IETF Logo Mail Archive

Re: [saag] About the "Draft text for a PQ Maintenance WG"

Roman Danyliw <rdd@cert.org> Thu, 05 August 2021 18:46 UTC

Return-Path: <rdd@cert.org>
X-Original-To: saag@ietfa.amsl.com
Delivered-To: saag@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 1AA623A1DE5 for <saag@ietfa.amsl.com>; Thu, 5 Aug 2021 11:46:11 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id c687QS5KW0L0 for <saag@ietfa.amsl.com>; Thu, 5 Aug 2021 11:46:06 -0700 (PDT)
Received: from USG02-BN3-obe.outbound.protection.office365.us (mail-bn3usg02on0090.outbound.protection.office365.us [23.103.208.90]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 4B7BE3A1DE2 for <saag@ietf.org>; Thu, 5 Aug 2021 11:46:06 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector5401; d=microsoft.com; cv=none; b=Eb8GZOgZeUXLrbquX0aF0oq9ftntHr/OrJ4XjITJf4KxR8OuHzcrBENof6QUfhiK2j0uhMCziJQWRnguBjrIk3z7HkHu8HMNVaifi3K65d8skUN8UV/EUMLmrS8zScAxbVQAtSnTcKfOd8NmLi6YWgR8rGlQqHTlHjzyt0//5jU7NaA/9TJ3sW0oaNCtHLB8j1KexvC4JXc3fQb4P1YglB2JVxUT88LcWAWeWoIHzhI+Ho53aKv6pCRN4LnOcWHp5AyjXvn07tY2H4LoXOancvrYEYZgCAhn6bDBZ/zKgMaOQiYHhtdZgizm/CJCaztC0YBHF4tReRGzimvk81a6zg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector5401; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=1VpwmWPHq4ze/NAEWBsDNb+mCuRZfqFvKhqtGa1lxp8=; b=aa2gVqfRyE+BDapASBJaQn5GjiUn6qPwHirrNycVhWUxfwT+aEndZYLQoU9e0JJIR8A6WUGPIlLpD9DX4tOtY5/rL319I+SjZloYsfXh6PDZAIgKKZAutQpgj4g9tAJ3ciq/c8DHPtrWqeJeYcANcZQHr4h2jWj9wjHN68scFLBNcQN4h3aueldhdYZSDvFlDrAlkTvY++3Qfq3zBS4+5voWfx64Gz4Cnlv3WZaboGIJ/IUK8iWKxokbYOxee0PZ7oxyHjpDqYlv4pg9P+AtslNNTLSmS62foK8xfjSkMrpYVC6E6JYCZFIRtJF6KgxNEOEUrwA+VZQJ9wHTf9O4zQ==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cert.org; dmarc=pass action=none header.from=cert.org; dkim=pass header.d=cert.org; arc=none
Received: from DM3P110MB0538.NAMP110.PROD.OUTLOOK.COM (2001:489a:200:414::9) by DM3P110MB0425.NAMP110.PROD.OUTLOOK.COM (2001:489a:200:412::14) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.4373.26; Thu, 5 Aug 2021 18:46:03 +0000
Received: from DM3P110MB0538.NAMP110.PROD.OUTLOOK.COM ([fe80::8156:6fdb:538a:7d36]) by DM3P110MB0538.NAMP110.PROD.OUTLOOK.COM ([fe80::8156:6fdb:538a:7d36%5]) with mapi id 15.20.4352.035; Thu, 5 Aug 2021 18:46:03 +0000
From: Roman Danyliw <rdd@cert.org>
To: Ludovic Perret <ludovic.perret@cryptonext-security.com>, "saag@ietf.org" <saag@ietf.org>
Thread-Topic: About the "Draft text for a PQ Maintenance WG"
Thread-Index: AQHXg+uYd2SPaUVHQES998yOMmOr+KtlRcbg
Date: Thu, 05 Aug 2021 18:46:03 +0000
Message-ID: <DM3P110MB05389FCB0D484180516BE7F8DCF29@DM3P110MB0538.NAMP110.PROD.OUTLOOK.COM>
References: <emda776da0-3cae-450e-8ee7-530040d4bc6d@desktop-8g465ua>
In-Reply-To: <emda776da0-3cae-450e-8ee7-530040d4bc6d@desktop-8g465ua>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: cryptonext-security.com; dkim=none (message not signed) header.d=none;cryptonext-security.com; dmarc=none action=none header.from=cert.org;
x-originating-ip: [71.112.171.248]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: b3a505dd-ea48-4ca3-fce2-08d9584146d8
x-ms-traffictypediagnostic: DM3P110MB0425:
x-microsoft-antispam-prvs: <DM3P110MB04254FE2A5EA4D0203A263B0DCF29@DM3P110MB0425.NAMP110.PROD.OUTLOOK.COM>
x-ms-oob-tlc-oobclassifiers: OLM:10000;
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:DM3P110MB0538.NAMP110.PROD.OUTLOOK.COM; PTR:; CAT:NONE; SFS:(376002)(396003)(136003)(39840400004)(346002)(366004)(38070700005)(110136005)(71200400001)(186003)(38100700002)(2906002)(122000001)(33656002)(508600001)(9686003)(55016002)(86362001)(316002)(66946007)(26005)(966005)(166002)(53546011)(66446008)(64756008)(66556008)(8936002)(66476007)(83380400001)(52536014)(8676002)(5660300002)(6506007)(76116006)(7696005); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
x-ms-exchange-transport-forked: True
Content-Type: multipart/alternative; boundary="_000_DM3P110MB05389FCB0D484180516BE7F8DCF29DM3P110MB0538NAMP_"
MIME-Version: 1.0
X-OriginatorOrg: cert.org
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: DM3P110MB0538.NAMP110.PROD.OUTLOOK.COM
X-MS-Exchange-CrossTenant-Network-Message-Id: b3a505dd-ea48-4ca3-fce2-08d9584146d8
X-MS-Exchange-CrossTenant-originalarrivaltime: 05 Aug 2021 18:46:03.3420 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 95a9dce2-04f2-4043-995d-1ec3861911c6
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DM3P110MB0425
Archived-At: <https://mailarchive.ietf.org/arch/msg/saag/JpRsdRALIYtdoQ3RnOGEMCWClj4>
Subject: Re: [saag] About the "Draft text for a PQ Maintenance WG"
X-BeenThere: saag@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Security Area Advisory Group <saag.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/saag>, <mailto:saag-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/saag/>
List-Post: <mailto:saag@ietf.org>
List-Help: <mailto:saag-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/saag>, <mailto:saag-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 05 Aug 2021 18:46:11 -0000

Hi Ludovic!

Thanks for the feedback.  More inline …

From: saag <saag-bounces@ietf.org> On Behalf Of Ludovic Perret
Sent: Wednesday, July 28, 2021 4:03 PM
To: saag@ietf.org
Subject: [saag] About the "Draft text for a PQ Maintenance WG"

Dear,

Following the meeting of yesterday and the discussion on post-quantum, I have few comments on the  draft text for a PQ Maintenance WG :
https://datatracker.ietf.org/meeting/111/materials/slides-111-saag-companion-to-how-should-the-ietf-approach-pq-security-draft-pq-maintenance-charter-00

  *    [Post Quantum work collaborators] --> what is exactly the semantic behind that ? Do you expect a commitment from pq people ?
[Roman] “[Post Quantum work collaborators]” was a variable of sorts to explicitly name organizations which would be producers of PQ crypto.
Contextually, the “[Post Quantum work collaborators]” variable is used twice to explain which organizations the IETF is watching and where it might get algorithms:
“Active work is underway at the [Post Quantum Work Collaborators] to develop and validate Post-Quantum (PQ) cryptographic mechanisms expected to be resilient to the cryptanalysis capabilities of future quantum computing environments.”
The [Planned WG Acronym] WG will not define new PQ algorithms. It will only standardize the usage of PQ algorithms and methods that are defined by or received review from [Post Quantum work collaborators].
I’ve updated the placeholder section to read “[Post Quantum work collaborators] = US National Institute of Standards and Technology, IRTF CFRG” to make that clearer.  We might want to polish that list.

  *   The [Planned WG Acronym] WG will not define new PQ algorithms and methods --> What do you mean by method ?
[Roman] Agreed on the lack of precision.  It was intended to catch additional guidance that might come with those algorithms.  For now, I’ll remove it and we can decide later on whether that is too loose.

     *   I would suggest "The [Planned WG Acronym] WG will rely on future NIST or international pq  standards"
[Roman] That precise scope was the intent of the second sentence.  “It will only standardize the usage of PQ algorithms and methods that are specified by or received review from [Post Quantum work collaborators].”  The verb “standardize” is an important symmetry to the relationship between the IRTF (CFRG) and the IETF (and was added there at IRTF request).  The IRTF doesn’t make standards and the IETF relies on their informational documents to created specifications/standards.  IMO, it’s import to be clear on which sources this WG might rely on.
Regards,
Roman

Best Regards,

Ludovic Perret,

CPO, co-founder, CryptoNext Security
https://cryptonext-security.com/

v2.23.0 | Report a Bug | By Email