[openpgp] Re: WG: BSI view on KEM combiners

Falko Strenzke <falko.strenzke@mtg.de> Wed, 04 September 2024 05:00 UTC

Return-Path: <falko.strenzke@mtg.de>
X-Original-To: openpgp@ietfa.amsl.com
Delivered-To: openpgp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id BEC01C151091; Tue, 3 Sep 2024 22:00:56 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.105
X-Spam-Level:
X-Spam-Status: No, score=-2.105 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=mtg.de
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 4iOin26EVj05; Tue, 3 Sep 2024 22:00:52 -0700 (PDT)
Received: from www.mtg.de (www.mtg.de [IPv6:2a02:b98:8:2::2]) (using TLSv1.3 with cipher TLS_CHACHA20_POLY1305_SHA256 (256/256 bits) key-exchange X25519 server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id B0526C15109E; Tue, 3 Sep 2024 22:00:51 -0700 (PDT)
Received: from minka.mtg.de (minka [IPv6:2a02:b98:8:1:0:0:0:9]) by www.mtg.de (8.18.1/8.18.1) with ESMTPS id 48450nDl021001 (version=TLSv1.3 cipher=TLS_CHACHA20_POLY1305_SHA256 bits=256 verify=NOT); Wed, 4 Sep 2024 07:00:50 +0200
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=mtg.de; s=mail201801; t=1725426050; bh=Vn059BH9XKp+DcpUsuXl0LfIw3++EU9DC1VvX82GEdc=; h=Date:Subject:To:Cc:References:From:In-Reply-To; b=urtdeIf9kJ3ZBrHYbgSp63vE4mn8ImNIab+YkG/clSGciTIbTtEL5Xl/+bOg+/jjW ML+w3l9MDe9MRGbG668GiAhhnxt8sId2vYdt30++rX8hNPKPjVMcLa3u7hffu51nd4 w8YSchKp29zBhpkzv4GVAOIsX+dUcPvXen2fbvD87sWAIH/U/CvlK7F9+r3c1lYIVe dbKtMlHHDuXHvW7MIA6hIT8c2QfdP5/CuaI9F+rnFyj/iBeQKO9MfSVsn1u9XWLYqW UYzaQhT52IuBRVHqW+E9F4pIYPcuvYyHJsI5scLw1OJDCoGlJoR+DS4HTnrK4UR8vg 3whtIQmJ7Wsbw==
Received: from [10.8.0.100] (vpn-10-8-0-100 [10.8.0.100]) by minka.mtg.de (8.18.1/8.18.1) with ESMTPS id 48450nCE028615 (version=TLSv1.3 cipher=TLS_CHACHA20_POLY1305_SHA256 bits=256 verify=NOT); Wed, 4 Sep 2024 07:00:49 +0200
Message-ID: <2940b781-52de-42c8-aef9-78d6cb970b08@mtg.de>
Date: Wed, 04 Sep 2024 07:00:49 +0200
MIME-Version: 1.0
User-Agent: Mozilla Thunderbird
To: Daniel Huigens <d.huigens=40protonmail.com@dmarc.ietf.org>, "Ehlen, Stephan" <stephan.ehlen=40bsi.bund.de@dmarc.ietf.org>
References: <5681EF18-EB2C-49FD-A3B0-735C6542725D@amongbytes.com> <334c62d3389847e0b345269b54af639c@bsi.bund.de> <vD0ZBoCGhXaNfOahJkzFeuXbrf9UMnGrJ9SvapIzYNjqIRtNBkAJK-Mj0UWqsMj5gfuIxwtitmIOKJYpQx8lnAAlbYerdG_ZxxS0OAlBVhE=@protonmail.com> <845c1aeb783048a6a25329f3fe55f708@bsi.bund.de> <bW9aKCOk9HHb5xrHdoUlRC2aCpmZ6ZeReYYFFtf4P7TrbqN_q4Pnn-ibbWs9uehRzm6i_tverpxR0yxd3gxWhK8_w-s8lOx1I4B6Gf64Qyg=@protonmail.com> <df35291f726b48c8b37bec61bcdeb16a@bsi.bund.de> <uSMSFmH_6jyl4mrcWthHS1_eJjjo0FaROQU4BDyy3oRlH-l8qtjgoOO3KdbkvU4K0O7fdNaxAMuth8sAPtN2aOpi-bK_eVijo56xnPnnvcQ=@protonmail.com>
Content-Language: en-GB
From: Falko Strenzke <falko.strenzke@mtg.de>
Organization: MTG AG
In-Reply-To: <uSMSFmH_6jyl4mrcWthHS1_eJjjo0FaROQU4BDyy3oRlH-l8qtjgoOO3KdbkvU4K0O7fdNaxAMuth8sAPtN2aOpi-bK_eVijo56xnPnnvcQ=@protonmail.com>
Content-Type: multipart/signed; protocol="application/pkcs7-signature"; micalg="sha-512"; boundary="------------ms000302090602000209060406"
Message-ID-Hash: 4WGXIKDADAXP573VS7RCMSTWSWYSCMEM
X-Message-ID-Hash: 4WGXIKDADAXP573VS7RCMSTWSWYSCMEM
X-MailFrom: falko.strenzke@mtg.de
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-openpgp.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: "openpgp@ietf.org" <openpgp@ietf.org>
X-Mailman-Version: 3.3.9rc4
Precedence: list
Subject: [openpgp] Re: WG: BSI view on KEM combiners
List-Id: "Ongoing discussion of OpenPGP issues." <openpgp.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/openpgp/Hf6WMt7HTIaZiu2R3vygTnqNq7I>
List-Archive: <https://mailarchive.ietf.org/arch/browse/openpgp>
List-Help: <mailto:openpgp-request@ietf.org?subject=help>
List-Owner: <mailto:openpgp-owner@ietf.org>
List-Post: <mailto:openpgp@ietf.org>
List-Subscribe: <mailto:openpgp-join@ietf.org>
List-Unsubscribe: <mailto:openpgp-leave@ietf.org>

Hi Daniel,

Am 29.08.24 um 12:06 schrieb Daniel Huigens:
>> Given our current recommendations, the BSI would most likely not accept
>> a composite of ML-KEM-1024 + X448 for use in products used to process confidential information.
> That's a bit surprising to me, but alright.
>
> As Britta said in the parallel thread, perhaps this should be brought up
> & discussed in the CFRG, as this presumably has implications for all
> working groups planning to adopt PQC, not just OpenPGP.

Britta's concerns were formulated with respect to cryptographic 
mechanisms, while yours seem to be entirely with respect to parameter 
choices. And I cannot really see how CFRG could help us regarding the 
choice of parameters.

What exact question do you suggest should be asked to CFRG? What aspect 
to you expect to be clarified or resolved through that?

Best regards,
Falko

>
> Best,
> Daniel
>
> _______________________________________________
> openpgp mailing list --openpgp@ietf.org
> To unsubscribe send an email toopenpgp-leave@ietf.org
-- 

*MTG AG*
Dr. Falko Strenzke

Phone: +49 6151 8000 24
E-Mail: falko.strenzke@mtg.de
Web: mtg.de <https://www.mtg.de>

------------------------------------------------------------------------

MTG AG - Dolivostr. 11 - 64293 Darmstadt, Germany
Commercial register: HRB 8901
Register Court: Amtsgericht Darmstadt
Management Board: Jürgen Ruf (CEO), Tamer Kemeröz
Chairman of the Supervisory Board: Dr. Thomas Milde

This email may contain confidential and/or privileged information. If 
you are not the correct recipient or have received this email in error,
please inform the sender immediately and delete this email.Unauthorised 
copying or distribution of this email is not permitted.

Data protection information: Privacy policy 
<https://www.mtg.de/en/privacy-policy>