Re: [Pqc] [Ext] Listing pointers to not-yet-standardized PQC algorithms
Daniel Christopher Apon <DAPON@mitre.org> Tue, 16 May 2023 16:03 UTC
Return-Path: <DAPON@mitre.org>
X-Original-To: pqc@ietfa.amsl.com
Delivered-To: pqc@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 5B865C151994 for <pqc@ietfa.amsl.com>; Tue, 16 May 2023 09:03:28 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.097
X-Spam-Level:
X-Spam-Status: No, score=-2.097 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=mitre.org
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 9KL5nqc5ILzA for <pqc@ietfa.amsl.com>; Tue, 16 May 2023 09:03:23 -0700 (PDT)
Received: from smtpvmsrv1.mitre.org (smtpvmsrv1.mitre.org [192.52.194.136]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 977CCC151988 for <pqc@ietf.org>; Tue, 16 May 2023 09:03:22 -0700 (PDT)
Received: from smtpvmsrv1.mitre.org (localhost.localdomain [127.0.0.1]) by localhost (Postfix) with SMTP id 61BC6172001D; Tue, 16 May 2023 12:03:21 -0400 (EDT)
Received: from smtpxrhmv1.mitre.org (unknown [192.52.194.155]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits)) (No client certificate requested) by smtpvmsrv1.mitre.org (Postfix) with ESMTPS id 28E16172004F; Tue, 16 May 2023 12:03:21 -0400 (EDT)
Received: from GCC02-DM3-obe.outbound.protection.outlook.com (mail-dm3gcc02lp2107.outbound.protection.outlook.com [104.47.65.107]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by smtpxrhmv1.mitre.org (Postfix) with ESMTPS id 0AE8E413DC7; Tue, 16 May 2023 12:03:21 -0400 (EDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=duL2Hbww607y2OSRgL1FMTlJiMR9QlFuYq6g7fEkqZdzyhvVaJRL94ElcTTly9t+Nqd/obwIyo8B+wuA8L8qSJ9NTpOWgDP3Y83tc05eYfGo33SNQj5u4h/I4nUdk3Aamlcb/iOhzMpLfvIAiCygmdWy/cewgFIxlgbSgzqpooVSe91j1j6oZykdqWQW7eYw4+PD0T+OvJrELp+1HLzdDGyAfCcaQ4peWDRMx2UvUDaxg5lacabz8lwO93A4FuTnGsCIyiSBIh/KdB17vKm22TedkeGpprIw5C6cd1Rb7/6TjiltXsPizwexVvlHIyr6OeC6ySdK5Xj3J/ELw6SKKA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=eXNsQxptNvnl7u+I7fYdUQQkMwXPN+doL686qRoJb34=; b=e1D2afzWiOzq4bxeUzFjUrQVlz8hVa8eXXb8qLYNE0upQ74n011jePfR2RcT6u3uu8vCGSbGWS/CQwfiRT3HcCKnADJxHZJfBHIn0ty0YhdOc++iVX9vYnurk0mH/OqkNcpPHNQFpYSO7YSXGC7vHOX40D38AmppMWhBr0B+EXP3hKU+54EHck9MuFw7yci+wkILJ5wn3bJqTIhR9ACnF9V161WaPcwS4j8nsz/NKuMIrt2bFiMCWX38BOc1F20Bb27RtL0Dhny1Bc2y9hDui+y2zgY18n7F7BYxRWpq7KSvKamRATUABiJODA/6/B1DKYvzSGFHj9cdqXw0T+/y8g==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=mitre.org; dmarc=pass action=none header.from=mitre.org; dkim=pass header.d=mitre.org; arc=none
Received: from SJ0PR09MB6941.namprd09.prod.outlook.com (2603:10b6:a03:260::9) by DM8PR09MB6549.namprd09.prod.outlook.com (2603:10b6:5:2eb::8) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.6387.34; Tue, 16 May 2023 16:03:19 +0000
Received: from SJ0PR09MB6941.namprd09.prod.outlook.com ([fe80::41fe:10af:4d4f:5baa]) by SJ0PR09MB6941.namprd09.prod.outlook.com ([fe80::41fe:10af:4d4f:5baa%6]) with mapi id 15.20.6387.033; Tue, 16 May 2023 16:03:19 +0000
From: Daniel Christopher Apon <DAPON@mitre.org>
To: Russ Housley <housley@vigilsec.com>, Paul Hoffman <paul.hoffman@icann.org>
CC: "pqc@ietf.org" <pqc@ietf.org>
Thread-Topic: [Pqc] [Ext] Listing pointers to not-yet-standardized PQC algorithms
Thread-Index: AQHZh16J/g+0lHQpgE+moPzlNVg28K9dClWAgAAEK0A=
Date: Tue, 16 May 2023 16:03:19 +0000
Message-ID: <SJ0PR09MB6941E32A21DC8EE76D822045BD799@SJ0PR09MB6941.namprd09.prod.outlook.com>
References: <20230515183021.276157.qmail@cr.yp.to> <F5B34B1D-0FBD-4A8D-8999-1CA999F399E5@icann.org> <8789D47C-5F53-4022-B8B4-94B40BCDA34A@vigilsec.com>
In-Reply-To: <8789D47C-5F53-4022-B8B4-94B40BCDA34A@vigilsec.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach: yes
X-MS-TNEF-Correlator:
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=mitre.org;
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: SJ0PR09MB6941:EE_|DM8PR09MB6549:EE_
x-ms-office365-filtering-correlation-id: 322694a4-308c-4a1d-fab5-08db56271133
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: hxPTukDrRf8QcPDsWosFHhq0Yy8g1xwby2ISwMa7UFXwwjMQypnxarHAo4Uy83lCh/f2zUwpAeaMwvvP9sT5xKd29CkU1nl5K47BXMAGhEzK6QjFf/2iHPhKv7ZjT9tlpfnaImyZNg5hpCey27d6l4cIx6mIR0ccz1k1d3tnd2or6hKWf1F23iM+xn/TOT8q2ZIcLVA69XRJOuNIE8+VbWPQxDkX0XiaprIR9jjox5iw5kZuY+dNT6dvcPHxYMH9AvbcHwyAp193bduagagPYtUE0HamjvF7OtcxRPvkoC2A5zVv/IwIql61zByk5kmquyTp0z1khUeHxE3tE1c33xNH84hJgqEtdStIXJmc+rmb2zmiD7PXMeHS3KZx+D26dN6AbhfCEVCIvEY8Yy4NQ3UbxZXu+sW8zriMwtDlh/Z+LnlQKOZUbsOnhHeYLFiPUcbqwlVeN8McSTPaF8HxjxW6Sm+E0ORsF1evStOf7l3ypPaSduV3P8MDHk7Eqyyk9Hs/TMKLW5Bvx5tiw6CZXjna+l0I0fBHSptJP13uAYu/5r3mhRDwEcMGBfZ1E27PBkUboYWpPLY6gGA7jMR79Rqm+UmQo8Sc/j+FUljJUeI=
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:SJ0PR09MB6941.namprd09.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230028)(366004)(451199021)(38070700005)(33656002)(86362001)(7696005)(966005)(110136005)(66556008)(66476007)(66446008)(66946007)(4326008)(64756008)(76116006)(498600001)(55016003)(71200400001)(5660300002)(8676002)(52536014)(2906002)(8936002)(38100700002)(122000001)(99936003)(186003)(6506007)(53546011)(9686003)(26005)(83380400001); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: multipart/signed; protocol="application/x-pkcs7-signature"; micalg="SHA1"; boundary="----=_NextPart_000_000F_01D987EE.66C011D0"
MIME-Version: 1.0
X-MS-Exchange-AntiSpam-ExternalHop-MessageData-ChunkCount: 1
X-MS-Exchange-AntiSpam-ExternalHop-MessageData-0: 8cZN0nKtuC8jXubNejYv9H5evmLVgzbScUSRMUe9hK2qYmeKL8ZepZVIx40UsNXpaVNV3qT20ZcF4OEicbWvae2sWbIUZtMXvyjSLPav5zplbf/VtX2jAoxBHVZ/rC9Wq/zNphvKl2ohRMrRRLqYbQ2LuFfROQyH35JGznbsNdG5NmW8v9VITdlAE0ZyDkyjpw53orTNTieyfbkRwiptjUD4wtI+Un3gHLN8Ri/BjhOovbj7ylwzxRvPtMgUOHwESRL+lvu0x7R+qtKaC8nG0ZY/DUqJCJnrtQfUmdafH+CEojoDajj6oltdD1JCgvTqJF5hsw/3/PrGX7eFt02DJvZBj0NbLrY3jzbKN39xY1AS6A9u5iC8hy+I/qpKh+W5zeSVyWJXV2aabgl4VA8Ez76eq1W9s+L3fM9KZp80hlZ4h+dT2Q3koFzxdsZhROMnJajaRYit/5RI01SGGl1e5lcfXt7zNs8jiRy2GTB3COqzPNmvAXrDGH0MKrla2HVffRqSjzAWC6wTcFok1tfzS1WTiiSneBwFO2ntCTYcZAbkGBa8V/GYo+Ki5vPoZlyyuyKGKc88xFoDdSOc70yYDC6iiRslwkKa9c8E/Mzajdr9riQfDKrifjDKSuBknnwNoBSleYH9M5E3hwispSAD1VSPYzTi1c1DaE/78+bKUX11NWTSKI2GSFG1W+V/0lOYTHIAwAYHWajM5YC9SagC+ROLTdY6QzhS41CU7qcYilTcny3LsqXKbI2L0buKagI2udxsCkhvkTi7kZQnLkMnGF2KIaHg1+3jtmCNJF7ArVj+oLXxGRKmHYkn6c122bqJzq1mQmyxpUBZfckUJwhTkQ==
X-OriginatorOrg: mitre.org
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: SJ0PR09MB6941.namprd09.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 322694a4-308c-4a1d-fab5-08db56271133
X-MS-Exchange-CrossTenant-originalarrivaltime: 16 May 2023 16:03:19.5326 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: c620dc48-1d50-4952-8b39-df4d54d74d82
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DM8PR09MB6549
X-MITRE: 8GQsMWxq66rxk57w
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=mitre.org; h=from:to:cc:subject:date:message-id:references:in-reply-to:content-type:mime-version; s=mZkevYdL; bh=eXNsQxptNvnl7u+I7fYdUQQkMwXPN+doL686qRoJb34=; b=fTmAvu0xSAMM4IqJ4uoUM31c2LRVEDZW3b9KsENtVd1eNT+6sS5vecsZ76/jxOJ5BCk3LCze7JSQVYwU9yYLKvca28ZHnGpxsreQprVqduYm3FULPhpa57bczeSrGVVMp9GC2uJi27vzQKN04eUv1kf9ZzXacKo8aZeLpv7dLuE=
Archived-At: <https://mailarchive.ietf.org/arch/msg/pqc/5O3_uu0E5GsMR6z1Uhj-8jLeEF0>
Subject: Re: [Pqc] [Ext] Listing pointers to not-yet-standardized PQC algorithms
X-BeenThere: pqc@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Post Quantum Cryptography discussion list <pqc.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/pqc>, <mailto:pqc-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/pqc/>
List-Post: <mailto:pqc@ietf.org>
List-Help: <mailto:pqc-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/pqc>, <mailto:pqc-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 16 May 2023 16:03:28 -0000
For that matter (my 2c), there seems to be no "post-quantum use in protocols" material (taken at moral face-value, not by a line-by-line reading of the charter) worth discussing when considering (i) approved algorithms like Kyber or (potentially?) NTRU as compared to (ii) non-approved algorithms like NTRU Prime. The protocol content is effectively the same. If e.g. some significant standardization body (fitting criteria broadly accepted across IETF) approves FrodoKEM or NIST approves Classic McEliece and/or one of {HQC, BIKE}, there would seem to be potentially more material to discuss regarding their use in protocols -- sometime in the future, but not currently. --Daniel -----Original Message----- From: Pqc <pqc-bounces@ietf.org> On Behalf Of Russ Housley Sent: Tuesday, May 16, 2023 11:39 AM To: Paul Hoffman <paul.hoffman@icann.org> Cc: pqc@ietf.org Subject: Re: [Pqc] [Ext] Listing pointers to not-yet-standardized PQC algorithms > On May 15, 2023, at 2:53 PM, Paul Hoffman <paul.hoffman@icann.org> wrote: > > On May 15, 2023, at 11:30 AM, D. J. Bernstein <djb@cr.yp.to> wrote: >> >>>> Also, to clarify, are you saying it was out of PQUIP's scope for >>>> the UK NCSC to write "I think we should focus on the NIST algorithms"? >>> People can choose what to focus their time and energy on within the >>> WG on things that are in scope. >> >> Please clarify. If making "any choices of PQ algorithms" is supposed >> to be out of scope then how can "focus on the NIST algorithms" be in scope? > > I'll respond as one of the co-chairs. Anyone can contribute opinions to the list. If the ensuing discussion goes far afield from the charter, then it is the chair's responsibility to try to gently rein it back in. > > There is a large difference between the WG making choices for other WGs and us discussing how the other WGs make their choices. That was part of my motivation for starting this thread. If one WG wants to wait for NIST to standardize its first KEM before standardizing that WG's protocol, and another WG wants to wait for NIST to standardize additional KEMs because that WG knows now that it won't like the first KEM (even though that means delaying and thus more traffic will be captured), and yet another WG wants to standardize a non-NIST KEM for some reason (which might make finishing the protocol go faster or slower): all of that is reasonable to discuss in the PQUIP charter. In particular, discussing how delaying standardization affects the amount of traffic captured is in scope. The LAMPS WG charter sets the scope of PQ algorithms that can be considered. They need to be NIST-approved or GFRG-approved. I hope we can have the same criteria across the IETF. Russ -- Pqc mailing list Pqc@ietf.org https://www.ietf.org/mailman/listinfo/pqc
- [Pqc] Listing pointers to not-yet-standardized PQ… Paul Hoffman
- Re: [Pqc] Listing pointers to not-yet-standardize… Kampanakis, Panos
- Re: [Pqc] Listing pointers to not-yet-standardize… Blumenthal, Uri - 0553 - MITLL
- Re: [Pqc] Listing pointers to not-yet-standardize… Mike Ounsworth
- Re: [Pqc] Listing pointers to not-yet-standardize… Florence D
- Re: [Pqc] Listing pointers to not-yet-standardize… Kris Kwiatkowski
- Re: [Pqc] Listing pointers to not-yet-standardize… D. J. Bernstein
- Re: [Pqc] Listing pointers to not-yet-standardize… Paul Wouters
- Re: [Pqc] Listing pointers to not-yet-standardize… D. J. Bernstein
- Re: [Pqc] Listing pointers to not-yet-standardize… Paul Wouters
- Re: [Pqc] Listing pointers to not-yet-standardize… D. J. Bernstein
- Re: [Pqc] [Ext] Listing pointers to not-yet-stand… Paul Hoffman
- Re: [Pqc] [EXTERNAL] Re: Listing pointers to not-… Mike Ounsworth
- Re: [Pqc] Listing pointers to not-yet-standardize… Roman Danyliw
- Re: [Pqc] Listing pointers to not-yet-standardize… Christopher Wood
- Re: [Pqc] [Ext] Listing pointers to not-yet-stand… D. J. Bernstein
- Re: [Pqc] [EXTERNAL] Re: Listing pointers to not-… D. J. Bernstein
- Re: [Pqc] [Ext] Listing pointers to not-yet-stand… Russ Housley
- Re: [Pqc] [Ext] Listing pointers to not-yet-stand… Daniel Christopher Apon
- Re: [Pqc] [Ext] Listing pointers to not-yet-stand… Mike Prorock
- Re: [Pqc] [Ext] Listing pointers to not-yet-stand… D. J. Bernstein
- Re: [Pqc] [Ext] Listing pointers to not-yet-stand… Roman Danyliw
- Re: [Pqc] Listing pointers to not-yet-standardize… Alexandre Petrescu