IETF Logo Mail Archive

[openpgp] German BSI, PQC for OpenPGP in Thunderbird,

Kai Engert <kaie@kuix.de> Thu, 24 June 2021 13:52 UTC

Return-Path: <kaie@kuix.de>
X-Original-To: openpgp@ietfa.amsl.com
Delivered-To: openpgp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 213573A1DB1 for <openpgp@ietfa.amsl.com>; Thu, 24 Jun 2021 06:52:17 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.099
X-Spam-Level:
X-Spam-Status: No, score=-2.099 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=kuix.de
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 4QKj7GlVMzCR for <openpgp@ietfa.amsl.com>; Thu, 24 Jun 2021 06:52:12 -0700 (PDT)
Received: from cloud.kuix.de (cloud.kuix.de [93.90.207.85]) (using TLSv1.2 with cipher ADH-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 30A7A3A1DB0 for <openpgp@ietf.org>; Thu, 24 Jun 2021 06:52:12 -0700 (PDT)
Received: from [10.137.0.17] (p5dcf40f9.dip0.t-ipconnect.de [93.207.64.249]) by cloud.kuix.de (Postfix) with ESMTPSA id 21E741905ED for <openpgp@ietf.org>; Thu, 24 Jun 2021 13:52:09 +0000 (UTC)
DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=kuix.de; s=2018; t=1624542729; bh=YB+w3HXAHVGnnePNaRuUwWDwo0Auy7NPYg75yR/4RmE=; h=To:From:Subject:Date:From; b=XuFc4TehpTMOu00GyHSXFL8TBEg33Z0CAhf+PazyMekNOCgew9WsxTKA+2htMH5DL wwOBiVK/ZIpaAw7aWiejpPiT6/oK/pTJypaG0qmV8ywd4hPrXw1nheB+IgzD8KI/5j VGf55U6Ch9405mtFiK7CeY8xeI294Z4v7IoPzwOB6uzC/f6amslzm09KWOINp5Zq6H 5HGA+15ZqSBca4eJmX08C6zSIBVNfXclXzsgk/h7CR9ewKQ8hhLd+he+bOWjwdZs5X uDB5s4CFhWFOg7j0vbAWMbU4iAf+lzaCJ2pkAQxNDlZSz9L5UDwEams2RSrwnKRG1x VHlVLraHaXSJA==
To: openpgp@ietf.org
From: Kai Engert <kaie@kuix.de>
Message-ID: <c2b4b0ea-ed14-79a0-c547-5fe79fc35fc0@kuix.de>
Date: Thu, 24 Jun 2021 15:52:06 +0200
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:78.0) Gecko/20100101 Firefox/78.0 Thunderbird/78.11.1
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"; format="flowed"
Content-Language: en-US
Content-Transfer-Encoding: 7bit
Archived-At: <https://mailarchive.ietf.org/arch/msg/openpgp/i2qnaxF0RNhcVnobv0C_HE211wk>
Subject: [openpgp] German BSI, PQC for OpenPGP in Thunderbird,
X-BeenThere: openpgp@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Ongoing discussion of OpenPGP issues." <openpgp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/openpgp>, <mailto:openpgp-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/openpgp/>
List-Post: <mailto:openpgp@ietf.org>
List-Help: <mailto:openpgp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/openpgp>, <mailto:openpgp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 24 Jun 2021 13:52:17 -0000

Hello,

I'd like to make you aware of a project call by the German BSI (a 
federal agency for IT security), which was brought to my attention.

I've posted some information on it on the Thunderbird planning mailing 
list, see the following thread, which has multiple messages from me:

https://thunderbird.topicbox.com/groups/planning/T5abbf135db2f3c1c/the-german-bsi-intends-to-sponsor-pqc-improvements-for-openpgp-in-thunderbird

In my understanding they intend to pay a contractor for a wide set of 
tasks to bring PQC to Thunderbird, including the work to standardize the 
use of PQC with OpenPGP, including implementations for RNP, Botan, GnuPG 
and libgcrypt.

It seems the BSI has already made a suggestion that they want to require 
the use of CRYSTALS-Kyber and -Dilithium.

Is that a reasonable choice?

Does it make sense to define a limitation to these methods at this point 
of time?

Thanks
Kai

v2.23.0 | Report a Bug | By Email