Re: [openpgp] German BSI, PQC for OpenPGP in Thunderbird,
Daniel Huigens <d.huigens@protonmail.com> Mon, 28 June 2021 09:05 UTC
Return-Path: <d.huigens@protonmail.com>
X-Original-To: openpgp@ietfa.amsl.com
Delivered-To: openpgp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1])
by ietfa.amsl.com (Postfix) with ESMTP id D19313A3230
for <openpgp@ietfa.amsl.com>; Mon, 28 Jun 2021 02:05:36 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.096
X-Spam-Level:
X-Spam-Status: No, score=-2.096 tagged_above=-999 required=5
tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1,
DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001,
RCVD_IN_DNSWL_BLOCKED=0.001, RCVD_IN_MSPIKE_H4=0.001,
RCVD_IN_MSPIKE_WL=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001]
autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key)
header.d=protonmail.com
Received: from mail.ietf.org ([4.31.198.44])
by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024)
with ESMTP id ZWCiH8gg-rl2 for <openpgp@ietfa.amsl.com>;
Mon, 28 Jun 2021 02:05:32 -0700 (PDT)
Received: from mail-4317.protonmail.ch (mail-4317.protonmail.ch [185.70.43.17])
(using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
(No client certificate requested)
by ietfa.amsl.com (Postfix) with ESMTPS id E79273A3232
for <openpgp@ietf.org>; Mon, 28 Jun 2021 02:05:31 -0700 (PDT)
Date: Mon, 28 Jun 2021 09:05:27 +0000
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=protonmail.com;
s=protonmail; t=1624871129;
bh=H67Kisx/pl91N9QStBcvLMcP/CHbYsH/VL+HfFIv1zM=;
h=Date:To:From:Cc:Reply-To:Subject:In-Reply-To:References:From;
b=TneQcgYi2lKyiDTbbn1swHrWGZ3VTnXkBSQAW5Qm9gxO3CZPZmpSut3P3vk1rFd2a
7NAEK1szCHTwb1w8wOB/czqd7hk+IfCtLAjSjWybSD1hKj+2tmGqst5AYqyYkROYd/
J+WfoaT9edoCYbJBCuxrz0FVkVCH/et/qNUTJcj0=
To: Daniel Kahn Gillmor <dkg@fifthhorseman.net>
From: Daniel Huigens <d.huigens@protonmail.com>
Cc: Kai Engert <kaie@kuix.de>, openpgp@ietf.org
Reply-To: Daniel Huigens <d.huigens@protonmail.com>
Message-ID: <urWkJCDv48jghSgn0ls39L7e-pB9AcXpmmZmQYuspEXptyvnIoSKEU6fy01wMpLIomkdtNNkGXDN3dfdA0kZyr6jthK_bRoquGj4MA7ovIE=@protonmail.com>
In-Reply-To: <87y2azuv8a.fsf@fifthhorseman.net>
References: <c2b4b0ea-ed14-79a0-c547-5fe79fc35fc0@kuix.de>
<87y2azuv8a.fsf@fifthhorseman.net>
MIME-Version: 1.0
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: quoted-printable
Archived-At: <https://mailarchive.ietf.org/arch/msg/openpgp/ifm3dqQdyh8kOTZF7yONAsDZb3Q>
Subject: Re: [openpgp] German BSI, PQC for OpenPGP in Thunderbird,
X-BeenThere: openpgp@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Ongoing discussion of OpenPGP issues." <openpgp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/openpgp>,
<mailto:openpgp-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/openpgp/>
List-Post: <mailto:openpgp@ietf.org>
List-Help: <mailto:openpgp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/openpgp>,
<mailto:openpgp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 28 Jun 2021 09:05:37 -0000
Hi all, For what it's worth, we (ProtonMail) were also planning to create an experimental implementation of post-quantum crypto in OpenPGP, sometime this fall - not intending to "create a standard", rather our rationale was that an experimental implementation could teach us something about a potential standardization in the future. That being said, if the WG is ready for this work by then, we are of course happy to contribute to that work, and collaborate on a potential standardization while working on an experimental implementation. Depending on when someone applies to this tender from the BSI, perhaps they could do the same. While it's of course up for debate, we had a similar set of algorithms in mind to use for the experimental implementation (using a hybrid approach of both post-quantum and classical algorithms). We do think that it makes more sense to wait for NIST standardization for the final standardization of PQC in OpenPGP - but even if the set of standardized algorithms ends up being different, the high-level work might still teach us something, so we are in principle not opposed to this work. If someone applies to this tender before the WG is ready for this work, we would hope / recommend that they take a similar approach as we were planning, and create an experimental implementation that could inform, but not define, the final specification. That being said, as soon as this WG has the bandwidth to work on this, hopefully the person working on that could join the WG and help draft a specification, and as I said we would be happy to contribute to that effort as well. Best regards, Daniel Huigens
- [openpgp] German BSI, PQC for OpenPGP in Thunderb… Kai Engert
- Re: [openpgp] German BSI, PQC for OpenPGP in Thun… Derek Atkins
- Re: [openpgp] German BSI, PQC for OpenPGP in Thun… Daniel Kahn Gillmor
- Re: [openpgp] German BSI, PQC for OpenPGP in Thun… Kai Engert
- Re: [openpgp] German BSI, PQC for OpenPGP in Thun… Michael Richardson
- Re: [openpgp] German BSI, PQC for OpenPGP in Thun… Alessandro Barenghi
- Re: [openpgp] German BSI, PQC for OpenPGP in Thun… Daniel Huigens
- Re: [openpgp] German BSI, PQC for OpenPGP in Thun… Werner Koch
- Re: [openpgp] German BSI, PQC for OpenPGP in Thun… Justus Winter
- Re: [openpgp] German BSI, PQC for OpenPGP in Thun… Kai Engert
- Re: [openpgp] German BSI, PQC for OpenPGP in Thun… Daniel Kahn Gillmor