Re: [openpgp] German BSI, PQC for OpenPGP in Thunderbird,
Kai Engert <kaie@kuix.de> Thu, 24 June 2021 16:05 UTC
Return-Path: <kaie@kuix.de>
X-Original-To: openpgp@ietfa.amsl.com
Delivered-To: openpgp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1])
by ietfa.amsl.com (Postfix) with ESMTP id 3463D3A21EE
for <openpgp@ietfa.amsl.com>; Thu, 24 Jun 2021 09:05:04 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.437
X-Spam-Level:
X-Spam-Status: No, score=-2.437 tagged_above=-999 required=5
tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1,
DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, NICE_REPLY_A=-0.338,
SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001]
autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key)
header.d=kuix.de
Received: from mail.ietf.org ([4.31.198.44])
by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024)
with ESMTP id nOljlT2yjTqt for <openpgp@ietfa.amsl.com>;
Thu, 24 Jun 2021 09:04:59 -0700 (PDT)
Received: from cloud.kuix.de (cloud.kuix.de [93.90.207.85])
(using TLSv1.2 with cipher ADH-AES256-GCM-SHA384 (256/256 bits))
(No client certificate requested)
by ietfa.amsl.com (Postfix) with ESMTPS id 486D43A21ED
for <openpgp@ietf.org>; Thu, 24 Jun 2021 09:04:59 -0700 (PDT)
Received: from [10.137.0.17] (p5dcf40f9.dip0.t-ipconnect.de [93.207.64.249])
by cloud.kuix.de (Postfix) with ESMTPSA id 91B12190608;
Thu, 24 Jun 2021 16:04:54 +0000 (UTC)
DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=kuix.de; s=2018;
t=1624550694; bh=q6ajQ2itGoz9ZLBHoUtYuOqx6Aj6+He8xi40409hdDE=;
h=Subject:To:References:From:Date:In-Reply-To:From;
b=iKMGqor8vDD+qPcWULtImeV33x9/Gc/O4xDNtizMDSxSkJqa+IUB9ao5h38quDu/K
kaenKNczzubovZfs4dLfu6nBn16SbxG4ajTlkwxbrfPyPJR2JB2HphwIhfbFiCf191
ZTZBGOwx2ubnZw19uUzb8HLJHHxRPEwBKexlXLFInRQvJFsuAq9wciS2HkM4hzGbH5
FkTo0FQ6mup+ppBa3b6eeU9VqboQVds+CRvg7EA1qHzErXvx8ptcPt1AQzNJfB/gX4
8YJOHG2RqAnZpalBZ0GJfZOKDzWB1kRvHF+OIwOoYxnMRIH4N9OejX1f0iQJEtzcN5
G+VH7NGxhnoaQ==
To: Daniel Kahn Gillmor <dkg@fifthhorseman.net>, openpgp@ietf.org
References: <c2b4b0ea-ed14-79a0-c547-5fe79fc35fc0@kuix.de>
<87y2azuv8a.fsf@fifthhorseman.net>
From: Kai Engert <kaie@kuix.de>
Message-ID: <87144d23-6a91-4fe2-338d-eb910d6ef8bc@kuix.de>
Date: Thu, 24 Jun 2021 18:04:53 +0200
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:78.0) Gecko/20100101
Firefox/78.0 Thunderbird/78.11.1
MIME-Version: 1.0
In-Reply-To: <87y2azuv8a.fsf@fifthhorseman.net>
Content-Type: text/plain; charset=utf-8; format=flowed
Content-Language: en-US
Content-Transfer-Encoding: 7bit
Archived-At: <https://mailarchive.ietf.org/arch/msg/openpgp/D0iodrlPQm98N7H3-BUOD92VMVU>
Subject: Re: [openpgp] German BSI, PQC for OpenPGP in Thunderbird,
X-BeenThere: openpgp@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Ongoing discussion of OpenPGP issues." <openpgp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/openpgp>,
<mailto:openpgp-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/openpgp/>
List-Post: <mailto:openpgp@ietf.org>
List-Help: <mailto:openpgp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/openpgp>,
<mailto:openpgp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 24 Jun 2021 16:05:04 -0000
On 24.06.21 17:40, Daniel Kahn Gillmor wrote: > ... I'm a little surprised > to see the BSI simultaneously proposing standardization of PQ schemes in > OpenPGP *and* advocating for implementation of a specific scheme. I'd > expect the standardization to involve selecting which PQ scheme(s) seem > reasonable for the context, rather than pre-determining the scheme for > use. ... The call mentions that the NIST standardization isn't done, so apparently they intend to follow the NIST recommendations. They also say, the project's cryptographic design should consider crypto-agility and hybrid solutions. They describe a hybrid solution as a conbination of a PQ method with a classic asymmetric method. Maybe this means they're asking for a solution that implements the specific CRYSTALS-* method, but in addition be prepared for alternative algorithms as well? I found that in section 1.3 of document 02 (Vergabeunterlagen/02 - P480 - Leistungsbeschreibung - Offenes Verfahren v1.0.pdf) from https://www.evergabe-online.de/tenderdocuments.html?1&id=397181 Maybe it would be necessary for applications to ask for clarification. (As noted in the other posts to the Thunderbird planning list, all questions need to be asked in German via the BSI project site. And in order to ask questions, it seems necessary to register as an interested party for the project. Kai
- [openpgp] German BSI, PQC for OpenPGP in Thunderb… Kai Engert
- Re: [openpgp] German BSI, PQC for OpenPGP in Thun… Derek Atkins
- Re: [openpgp] German BSI, PQC for OpenPGP in Thun… Daniel Kahn Gillmor
- Re: [openpgp] German BSI, PQC for OpenPGP in Thun… Kai Engert
- Re: [openpgp] German BSI, PQC for OpenPGP in Thun… Michael Richardson
- Re: [openpgp] German BSI, PQC for OpenPGP in Thun… Alessandro Barenghi
- Re: [openpgp] German BSI, PQC for OpenPGP in Thun… Daniel Huigens
- Re: [openpgp] German BSI, PQC for OpenPGP in Thun… Werner Koch
- Re: [openpgp] German BSI, PQC for OpenPGP in Thun… Justus Winter
- Re: [openpgp] German BSI, PQC for OpenPGP in Thun… Kai Engert
- Re: [openpgp] German BSI, PQC for OpenPGP in Thun… Daniel Kahn Gillmor