Re: [Lwip] Fwd: New Version Notification for draft-ietf-lwig-curve-representations-23.txt
Daniel Migault <daniel.migault@ericsson.com> Wed, 09 February 2022 16:16 UTC
Return-Path: <daniel.migault@ericsson.com>
X-Original-To: lwip@ietfa.amsl.com
Delivered-To: lwip@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id DC70C3A0780; Wed, 9 Feb 2022 08:16:55 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.676
X-Spam-Level:
X-Spam-Status: No, score=-2.676 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.576, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ericsson.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id bB395tY6QBIB; Wed, 9 Feb 2022 08:16:48 -0800 (PST)
Received: from NAM10-DM6-obe.outbound.protection.outlook.com (mail-dm6nam10on20602.outbound.protection.outlook.com [IPv6:2a01:111:f400:7e88::602]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 9AE533A00DE; Wed, 9 Feb 2022 08:16:41 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=T+5dQDSt1wRhnZRnxlzcdZSo5vpCTzR86R68ef8MFwGFkaH0Cj3qxPPY/VIUsU9OQ6b9jwzhk1HHJZqO5x3rCg5AaXZ5xl0HCvm/Nrk48Sk+eFEPPrGLyPQoWVv/kWfpvWG4Cmn4Px6tY4J48XVCT7JxlwW8qcoB2CJnIkfPGyYR4xRaYKEWUL2rMVbPZKArIQ9W0iiAB273LBEUIvQbIxuP3+wy1nCyqZBsRgL0gizSkFY1A/ollwS4feCIef1R3mEz3cXX9sH2JP/TggoRkXf4UAsZVYtw+E/8VT8JXeCuELPmvHIZAaGjV79abAOaaA5qi+Tz2dPMO8fp/SJdGQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=bcLgRWWieGuOv0UgjHMu3ZCmzhe0z0XH+jWHzr5QsYU=; b=IRsq16ghokRCCuNSAoq2ZRzjy3V7l5OQHwUCMXa+f5+OKXMZMqrUWjCTDgvSjTakacCFvd9MjFREaNLAlrmVTGbnUSd92HRzRyIcknQabucwzF02l7UaRLk/dFJtrbcmEYgBdZDTkw78OZvKZa7vqkjs97QPHRVlPSZee8Km/Rqvr6sHmh0DR+IZJZ7D7j/jF+a/JaC+sOM/a65QjjnCBuVYy1encPRDoy/kwPSuuitsNjm+0z+lKmtZ/YQw8wHfFL5KD7RiVHUACTCoZmCWpXO0ep7kQQNdnwVTQTZIGXQC9sutje50kEsgerLCenKkI94EyhJEq3q4a1PmkYG3FA==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=none; dmarc=none; dkim=none; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ericsson.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=bcLgRWWieGuOv0UgjHMu3ZCmzhe0z0XH+jWHzr5QsYU=; b=Lga17RtWww+oXDGt7TdvTJN6qVBmUnOhyTzJFl5NsGUb9M9wB7h5MkqNmFoI+dQEbOAbnJNmCNsUdAWFelO9UjjP3JWiIXdhrdXi7UofhId6aaGqn6vxTlzS31RLjpDA3Bo3yHmQd4AGDU63eDiVPFKUJ7YeFuGJBhvHCO5Vpvk=
Received: from DM6PR15MB3689.namprd15.prod.outlook.com (2603:10b6:5:1fb::27) by BYAPR15MB2695.namprd15.prod.outlook.com (2603:10b6:a03:150::16) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.4975.11; Wed, 9 Feb 2022 16:16:34 +0000
Received: from DM6PR15MB3689.namprd15.prod.outlook.com ([fe80::6459:15d1:c5d7:3596]) by DM6PR15MB3689.namprd15.prod.outlook.com ([fe80::6459:15d1:c5d7:3596%4]) with mapi id 15.20.4951.019; Wed, 9 Feb 2022 16:16:34 +0000
From: Daniel Migault <daniel.migault@ericsson.com>
To: Rene Struik <rstruik.ext@gmail.com>, "ek.ietf@gmail.com" <ek.ietf@gmail.com>
CC: "lwip@ietf.org" <lwip@ietf.org>, The IESG <iesg@ietf.org>
Thread-Topic: [Lwip] Fwd: New Version Notification for draft-ietf-lwig-curve-representations-23.txt
Thread-Index: AQHYDx84LhB8KYJHOk6y3asRn4F/UKyLfXyAgAABtvc=
Date: Wed, 09 Feb 2022 16:16:34 +0000
Message-ID: <DM6PR15MB3689E711815FBEE3DEACCA54E32E9@DM6PR15MB3689.namprd15.prod.outlook.com>
References: <164280578662.16592.16625041318608542476@ietfa.amsl.com> <204cbd49-e74f-a11b-2e81-3328cd16488b@gmail.com> <be92c3d8-089e-a918-fc4b-539a3d760499@gmail.com>
In-Reply-To: <be92c3d8-089e-a918-fc4b-539a3d760499@gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
suggested_attachment_session_id: 41009f4e-227e-bc54-9958-ff7b77f87c9b
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=ericsson.com;
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 652c2601-3063-4cea-63dd-08d9ebe78a7d
x-ms-traffictypediagnostic: BYAPR15MB2695:EE_
x-microsoft-antispam-prvs: <BYAPR15MB269511CEA5141DD1A3FF6CC0E32E9@BYAPR15MB2695.namprd15.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:10000;
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:DM6PR15MB3689.namprd15.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230001)(4636009)(366004)(91956017)(15650500001)(966005)(76116006)(33656002)(55016003)(64756008)(4326008)(8676002)(5660300002)(66946007)(66446008)(66556008)(8936002)(66476007)(52536014)(38070700005)(71200400001)(316002)(54906003)(40140700001)(44832011)(2906002)(508600001)(9686003)(110136005)(38100700002)(26005)(83380400001)(53546011)(122000001)(86362001)(7696005)(6506007)(66574015)(82960400001)(186003); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-OriginatorOrg: ericsson.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: DM6PR15MB3689.namprd15.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 652c2601-3063-4cea-63dd-08d9ebe78a7d
X-MS-Exchange-CrossTenant-originalarrivaltime: 09 Feb 2022 16:16:34.1988 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 92e84ceb-fbfd-47ab-be52-080c6b87953f
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: o64Xl37ZPxxD1mEa6YoRa/o6s4UvjGgEpylGfedC/xVHYqlHBLIi8jB0gfMohHDGjJNdJ7UJZZiRzNlvUnN2pWjjxf9bhSKo6J7Mmq3KUG4=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BYAPR15MB2695
Archived-At: <https://mailarchive.ietf.org/arch/msg/lwip/RqWqmKwbz5na_LneXY0BRC_s3o8>
Subject: Re: [Lwip] Fwd: New Version Notification for draft-ietf-lwig-curve-representations-23.txt
X-BeenThere: lwip@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Lightweight IP stack. Official mailing list for IETF LWIG Working Group." <lwip.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/lwip>, <mailto:lwip-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/lwip/>
List-Post: <mailto:lwip@ietf.org>
List-Help: <mailto:lwip-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/lwip>, <mailto:lwip-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 09 Feb 2022 16:17:05 -0000
I seems reasonable this document passes the IESG before the IESG get renewed as it currently has in mind the history of the draft. I understand this draft get a higher priority over the remaining draft in lwig. Yours, Daniel ________________________________________ From: Lwip <lwip-bounces@ietf.org> on behalf of Rene Struik <rstruik.ext@gmail.com> Sent: Wednesday, February 9, 2022 10:58 AM To: ek.ietf@gmail.com Cc: lwip@ietf.org; The IESG Subject: Re: [Lwip] Fwd: New Version Notification for draft-ietf-lwig-curve-representations-23.txt Dear Erik: Could you please make sure the lwig curve draft ends up on the iesg telechat agenda again asap? I think we should (and easily can) get this draft done before there is another IESG roster change (due to AD changes in March). Next week, it will be precisely one year this draft was first put on the iesg telechat agenda (Feb 18, 2021, to be precise). Let us make sure we do not need candles to "celebrate" one year of zero progress. Thanks for your help! Apologies for sending this message via the mailing list: however, for some reason, none of my offline email messages sent to you since January 13, 2022 seemed to have reached you (or, at least, have been replied to). I did see other emails from the ek.ietf@gmail.com<mailto:ek.ietf@gmail.com> address, so presume that address still works (if this assumption is incorrect, please let me know). Rene On 2022-01-21 6:32 p.m., Rene Struik wrote: Dear colleagues: I updated the lwig curve draft, so as to take into account (1) another crypto review panel review this draft was subjected to by the powers that be; (2) discussions on ECDSA with the SHA3 family hash functions that took place on the COSE mailing list and offline Nov-early January. Changes: a) Section 7 (Implementation Status): included reference to ANSSI's (French information security agency) use of lwig curve draft, including motivations (hooray); b) Appendix B.1 (Elliptic Curve Nomenclature): made definition of isomorphic curves in Appendix B.1 more precise, via one-sentence change (zero impact on draft, but done for completeness); c) Appendix I (Data Conversions): added Definition of ASCII symbols (with reference to RFC 20); d) Appendix Q (ECDSA): corrected numerical examples for ECDSA w/ Wei25519 and SHAKE-128 (Appendix Q.3.2) and ECDSA w/ Wei448 and SHAKE-256 (Appendix Q.3.3). Here, it turned out that the Python code in Sage that I used incorrectly implements the FIPS 202 specification of SHAKE128 and SHAKE256. To do this properly, I implemented all SHA3 functions from scratch on the bit-level and had this vetted independently via contacts at NIST. To indicate that ECDSA w/ Wei448 and SHAKE256 uses FIPS 202-conformant SHAKE256, I added in Section 4.3 as reference to FIPS 202 "see Section 6.3 of [FIPS 202]"). BTW - adding ASCII (point c) above) above was motivated by desire to avoid bit/byte-ordering ambiguity and set the record straight. I made a few (very few) typographical and cosmetic changes throughout the document, in an attempt to make the crypto review panel reviewer happy. (Time will tell.) I hope this helps. Best regards, Rene -------- Forwarded Message -------- Subject: New Version Notification for draft-ietf-lwig-curve-representations-23.txt Date: Fri, 21 Jan 2022 14:56:26 -0800 From: internet-drafts@ietf.org<mailto:internet-drafts@ietf.org> To: Rene Struik <rstruik.ext@gmail.com><mailto:rstruik.ext@gmail.com> A new version of I-D, draft-ietf-lwig-curve-representations-23.txt has been successfully submitted by Rene Struik and posted to the IETF repository. Name: draft-ietf-lwig-curve-representations Revision: 23 Title: Alternative Elliptic Curve Representations Document date: 2022-01-21 Group: lwig Pages: 150 URL: https://www.ietf.org/archive/id/draft-ietf-lwig-curve-representations-23.txt Status: https://datatracker.ietf.org/doc/draft-ietf-lwig-curve-representations/ Htmlized: https://datatracker.ietf.org/doc/html/draft-ietf-lwig-curve-representations Diff: https://www.ietf.org/rfcdiff?url2=draft-ietf-lwig-curve-representations-23 Abstract: This document specifies how to represent Montgomery curves and (twisted) Edwards curves as curves in short-Weierstrass form and illustrates how this can be used to carry out elliptic curve computations leveraging existing implementations and specifications of, e.g., ECDSA and ECDH using NIST prime curves. We also provide extensive background material that may be useful for implementers of elliptic curve cryptography. The IETF Secretariat -- email: rstruik.ext@gmail.com<mailto:rstruik.ext@gmail.com> | Skype: rstruik cell: +1 (647) 867-5658 | US: +1 (415) 287-3867
- [Lwip] Fwd: New Version Notification for draft-ie… Rene Struik
- Re: [Lwip] New Version Notification for draft-iet… Carsten Bormann
- Re: [Lwip] New Version Notification for draft-iet… Rene Struik
- Re: [Lwip] New Version Notification for draft-iet… Behcet Sarikaya
- Re: [Lwip] New Version Notification for draft-iet… Rene Struik
- Re: [Lwip] Fwd: New Version Notification for draf… Rene Struik
- Re: [Lwip] Fwd: New Version Notification for draf… Daniel Migault
- Re: [Lwip] Fwd: New Version Notification for draf… Erik Kline
- [Lwip] (I can't take this any more? Does anyone e… Rene Struik
- [Lwip] (one more data point) Re: (I can't take th… Rene Struik
- Re: [Lwip] (I can't take this any more? Does anyo… Erik Kline
- Re: [Lwip] (I can't take this any more? Does anyo… Rene Struik
- Re: [Lwip] (I can't take this any more? Does anyo… Lars Eggert
- Re: [Lwip] Fwd: New Version Notification for draf… Rene Struik
- Re: [Lwip] Fwd: New Version Notification for draf… Rene Struik