Re: [openpgp] German BSI, PQC for OpenPGP in Thunderbird,

Kai Engert <kaie@kuix.de> Thu, 24 June 2021 16:05 UTC

Return-Path: <kaie@kuix.de>
X-Original-To: openpgp@ietfa.amsl.com
Delivered-To: openpgp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3463D3A21EE for <openpgp@ietfa.amsl.com>; Thu, 24 Jun 2021 09:05:04 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.437
X-Spam-Level:
X-Spam-Status: No, score=-2.437 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, NICE_REPLY_A=-0.338, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=kuix.de
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id nOljlT2yjTqt for <openpgp@ietfa.amsl.com>; Thu, 24 Jun 2021 09:04:59 -0700 (PDT)
Received: from cloud.kuix.de (cloud.kuix.de [93.90.207.85]) (using TLSv1.2 with cipher ADH-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 486D43A21ED for <openpgp@ietf.org>; Thu, 24 Jun 2021 09:04:59 -0700 (PDT)
Received: from [10.137.0.17] (p5dcf40f9.dip0.t-ipconnect.de [93.207.64.249]) by cloud.kuix.de (Postfix) with ESMTPSA id 91B12190608; Thu, 24 Jun 2021 16:04:54 +0000 (UTC)
DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=kuix.de; s=2018; t=1624550694; bh=q6ajQ2itGoz9ZLBHoUtYuOqx6Aj6+He8xi40409hdDE=; h=Subject:To:References:From:Date:In-Reply-To:From; b=iKMGqor8vDD+qPcWULtImeV33x9/Gc/O4xDNtizMDSxSkJqa+IUB9ao5h38quDu/K kaenKNczzubovZfs4dLfu6nBn16SbxG4ajTlkwxbrfPyPJR2JB2HphwIhfbFiCf191 ZTZBGOwx2ubnZw19uUzb8HLJHHxRPEwBKexlXLFInRQvJFsuAq9wciS2HkM4hzGbH5 FkTo0FQ6mup+ppBa3b6eeU9VqboQVds+CRvg7EA1qHzErXvx8ptcPt1AQzNJfB/gX4 8YJOHG2RqAnZpalBZ0GJfZOKDzWB1kRvHF+OIwOoYxnMRIH4N9OejX1f0iQJEtzcN5 G+VH7NGxhnoaQ==
To: Daniel Kahn Gillmor <dkg@fifthhorseman.net>, openpgp@ietf.org
References: <c2b4b0ea-ed14-79a0-c547-5fe79fc35fc0@kuix.de> <87y2azuv8a.fsf@fifthhorseman.net>
From: Kai Engert <kaie@kuix.de>
Message-ID: <87144d23-6a91-4fe2-338d-eb910d6ef8bc@kuix.de>
Date: Thu, 24 Jun 2021 18:04:53 +0200
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:78.0) Gecko/20100101 Firefox/78.0 Thunderbird/78.11.1
MIME-Version: 1.0
In-Reply-To: <87y2azuv8a.fsf@fifthhorseman.net>
Content-Type: text/plain; charset=utf-8; format=flowed
Content-Language: en-US
Content-Transfer-Encoding: 7bit
Archived-At: <https://mailarchive.ietf.org/arch/msg/openpgp/D0iodrlPQm98N7H3-BUOD92VMVU>
Subject: Re: [openpgp] German BSI, PQC for OpenPGP in Thunderbird,
X-BeenThere: openpgp@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Ongoing discussion of OpenPGP issues." <openpgp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/openpgp>, <mailto:openpgp-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/openpgp/>
List-Post: <mailto:openpgp@ietf.org>
List-Help: <mailto:openpgp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/openpgp>, <mailto:openpgp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 24 Jun 2021 16:05:04 -0000

On 24.06.21 17:40, Daniel Kahn Gillmor wrote:
> ... I'm a little surprised
> to see the BSI simultaneously proposing standardization of PQ schemes in
> OpenPGP *and* advocating for implementation of a specific scheme.  I'd
> expect the standardization to involve selecting which PQ scheme(s) seem
> reasonable for the context, rather than pre-determining the scheme for
> use. ...

The call mentions that the NIST standardization isn't done, so 
apparently they intend to follow the NIST recommendations.

They also say, the project's cryptographic design should consider 
crypto-agility and hybrid solutions. They describe a hybrid solution as 
a conbination of a PQ method with a classic asymmetric method.

Maybe this means they're asking for a solution that implements the 
specific CRYSTALS-* method, but in addition be prepared for alternative 
algorithms as well?

I found that in section 1.3 of document 02
(Vergabeunterlagen/02 - P480 - Leistungsbeschreibung - Offenes Verfahren 
v1.0.pdf)
from https://www.evergabe-online.de/tenderdocuments.html?1&id=397181

Maybe it would be necessary for applications to ask for clarification. 
(As noted in the other posts to the Thunderbird planning list, all 
questions need to be asked in German via the BSI project site. And in 
order to ask questions, it seems necessary to register as an interested 
party for the project.

Kai