IETF Logo Mail Archive

Re: [Pqc] Mapping the state of PQC and IETF - ssh

"Blumenthal, Uri - 0553 - MITLL" <uri@ll.mit.edu> Fri, 03 March 2023 14:30 UTC

Return-Path: <prvs=3426a414fe=uri@ll.mit.edu>
X-Original-To: pqc@ietfa.amsl.com
Delivered-To: pqc@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 48D0AC14CE52 for <pqc@ietfa.amsl.com>; Fri, 3 Mar 2023 06:30:56 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.596
X-Spam-Level:
X-Spam-Status: No, score=-2.596 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_LOW=-0.7, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id I5-bpsq6nVBb for <pqc@ietfa.amsl.com>; Fri, 3 Mar 2023 06:30:51 -0800 (PST)
Received: from MX3.LL.MIT.EDU (mx3.ll.mit.edu [129.55.12.52]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C7820C14F744 for <pqc@ietf.org>; Fri, 3 Mar 2023 06:30:51 -0800 (PST)
Received: from LLEX2019-3.mitll.ad.local (llex2019-3.llan.ll.mit.edu [172.25.4.125]) by MX3.LL.MIT.EDU (8.17.1.19/8.17.1.19) with ESMTPS id 323EUmn8106021 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=FAIL) for <pqc@ietf.org>; Fri, 3 Mar 2023 09:30:48 -0500
ARC-Seal: i=1; a=rsa-sha256; s=arcselector5401; d=microsoft.com; cv=none; b=WOHbUZ6E1TO6ssjAgPtVDIyIyHT3b2V/08DZJRVwcbCCxPLu1QMHzPLTLctrGlVYeZd2zHynhQ22TMYaN1ehLd3TvpjJDC0dIyqAhzYEpw+Jp0ffB3bytZsjuurVN6ljDet9Fk9tDkef8x6zpUco/zbSVbhUIai0ckXSXvZi7iTfz9XLv3/aJFJKilw4MSgb8SdJ4yay6tbAM/U5jGcJ85Zd61Oi1TizPHFTZ1TaRsmowe2/xvUc8N/LDzvH436BGKz4Ap421/bDAg0RlCX9yH4uMbr6zND8mn3u/6r5IEJ+Xz9vLsn7ai0futaaQrLQVpHUOcyIb9BkqdrOu1l8bQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector5401; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=mOeDSHnmck6MbJS3mqk3xGbr1gYFHmKz+06i2z0P0Fk=; b=xzEYiDyi+zTXlOPP6rU/fTwIJeaHSTMyKAnS1JQ5a5HEh2F4cUbupBqn/KBnQrMlNhROxzhSM+3lm6a6VbTNres2gysJloA5JnRcv/hCI3cEHsH7YhHh66gmbprnaqUVi7S8CMbxg0ufZT3GfiHqheYNyKNDbMd1L3wYOAlrnFQlYQOkumACW00MdbGZiVFm4YSOf+BkTT9p79WISuXPmb9gpLWGAFvlPRiaCNJ5lgdGaIE6l5YAKlLela/MRtVF04CwTcfVdv/O6tcBtVL0lM/fUiGh5+ryfcRI1ZglUi3/act45TxGmho8Zn00OIGENST8xhZbEw0ynD1edL6bkw==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=ll.mit.edu; dmarc=pass action=none header.from=ll.mit.edu; dkim=pass header.d=ll.mit.edu; arc=none
From: "Blumenthal, Uri - 0553 - MITLL" <uri@ll.mit.edu>
To: "pqc@ietf.org" <pqc@ietf.org>
Thread-Topic: [Pqc] Mapping the state of PQC and IETF - ssh
Thread-Index: AQHZTE+2//kLrFQyRUeCAdxpxVN86a7nKk6AgABL4QCAAXbsAIAAIsGA//+9LgA=
Date: Fri, 03 Mar 2023 14:30:46 +0000
Message-ID: <BE109C6F-943D-4D03-A3D2-333283C14514@ll.mit.edu>
References: <20230303112532.1126239.qmail@cr.yp.to> <b8defb79-eb40-06b8-f327-4c3c45850df6@gmail.com>
In-Reply-To: <b8defb79-eb40-06b8-f327-4c3c45850df6@gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach: yes
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/16.69.23010700
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: BN0P110MB1419:EE_|BN0P110MB1126:EE_
x-ms-office365-filtering-correlation-id: f8617462-6b4c-42b7-4fca-08db1bf3e103
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:BN0P110MB1419.NAMP110.PROD.OUTLOOK.COM; PTR:; CAT:NONE; SFS:(13230025)(39830400003)(366004)(396003)(136003)(451199018)(99936003)(38100700002)(6916009)(38070700005)(5660300002)(122000001)(66556008)(64756008)(66446008)(66946007)(66476007)(8676002)(41300700001)(2906002)(8936002)(41320700001)(966005)(76116006)(6512007)(26005)(6506007)(186003)(2616005)(83380400001)(66574015)(71200400001)(75432002)(508600001)(6486002)(86362001)(33656002)(19400905002)(45980500001); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: g4qyOVuYT8deJwvDT05XYj61BAbpTOjiizq/ycEAvf31U65m27Xw9SbnaEEsHlGbLRgIOfic0XdBpGS3j/RHytxqUc1hABlH07sHcabIBrAqBK153GV/66ZKJf7oDuC2QAv2yGzRbsfkaOgtNH94YSYWx+6uRXJqSwdt/MMICrfLlGydSMYIlB9Hu0ESb+8mw+rpXT+J+lHB12iFItZP6wFkyTufxiPX22dAtFD1+ThqDSUUORdFox6KSqoNewn0nt7SrcGcFgfyT5dLFVzKxsR1aB6ADZGoeeD+hDE/yfFuEGlgBbrsDWqxlyT07D4wIWre389Hc8O7EVq7gAUS9prsmOPcUQjLypHVIgf4Qu4eqNQSADbZC8OvJT7htY06lrETdCoDcc5dba/goD24JTMAL2Sg0Zt8B8YEuMfs7wg=
Content-Type: multipart/signed; protocol="application/pkcs7-signature"; micalg="sha256"; boundary="B_3760680646_3639212491"
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: BN0P110MB1419.NAMP110.PROD.OUTLOOK.COM
X-MS-Exchange-CrossTenant-Network-Message-Id: f8617462-6b4c-42b7-4fca-08db1bf3e103
X-MS-Exchange-CrossTenant-originalarrivaltime: 03 Mar 2023 14:30:46.8525 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 83d1efe3-698e-4819-911b-0a8fbe79d01c
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BN0P110MB1126
X-Proofpoint-ORIG-GUID: mgXMAeoP7tW3ZQoxRYdtuvavpokchQ_d
X-Proofpoint-GUID: mgXMAeoP7tW3ZQoxRYdtuvavpokchQ_d
X-Proofpoint-Virus-Version: vendor=baseguard engine=ICAP:2.0.219,Aquarius:18.0.942,Hydra:6.0.573,FMLib:17.11.170.22 definitions=2023-03-03_02,2023-03-03_01,2023-02-09_01
X-Proofpoint-Spam-Details: rule=notspam policy=default score=0 adultscore=0 suspectscore=0 spamscore=0 mlxlogscore=999 mlxscore=0 malwarescore=0 bulkscore=0 phishscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.12.0-2212070000 definitions=main-2303030124
Archived-At: <https://mailarchive.ietf.org/arch/msg/pqc/2xLoJyQGxy_1Fer2tRzjUmQ4Wug>
Subject: Re: [Pqc] Mapping the state of PQC and IETF - ssh
X-BeenThere: pqc@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Post Quantum Cryptography discussion list <pqc.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/pqc>, <mailto:pqc-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/pqc/>
List-Post: <mailto:pqc@ietf.org>
List-Help: <mailto:pqc-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/pqc>, <mailto:pqc-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 03 Mar 2023 14:30:56 -0000

> > At the opposite extreme, my understanding is that Russia demands back
> > doors in cryptography whether or not it's exported.
>
> Hm, good to know, I dont know.  I have not seen a change in stance from
> Russia with respect to crypto export controls recently, but I dont know
> their initial stance on crypto tech export controls either; it might be
> as you say - backdoors imposed, I don't know.

It is called SORM (translation: System for Operative Investigative Activities), and it is the law (in Russia):
https://en.wikipedia.org/wiki/SORM 

Also:
https://www.eff.org/deeplinks/2016/07/russia-asks-impossible-its-new-surveillance-laws 
https://www.dataguidance.com/news/russia-roskomnadzor-requires-telegram-provide 
https://www.hrw.org/news/2020/06/18/russia-growing-internet-isolation-control-censorship 

> they don't say 'quantum' anywhere  .  .  .

Because these laws apply to *all* crypto without exceptions.

> In this field, I suppose that Russia might want in the near future to
> develop its own concept of quantum resistance, however hard that might
> seem, i.e. regardless of cost.

I don't see what's so hard about it. E.g., China is doing that already, Germany (BSI) announced support for public standards that NIST didn't choose to proceed with. Whether it makes sense is a different question that I'm not going to tackle.

v2.23.0 | Report a Bug | By Email