Re: [saag] Follow-up to IETF 111 discussion on PQC agility
"Kampanakis, Panos" <kpanos@amazon.com> Thu, 21 October 2021 02:35 UTC
Return-Path: <prvs=92153450d=kpanos@amazon.com>
X-Original-To: saag@ietfa.amsl.com
Delivered-To: saag@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 38B213A0FDC for <saag@ietfa.amsl.com>; Wed, 20 Oct 2021 19:35:52 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -10.049
X-Spam-Level:
X-Spam-Status: No, score=-10.049 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.452, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_MSPIKE_H4=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, USER_IN_DEF_SPF_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=amazon.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id zxnJ96uMcmnm for <saag@ietfa.amsl.com>; Wed, 20 Oct 2021 19:35:46 -0700 (PDT)
Received: from smtp-fw-80007.amazon.com (smtp-fw-80007.amazon.com [99.78.197.218]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D466E3A0FDB for <saag@ietf.org>; Wed, 20 Oct 2021 19:35:46 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=amazon.com; i=@amazon.com; q=dns/txt; s=amazon201209; t=1634783747; x=1666319747; h=from:to:date:message-id:references:in-reply-to: content-transfer-encoding:mime-version:subject; bh=zKJrwvRESpRg7M4i5iVGKj9K77II59/XuM6592G63eM=; b=fHSwFq6vo+dZtFLlqwiX98AIbjCJSom5AyN5ai6ajeNkZ7idU5vRVXSj z1BXmg0TlYjaqRWdQIGjsx5f3HNs2Etb1GX+UAuz4l8aybd4XT2+TpaRP BgPk/UNxL/KU1Ebq25K0FIkLAoTPNajtzjk86wuh0O19YmmVIX3dGaGql o=;
X-IronPort-AV: E=Sophos;i="5.87,168,1631577600"; d="scan'208";a="35737296"
Thread-Topic: [saag] Follow-up to IETF 111 discussion on PQC agility
Received: from pdx4-co-svc-p1-lb2-vlan2.amazon.com (HELO email-inbound-relay-iad-1a-8691d7ea.us-east-1.amazon.com) ([10.25.36.210]) by smtp-border-fw-80007.pdx80.corp.amazon.com with ESMTP; 21 Oct 2021 02:35:38 +0000
Received: from EX13MTAUWB001.ant.amazon.com (iad12-ws-svc-p26-lb9-vlan2.iad.amazon.com [10.40.163.34]) by email-inbound-relay-iad-1a-8691d7ea.us-east-1.amazon.com (Postfix) with ESMTPS id 842FFC09DD; Thu, 21 Oct 2021 02:35:37 +0000 (UTC)
Received: from EX13D01ANC001.ant.amazon.com (10.43.157.154) by EX13MTAUWB001.ant.amazon.com (10.43.161.249) with Microsoft SMTP Server (TLS) id 15.0.1497.24; Thu, 21 Oct 2021 02:35:36 +0000
Received: from EX13D01ANC003.ant.amazon.com (10.43.157.68) by EX13D01ANC001.ant.amazon.com (10.43.157.154) with Microsoft SMTP Server (TLS) id 15.0.1497.24; Thu, 21 Oct 2021 02:35:34 +0000
Received: from EX13D01ANC003.ant.amazon.com ([10.43.157.68]) by EX13D01ANC003.ant.amazon.com ([10.43.157.68]) with mapi id 15.00.1497.024; Thu, 21 Oct 2021 02:35:35 +0000
From: "Kampanakis, Panos" <kpanos@amazon.com>
To: Roman Danyliw <rdd@cert.org>, "saag@ietf.org" <saag@ietf.org>
Thread-Index: AdfF22xsCTUa/STJRlOWaHNtcH7tSAAFYofw
Date: Thu, 21 Oct 2021 02:35:35 +0000
Message-ID: <90b3d5ee4fc44546a2488f4a18612665@EX13D01ANC003.ant.amazon.com>
References: <BN1P110MB0939B4BB660DFCDBB598B44EDCBE9@BN1P110MB0939.NAMP110.PROD.OUTLOOK.COM>
In-Reply-To: <BN1P110MB0939B4BB660DFCDBB598B44EDCBE9@BN1P110MB0939.NAMP110.PROD.OUTLOOK.COM>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-ms-exchange-transport-fromentityheader: Hosted
x-originating-ip: [10.43.157.247]
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
Archived-At: <https://mailarchive.ietf.org/arch/msg/saag/sS9Qok2fh9lktcsQp0axEJnh_pk>
Subject: Re: [saag] Follow-up to IETF 111 discussion on PQC agility
X-BeenThere: saag@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Security Area Advisory Group <saag.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/saag>, <mailto:saag-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/saag/>
List-Post: <mailto:saag@ietf.org>
List-Help: <mailto:saag-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/saag>, <mailto:saag-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 21 Oct 2021 02:35:52 -0000
Hi Roman, (a) Imo "CURDLE-style" WG is the most suitable. It can go as deep as its participants and their expertise allows it to go. Although in reality it is more likely to focus on a few areas like CURLE ended up doing. (b) Some of the work the TLS and LAMPS WGs are already doing. For example how PQ KEMs are used in hybrid key exchange in TLS will resemble how key exchange takes place in SSH. So I would expect the TLS and LAMPS PQ efforts to cross pollinate with this WGs efforts. (c) Imo SSH and DNSSEC initially. We ought to get some DNSSEC experts for the latter though. For SSH I think there is interest already. JOSE, XML or other orphan standards can be added in the charter if there is more interest by participants, especially given that there was no documents coming out of CURDLE for those. Rgs, Panos -----Original Message----- From: saag <saag-bounces@ietf.org> On Behalf Of Roman Danyliw Sent: Wednesday, October 20, 2021 4:26 PM To: saag@ietf.org Subject: [EXTERNAL] [saag] Follow-up to IETF 111 discussion on PQC agility CAUTION: This email originated from outside of the organization. Do not click links or open attachments unless you can confirm the sender and know the content is safe. Hi! At the past SAAG meeting at IETF 111, we had a discussion on approaches for ensuring post-quantum cryptography (PQC) agility in IETF work [1]. The mic-line and jabber generated a robust discussion about PQC and generic priorities, but didn't get to discussing specific actions. Also introduced during that SAAG meeting was a draft "CURDLE-style" (i.e., a scope like the CURDLE WG [2]) charter for PQC agility [3]. This charter defined an approach to fill the gap of adapting or updating IETF protocols, registries, and associated code points, for which no other WG exists, with PQ cryptographic mechanisms. Left for discussion was which specific work and partners should be considered. Since the IETF 111, we've had some mailing list discussion [4] on refining a proposed approach via [3] and are beginning to define what work might be a candidate for needing PQC agility but doesn't have a natural, existing WG. More feedback would be helpful on: (a) Should we be considering an alternative to this kind of "last resort"/"CURDLE-style" WG? (b) Per the template field "[Post Quantum work collaborators]" in [3], who should be our partners for PQC guidance? Current suggestions are US NIST and IRTF CFRG. (c) Per the template field "[Protocols requiring attention without an active WG]" in [3], which work should be considered? Current suggestions are secure shell (SSH). Previous protocols considered during CURDLE were JOSE, DNSSEC, XML Digital Signatures and XML Encryption. Regards, Roman and Ben [1] https://datatracker.ietf.org/meeting/111/materials/slides-111-saag-how-should-the-ietf-approach-post-quantum-security-02 [2] https://datatracker.ietf.org/wg/curdle/about/ [3] https://github.com/rdanyliw/ietf-pq-maintenance/blob/main/pqm-charter.md [4] https://mailarchive.ietf.org/arch/msg/saag/oHqit0O7N7uhucuDAMwWgRPWqIc/ _______________________________________________ saag mailing list saag@ietf.org https://www.ietf.org/mailman/listinfo/saag
- Re: [saag] Follow-up to IETF 111 discussion on PQ… Kampanakis, Panos
- [saag] Follow-up to IETF 111 discussion on PQC ag… Roman Danyliw