IETF Logo Mail Archive

Re: [Pqc] [Ext] Listing pointers to not-yet-standardized PQC algorithms

Daniel Christopher Apon <DAPON@mitre.org> Tue, 16 May 2023 16:03 UTC

Return-Path: <DAPON@mitre.org>
X-Original-To: pqc@ietfa.amsl.com
Delivered-To: pqc@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 5B865C151994 for <pqc@ietfa.amsl.com>; Tue, 16 May 2023 09:03:28 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.097
X-Spam-Level:
X-Spam-Status: No, score=-2.097 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=mitre.org
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 9KL5nqc5ILzA for <pqc@ietfa.amsl.com>; Tue, 16 May 2023 09:03:23 -0700 (PDT)
Received: from smtpvmsrv1.mitre.org (smtpvmsrv1.mitre.org [192.52.194.136]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 977CCC151988 for <pqc@ietf.org>; Tue, 16 May 2023 09:03:22 -0700 (PDT)
Received: from smtpvmsrv1.mitre.org (localhost.localdomain [127.0.0.1]) by localhost (Postfix) with SMTP id 61BC6172001D; Tue, 16 May 2023 12:03:21 -0400 (EDT)
Received: from smtpxrhmv1.mitre.org (unknown [192.52.194.155]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits)) (No client certificate requested) by smtpvmsrv1.mitre.org (Postfix) with ESMTPS id 28E16172004F; Tue, 16 May 2023 12:03:21 -0400 (EDT)
Received: from GCC02-DM3-obe.outbound.protection.outlook.com (mail-dm3gcc02lp2107.outbound.protection.outlook.com [104.47.65.107]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by smtpxrhmv1.mitre.org (Postfix) with ESMTPS id 0AE8E413DC7; Tue, 16 May 2023 12:03:21 -0400 (EDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=duL2Hbww607y2OSRgL1FMTlJiMR9QlFuYq6g7fEkqZdzyhvVaJRL94ElcTTly9t+Nqd/obwIyo8B+wuA8L8qSJ9NTpOWgDP3Y83tc05eYfGo33SNQj5u4h/I4nUdk3Aamlcb/iOhzMpLfvIAiCygmdWy/cewgFIxlgbSgzqpooVSe91j1j6oZykdqWQW7eYw4+PD0T+OvJrELp+1HLzdDGyAfCcaQ4peWDRMx2UvUDaxg5lacabz8lwO93A4FuTnGsCIyiSBIh/KdB17vKm22TedkeGpprIw5C6cd1Rb7/6TjiltXsPizwexVvlHIyr6OeC6ySdK5Xj3J/ELw6SKKA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=eXNsQxptNvnl7u+I7fYdUQQkMwXPN+doL686qRoJb34=; b=e1D2afzWiOzq4bxeUzFjUrQVlz8hVa8eXXb8qLYNE0upQ74n011jePfR2RcT6u3uu8vCGSbGWS/CQwfiRT3HcCKnADJxHZJfBHIn0ty0YhdOc++iVX9vYnurk0mH/OqkNcpPHNQFpYSO7YSXGC7vHOX40D38AmppMWhBr0B+EXP3hKU+54EHck9MuFw7yci+wkILJ5wn3bJqTIhR9ACnF9V161WaPcwS4j8nsz/NKuMIrt2bFiMCWX38BOc1F20Bb27RtL0Dhny1Bc2y9hDui+y2zgY18n7F7BYxRWpq7KSvKamRATUABiJODA/6/B1DKYvzSGFHj9cdqXw0T+/y8g==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=mitre.org; dmarc=pass action=none header.from=mitre.org; dkim=pass header.d=mitre.org; arc=none
Received: from SJ0PR09MB6941.namprd09.prod.outlook.com (2603:10b6:a03:260::9) by DM8PR09MB6549.namprd09.prod.outlook.com (2603:10b6:5:2eb::8) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.6387.34; Tue, 16 May 2023 16:03:19 +0000
Received: from SJ0PR09MB6941.namprd09.prod.outlook.com ([fe80::41fe:10af:4d4f:5baa]) by SJ0PR09MB6941.namprd09.prod.outlook.com ([fe80::41fe:10af:4d4f:5baa%6]) with mapi id 15.20.6387.033; Tue, 16 May 2023 16:03:19 +0000
From: Daniel Christopher Apon <DAPON@mitre.org>
To: Russ Housley <housley@vigilsec.com>, Paul Hoffman <paul.hoffman@icann.org>
CC: "pqc@ietf.org" <pqc@ietf.org>
Thread-Topic: [Pqc] [Ext] Listing pointers to not-yet-standardized PQC algorithms
Thread-Index: AQHZh16J/g+0lHQpgE+moPzlNVg28K9dClWAgAAEK0A=
Date: Tue, 16 May 2023 16:03:19 +0000
Message-ID: <SJ0PR09MB6941E32A21DC8EE76D822045BD799@SJ0PR09MB6941.namprd09.prod.outlook.com>
References: <20230515183021.276157.qmail@cr.yp.to> <F5B34B1D-0FBD-4A8D-8999-1CA999F399E5@icann.org> <8789D47C-5F53-4022-B8B4-94B40BCDA34A@vigilsec.com>
In-Reply-To: <8789D47C-5F53-4022-B8B4-94B40BCDA34A@vigilsec.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach: yes
X-MS-TNEF-Correlator:
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=mitre.org;
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: SJ0PR09MB6941:EE_|DM8PR09MB6549:EE_
x-ms-office365-filtering-correlation-id: 322694a4-308c-4a1d-fab5-08db56271133
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: hxPTukDrRf8QcPDsWosFHhq0Yy8g1xwby2ISwMa7UFXwwjMQypnxarHAo4Uy83lCh/f2zUwpAeaMwvvP9sT5xKd29CkU1nl5K47BXMAGhEzK6QjFf/2iHPhKv7ZjT9tlpfnaImyZNg5hpCey27d6l4cIx6mIR0ccz1k1d3tnd2or6hKWf1F23iM+xn/TOT8q2ZIcLVA69XRJOuNIE8+VbWPQxDkX0XiaprIR9jjox5iw5kZuY+dNT6dvcPHxYMH9AvbcHwyAp193bduagagPYtUE0HamjvF7OtcxRPvkoC2A5zVv/IwIql61zByk5kmquyTp0z1khUeHxE3tE1c33xNH84hJgqEtdStIXJmc+rmb2zmiD7PXMeHS3KZx+D26dN6AbhfCEVCIvEY8Yy4NQ3UbxZXu+sW8zriMwtDlh/Z+LnlQKOZUbsOnhHeYLFiPUcbqwlVeN8McSTPaF8HxjxW6Sm+E0ORsF1evStOf7l3ypPaSduV3P8MDHk7Eqyyk9Hs/TMKLW5Bvx5tiw6CZXjna+l0I0fBHSptJP13uAYu/5r3mhRDwEcMGBfZ1E27PBkUboYWpPLY6gGA7jMR79Rqm+UmQo8Sc/j+FUljJUeI=
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:SJ0PR09MB6941.namprd09.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230028)(366004)(451199021)(38070700005)(33656002)(86362001)(7696005)(966005)(110136005)(66556008)(66476007)(66446008)(66946007)(4326008)(64756008)(76116006)(498600001)(55016003)(71200400001)(5660300002)(8676002)(52536014)(2906002)(8936002)(38100700002)(122000001)(99936003)(186003)(6506007)(53546011)(9686003)(26005)(83380400001); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: multipart/signed; protocol="application/x-pkcs7-signature"; micalg="SHA1"; boundary="----=_NextPart_000_000F_01D987EE.66C011D0"
MIME-Version: 1.0
X-MS-Exchange-AntiSpam-ExternalHop-MessageData-ChunkCount: 1
X-MS-Exchange-AntiSpam-ExternalHop-MessageData-0: 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
X-OriginatorOrg: mitre.org
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: SJ0PR09MB6941.namprd09.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 322694a4-308c-4a1d-fab5-08db56271133
X-MS-Exchange-CrossTenant-originalarrivaltime: 16 May 2023 16:03:19.5326 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: c620dc48-1d50-4952-8b39-df4d54d74d82
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DM8PR09MB6549
X-MITRE: 8GQsMWxq66rxk57w
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=mitre.org; h=from:to:cc:subject:date:message-id:references:in-reply-to:content-type:mime-version; s=mZkevYdL; bh=eXNsQxptNvnl7u+I7fYdUQQkMwXPN+doL686qRoJb34=; b=fTmAvu0xSAMM4IqJ4uoUM31c2LRVEDZW3b9KsENtVd1eNT+6sS5vecsZ76/jxOJ5BCk3LCze7JSQVYwU9yYLKvca28ZHnGpxsreQprVqduYm3FULPhpa57bczeSrGVVMp9GC2uJi27vzQKN04eUv1kf9ZzXacKo8aZeLpv7dLuE=
Archived-At: <https://mailarchive.ietf.org/arch/msg/pqc/5O3_uu0E5GsMR6z1Uhj-8jLeEF0>
Subject: Re: [Pqc] [Ext] Listing pointers to not-yet-standardized PQC algorithms
X-BeenThere: pqc@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Post Quantum Cryptography discussion list <pqc.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/pqc>, <mailto:pqc-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/pqc/>
List-Post: <mailto:pqc@ietf.org>
List-Help: <mailto:pqc-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/pqc>, <mailto:pqc-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 16 May 2023 16:03:28 -0000

For that matter (my 2c), there seems to be no "post-quantum use in
protocols" material (taken at moral face-value, not by a line-by-line
reading of the charter) worth discussing when considering (i) approved
algorithms like Kyber or (potentially?) NTRU as compared to (ii)
non-approved algorithms like NTRU Prime. The protocol content is effectively
the same.

If e.g. some significant standardization body (fitting criteria broadly
accepted across IETF) approves FrodoKEM or NIST approves Classic McEliece
and/or one of {HQC, BIKE}, there would seem to be potentially more material
to discuss regarding their use in protocols -- sometime in the future, but
not currently.

--Daniel

-----Original Message-----
From: Pqc <pqc-bounces@ietf.org> On Behalf Of Russ Housley
Sent: Tuesday, May 16, 2023 11:39 AM
To: Paul Hoffman <paul.hoffman@icann.org>
Cc: pqc@ietf.org
Subject: Re: [Pqc] [Ext] Listing pointers to not-yet-standardized PQC
algorithms


> On May 15, 2023, at 2:53 PM, Paul Hoffman <paul.hoffman@icann.org> wrote:
> 
> On May 15, 2023, at 11:30 AM, D. J. Bernstein <djb@cr.yp.to> wrote:
>> 
>>>> Also, to clarify, are you saying it was out of PQUIP's scope for 
>>>> the UK NCSC to write "I think we should focus on the NIST algorithms"?
>>> People can choose what to focus their time and energy on within the 
>>> WG on things that are in scope.
>> 
>> Please clarify. If making "any choices of PQ algorithms" is supposed 
>> to be out of scope then how can "focus on the NIST algorithms" be in
scope?
> 
> I'll respond as one of the co-chairs. Anyone can contribute opinions to
the list. If the ensuing discussion goes far afield from the charter, then
it is the chair's responsibility to try to gently rein it back in.
> 
> There is a large difference between the WG making choices for other WGs
and us discussing how the other WGs make their choices. That was part of my
motivation for starting this thread. If one WG wants to wait for NIST to
standardize its first KEM before standardizing that WG's protocol, and
another WG wants to wait for NIST to standardize additional KEMs because
that WG knows now that it won't like the first KEM (even though that means
delaying and thus more traffic will be captured), and yet another WG wants
to standardize a non-NIST KEM for some reason (which might make finishing
the protocol go faster or slower): all of that is reasonable to discuss in
the PQUIP charter. In particular, discussing how delaying standardization
affects the amount of traffic captured is in scope.

The LAMPS WG charter sets the scope of PQ algorithms that can be considered.
They need to be NIST-approved or GFRG-approved. I hope we can have the same
criteria across the IETF.

Russ

--
Pqc mailing list
Pqc@ietf.org
https://www.ietf.org/mailman/listinfo/pqc

v2.23.0 | Report a Bug | By Email