IETF Logo Mail Archive

Re: [Pqc] Mapping the state of PQC and IETF - ssh

Thom Wiggers <thom@thomwiggers.nl> Fri, 10 March 2023 14:10 UTC

Return-Path: <thom@thomwiggers.nl>
X-Original-To: pqc@ietfa.amsl.com
Delivered-To: pqc@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 883B2C17B359 for <pqc@ietfa.amsl.com>; Fri, 10 Mar 2023 06:10:28 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.095
X-Spam-Level:
X-Spam-Status: No, score=-2.095 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=thomwiggers.nl
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 2BBSvWNIsNEA for <pqc@ietfa.amsl.com>; Fri, 10 Mar 2023 06:10:24 -0800 (PST)
Received: from mail-yw1-x1135.google.com (mail-yw1-x1135.google.com [IPv6:2607:f8b0:4864:20::1135]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id F0A8EC14CF1D for <pqc@ietf.org>; Fri, 10 Mar 2023 06:10:24 -0800 (PST)
Received: by mail-yw1-x1135.google.com with SMTP id 00721157ae682-53d277c1834so99351617b3.10 for <pqc@ietf.org>; Fri, 10 Mar 2023 06:10:24 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=thomwiggers.nl; s=google; t=1678457424; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:from:to:cc:subject:date:message-id:reply-to; bh=JAldGKTnUz2GQ7lV/elvOPgtPQIMSoCZa/tFPLsypGE=; b=N8raF1ORmv6KlHK0R/WWq2ePppZ9ktkWFchJzCTcDJY6R6Jk8yl1K+TwHZ85BhxTgA +FHqSuthIERSx2NpX1HRrYgTFiGaAriqzk5E/x2uTqE4gEhDTzMvMlRHHh2+6LvKyabJ jm1UZ37yrzxpjaFTjHmSytyfVBl4rHvfhBrHo=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; t=1678457424; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:x-gm-message-state:from:to:cc:subject:date:message-id :reply-to; bh=JAldGKTnUz2GQ7lV/elvOPgtPQIMSoCZa/tFPLsypGE=; b=itgQPGsxFJg0I7KNoYFexPf/MxXb59yx1GPA9YFInwLAfJMEt40PqT30YjOQPw68qe ELHveYMmj0AiggmX5MapvMs5hxOclF6V8PSF4XgzNCaF12VAa0gyuSrRYjo25qbwRz2U WD2QObiL8iLNn7PL953LT5KtuJsDe7g5iHZlqml+SxRdlDAA4gLvw+0Bsph7txAAQGbq rLv4ajFRxKoTu5iJA8507QhrEvqB9uODLI6j8pxTBUIAJELXaNp0sLMset+CmUI4sJSO FkYisx6C9HpgKBfl+X30W1BTlnhUgvKA/NxL02oZUdtraa0k/CnBIUNDZE2MDDmxlyxD rSHw==
X-Gm-Message-State: AO0yUKXZKQm7MQOJKZbdf3GkeC5qtGymc4PpeEnvdmNUH2SDIDQ8+sWr Ic6fh183VN+62sffGOJiDac+cF7aMsposIERoAHjTg==
X-Google-Smtp-Source: AK7set85mudvXWHvjBK7N7evZZLpmvUTvEd0FVsiLCiK7Xd0O+WGpYLv54905zXp4CrNWgu1lztBEZzz6UoCaauTydo=
X-Received: by 2002:a81:b626:0:b0:52e:dbc8:3e60 with SMTP id u38-20020a81b626000000b0052edbc83e60mr16020498ywh.2.1678457423546; Fri, 10 Mar 2023 06:10:23 -0800 (PST)
MIME-Version: 1.0
References: <20230303112532.1126239.qmail@cr.yp.to> <b086d1fb-c8a6-80df-320e-cd92e7ec2602@gmail.com>
In-Reply-To: <b086d1fb-c8a6-80df-320e-cd92e7ec2602@gmail.com>
From: Thom Wiggers <thom@thomwiggers.nl>
Date: Fri, 10 Mar 2023 15:10:07 +0100
Message-ID: <CABzBS7k2FSWxu--eNVe8-ptPPcJ+qRVosmE2TmsjSXi_v8czBg@mail.gmail.com>
To: Alexandre Petrescu <alexandre.petrescu@gmail.com>
Cc: pqc@ietf.org
Content-Type: multipart/alternative; boundary="00000000000080644d05f68c5201"
Archived-At: <https://mailarchive.ietf.org/arch/msg/pqc/mvNC_8Xh4z32vTaglUTfSQxwv88>
Subject: Re: [Pqc] Mapping the state of PQC and IETF - ssh
X-BeenThere: pqc@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Post Quantum Cryptography discussion list <pqc.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/pqc>, <mailto:pqc-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/pqc/>
List-Post: <mailto:pqc@ietf.org>
List-Help: <mailto:pqc-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/pqc>, <mailto:pqc-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 10 Mar 2023 14:10:28 -0000

Hi Alexandre,


Op vr 10 mrt 2023 om 14:47 schreef Alexandre Petrescu <
alexandre.petrescu@gmail.com>:

>
>
> But how about openssh saying "WE DO NOT RECOMMEND RELYING ON THIS FORK
> IN A PRODUCTION ENVIRONMENT OR TO PROTECT ANY SENSITIVE DATA"? at
> https://github.com/open-quantum-safe/openssl
>
>
This is Open Quantum Safe's experimental fork of the OpenSSL project (they
similarly have an OpenSSH fork) and not the upstream OpenSSL (nor OpenSSH)
project.

OpenSSH has integrated NTRUPrime and made it the default key exchange
algorithm (hybridized with ECDH) in version 8.9, released just over a year
ago.

Cheers,

Thom


> Alex
>
> --
> Pqc mailing list
> Pqc@ietf.org
> https://www.ietf.org/mailman/listinfo/pqc
>

v2.23.0 | Report a Bug | By Email