUbejQ1dEFL2 cVPIfDWDoWsNIAg1gKmYp1UDc4agrgXf22vXozchGrhNBX6+pwWCSk6/kWPDkvSvVJtU UQLYqQuculVzckXIeEXJl1FoE0rTlu5Vz8XVXcPkXkV3IZIq2lUeOdPiKIKJyDkoitZw JBaWTT54muygkAIZ6st4yTyBDchHGb9J+cQ/+z26xLUGezc1AOPJNw695PT39uxr61Or lTvQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:subject:to:references:from:message-id:date :user-agent:mime-version:in-reply-to:content-transfer-encoding :content-language; bh=P68IzeMeKOgeHGfa22m7qZSllKubd1GL4LJWfaKZhfQ=; b=iVABlVmNu1+dSdED1uAoUlrnCd8Jv/2K+uGQPmhOXGixtq+rLT9EuKgiqJr88cxxc2 yh19ysxMpKYvN1xkb6WKAMEekEbRlm+mYsX91PRueKVSlkNVKvjURf0TRRI+sIxibMjF qiOCeXP352onJieoRFeiXRiSL+SCaT/G6a/zA77t7m4ytOcNECjTNNDGp1/mBToaDeTQ m8Ff33PS3a+nMJ15NSYNCJgE4HkWWeXVRSY2y4NnbtSCBd+uC3rFrT/Z7msEbMmXoFcC F+u9E8M6ZiokvM1wed9wctjCogyu4VlkxIAZlUg+xH7CgphmO79qPywKh9FZJH5U88SK e2KA==
X-Gm-Message-State: ANhLgQ3bf1LPllZ6xGr+PYoQ+T8xeQC0iac6OR1m5vlZaYM0MVZqmYRX LFsaF+faxSA8o1XZ1zHnbhDyVarl
X-Google-Smtp-Source: ADFU+vsDsUUoIrXBZJ++Ox1I+MNh2DVlF7Nola2bcdry2YIPjBsA8mLV0nypQgDLwvf5zguJO47+ZQ==
X-Received: by 2002:a37:a614:: with SMTP id p20mr20719502qke.114.1583857253404; Tue, 10 Mar 2020 09:20:53 -0700 (PDT)
Received: from ?IPv6:2607:fea8:6a0:1a5a:51ec:9c3f:c37:3026? ([2607:fea8:6a0:1a5a:51ec:9c3f:c37:3026]) by smtp.gmail.com with ESMTPSA id g8sm15253791qke.1.2020.03.10.09.20.52 for <lwip@ietf.org> (version=TLS1_3 cipher=TLS_AES_128_GCM_SHA256 bits=128/128); Tue, 10 Mar 2020 09:20:53 -0700 (PDT)
To: lwip@ietf.org
References: <158379823209.5612.7365966474975455161@ietfa.amsl.com>
From: Rene Struik <rstruik.ext@gmail.com>
Message-ID: <50756e59-096e-8483-6b22-78ad6f2c018b@gmail.com>
Date: Tue, 10 Mar 2020 12:20:51 -0400
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:68.0) Gecko/20100101 Thunderbird/68.5.0
MIME-Version: 1.0
In-Reply-To: <158379823209.5612.7365966474975455161@ietfa.amsl.com>
Content-Type: text/plain; charset="utf-8"; format="flowed"
Content-Transfer-Encoding: 7bit
Content-Language: en-US
Archived-At: <https://mailarchive.ietf.org/arch/msg/lwip/7Ee8wkfXAylZe8oi5wHC_5UEk0A>
Subject: Re: [Lwip] I-D Action: draft-ietf-lwig-curve-representations-09.txt
X-BeenThere: lwip@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Lightweight IP stack. Official mailing list for IETF LWIG Working Group." <lwip.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/lwip>, <mailto:lwip-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/lwip/>
List-Post: <mailto:lwip@ietf.org>
List-Help: <mailto:lwip-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/lwip>, <mailto:lwip-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 10 Mar 2020 16:20:56 -0000
Dear colleagues:
I uploaded a revised draft-ietf-lwig-curve-representations-09 draft.
Main changes compared to the 08-draft:
a) inclusion of Curve448 and corresponding Wei448 curve, so that code
points for those could be requested. Please note that both Wei25519 and
Wei448 are included with draft NIST SP 800-186 and can be used with
draft FIPS 186-5 (both published Oct 31, 2019 [~3 1/2 months after the
08-draft]). I tried to include this in a modular way without being too
disruptive to what has been in previous versions of the draft. Almost
all document changes are due to this.
b) some small edits in the appendices, so as to make this more useful
for cross-referencing if people wish to (e.g., definition of
higher-order curve point in Appendix B.1; some expansion of curve
operations after the y-coordinate recovery remark in Appendices C.1,
C.2, C.3; illustration of how one could avoid small subgroup points in
mappings of Appendix K).
c) fixed some small copy-and-paste glitch in the test vectors for
Wei25519.-3 (Y1 coordinate). {Note: this glitch was in version 02 of the
document.}
For details on how this draft tries and accommodate the SecDir and
IoTDir review comments, please see the email responses sent earlier today.
Final notes:
(1) I did notice three tiny editorial glitches with the new 09 document,
which I wil fix in due course.
(2) I will have someone else triple-check all numerical values in the
entire document (I did redo those myself, thereby uncovering (c) above,
but think another pair of eyes would be good).
Best regards, Rene
On 3/9/2020 7:57 PM, internet-drafts@ietf.org wrote:
> A New Internet-Draft is available from the on-line Internet-Drafts directories.
> This draft is a work item of the Light-Weight Implementation Guidance WG of the IETF.
>
> Title : Alternative Elliptic Curve Representations
> Author : Rene Struik
> Filename : draft-ietf-lwig-curve-representations-09.txt
> Pages : 105
> Date : 2020-03-09
>
> Abstract:
> This document specifies how to represent Montgomery curves and
> (twisted) Edwards curves as curves in short-Weierstrass form and
> illustrates how this can be used to carry out elliptic curve
> computations using existing implementations of, e.g., ECDSA and ECDH
> using NIST prime curves. We also provide extensive background
> material that may be useful for implementers of elliptic curve
> cryptography.
>
>
>
> The IETF datatracker status page for this draft is:
> https://datatracker.ietf.org/doc/draft-ietf-lwig-curve-representations/
>
> There are also htmlized versions available at:
> https://tools.ietf.org/html/draft-ietf-lwig-curve-representations-09
> https://datatracker.ietf.org/doc/html/draft-ietf-lwig-curve-representations-09
>
> A diff from the previous version is available at:
> https://www.ietf.org/rfcdiff?url2=draft-ietf-lwig-curve-representations-09
>
>
> Please note that it may take a couple of minutes from the time of submission
> until the htmlized version and diff are available at tools.ietf.org.
>
> Internet-Drafts are also available by anonymous FTP at:
> ftp://ftp.ietf.org/internet-drafts/
>
>
> _______________________________________________
> Lwip mailing list
> Lwip@ietf.org
> https://www.ietf.org/mailman/listinfo/lwip
--
email: rstruik.ext@gmail.com | Skype: rstruik
cell: +1 (647) 867-5658 | US: +1 (415) 287-3867
- [Lwip] I-D Action: draft-ietf-lwig-curve-represen… internet-drafts
- Re: [Lwip] I-D Action: draft-ietf-lwig-curve-repr… Rene Struik