Re: [Secdispatch] Problem statement for post-quantum multi-algorithm PKI
Ira McDonald <blueroofmusic@gmail.com> Mon, 16 September 2019 21:59 UTC
Return-Path: <blueroofmusic@gmail.com>
X-Original-To: secdispatch@ietfa.amsl.com
Delivered-To: secdispatch@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E81F51201A3 for <secdispatch@ietfa.amsl.com>; Mon, 16 Sep 2019 14:59:34 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.998
X-Spam-Level:
X-Spam-Status: No, score=-1.998 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 6vvOO-Iwdf_T for <secdispatch@ietfa.amsl.com>; Mon, 16 Sep 2019 14:59:32 -0700 (PDT)
Received: from mail-vs1-xe2f.google.com (mail-vs1-xe2f.google.com [IPv6:2607:f8b0:4864:20::e2f]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 62CAA120178 for <secdispatch@ietf.org>; Mon, 16 Sep 2019 14:59:32 -0700 (PDT)
Received: by mail-vs1-xe2f.google.com with SMTP id w195so679431vsw.11 for <secdispatch@ietf.org>; Mon, 16 Sep 2019 14:59:32 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=TRVfsq84D+2bI/6o+qE64xij4G+cf5L5TaRm8p7fRos=; b=CVmu3jx+k/CTYIt2SSLGFIFL3cDB4+vosJLnzETZv8b+4gcbQH9cni2ZNUfaQ9cWv2 SjVvcxWDmSiaSq7/jWg5GGlJgEjCVzxR1rei+yKwPJt2TlnMKomcT0Pw3bjIgyXKYQCh ttryI0lHyWew7bXPrObL9fj7cVsGhkZQYd1XBkQRVw5bhehOJsSNR2KUogRZ7t5yPurN IXu3LnIRXbG1+JoBW4vxyl2ECa8zpr2f7tFBx57P5iyaq1f+6eCzUl0XwshEWNsNGbHf bMBxC00Xgp6zsMpYvUzn37X4QwaTLrS+Zq9XgllGXy+6vwn7nCVmecWPVBTBODzu5vwx fZ1w==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=TRVfsq84D+2bI/6o+qE64xij4G+cf5L5TaRm8p7fRos=; b=m9KkiZ0p+3OH9k3nwAtU9NSelfCILxE9v5rhGCDKErpDVXVggWxKd9INjsbIgL9dUe BIuKIFmJHQJQpix4es6y5WXj6eP8eBGUmdF6Aqdxfzx2Q+Apf7nYtP4Sgn/689egJzqq AL20/caAjGE6fCF/bCiFg4/AEjnc1qVHi4uGnQjBilfK3ilNNqYU3onFFiiDywkWrD+I DflRLg2VG6njLFB+tMxReK5NYHrjYOYCD03giiT5KsJDUhKyr7AlhlXUR23yJ3E5KISB aBkSYDoFhUoQIGlX3+sBo0ntzHf1KWragSwafhb5CKXp8Khl4CUZspjd4Ms2pSuV9es/ 05Yw==
X-Gm-Message-State: APjAAAUr7jrC7xZD0agwnYcUeDl9wgsOc9F5GIi3v8UatT5wqfhoHWxr /nIFyWXtJ2uG2p1vg4eqM0NaMpw/4FSUF0oPOY4=
X-Google-Smtp-Source: APXvYqybybyhg+EN2INZmPKFoOMmLMsRCQxQ8vXtvMc6Wh31RgLR9tQEiKYxh4FW3oHJHdF/tXolF2wcXiFAQ42Cz98=
X-Received: by 2002:a67:f9cf:: with SMTP id c15mr134806vsq.240.1568671171558; Mon, 16 Sep 2019 14:59:31 -0700 (PDT)
MIME-Version: 1.0
References: <a2e32c33-8589-f3fb-97e5-c5977dfc64b4@openca.org> <BL0PR11MB317285DF599EC58CCF26FD5EC1B00@BL0PR11MB3172.namprd11.prod.outlook.com> <28224.1568427573@dooku.sandelman.ca> <cf1a301c-47d6-7565-ddc7-69048e3c08f3@cs.tcd.ie> <5F8D32EB-CE27-4ECD-997F-D0AAE4B798B5@akamai.com> <2b87f695-314c-5aed-14a4-9877fe254161@ericsson.com> <CAN40gStdbJ0TNoeL0VFU4Tx1F5ubtAdJnz+QJXYFFAP7W2OV7w@mail.gmail.com> <3cfa21d8-efe2-1a69-5268-0a39e9171fe1@cs.tcd.ie> <CAN40gSseUfKyJo8SZzLVQGnoSOKPHQJysx7zz_w=n_SGuckfSw@mail.gmail.com> <45237418-7C96-4823-A7C6-39E92586756E@akamai.com>
In-Reply-To: <45237418-7C96-4823-A7C6-39E92586756E@akamai.com>
From: Ira McDonald <blueroofmusic@gmail.com>
Date: Mon, 16 Sep 2019 17:59:21 -0400
Message-ID: <CAN40gSuzC2hQsFmB2SFd8CnicLWfyiqgePf0pTYsHXZ=s5FV-g@mail.gmail.com>
To: "Salz, Rich" <rsalz@akamai.com>, Ira McDonald <blueroofmusic@gmail.com>
Cc: Stephen Farrell <stephen.farrell@cs.tcd.ie>, "secdispatch@ietf.org" <secdispatch@ietf.org>
Content-Type: multipart/alternative; boundary="000000000000f342b00592b2b75b"
Archived-At: <https://mailarchive.ietf.org/arch/msg/secdispatch/i4j1LRmc0_nRYJgG-LCMywKQDSU>
Subject: Re: [Secdispatch] Problem statement for post-quantum multi-algorithm PKI
X-BeenThere: secdispatch@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Security Dispatch <secdispatch.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdispatch>, <mailto:secdispatch-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/secdispatch/>
List-Post: <mailto:secdispatch@ietf.org>
List-Help: <mailto:secdispatch-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdispatch>, <mailto:secdispatch-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 16 Sep 2019 21:59:35 -0000
Hi Rich, The autos *do* already support numerous algorithms (including nation-specific mandatory ones). They do update their crypto (for bug-fixes and for new algorithms). But when new algorithms are from an entirely different family and need hardware acceleration to achieve hard timing constraints *within* vehicle internal networks, there is no practical solution. Auto OEMs and parts suppliers are not going to dramatically increase the cost of their ECUs in order to add FPGAs or something else to allow field upgrades of their hardware acceleration. I perceive that this list doesn't care about this issue. Beware your lovely "connected cars" in future years. I'll give up doing a poor job of explaining the problem on this list. Cheers, - Ira Ira McDonald (Musician / Software Architect) Co-Chair - TCG Trusted Mobility Solutions WG Co-Chair - TCG Metadata Access Protocol SG Chair - Linux Foundation Open Printing WG Secretary - IEEE-ISTO Printer Working Group Co-Chair - IEEE-ISTO PWG Internet Printing Protocol WG IETF Designated Expert - IPP & Printer MIB Blue Roof Music / High North Inc http://sites.google.com/site/blueroofmusic http://sites.google.com/site/highnorthinc mailto: blueroofmusic@gmail.com PO Box 221 Grand Marais, MI 49839 906-494-2434 On Mon, Sep 16, 2019 at 5:53 PM Salz, Rich <rsalz@akamai.com> wrote: > So why are multiple algorithms needed if the target platform (cars) cannot > update to handle them? >
- Re: [Secdispatch] Problem statement for post-quan… Dr. Pala
- [Secdispatch] Problem statement for post-quantum … Mike Ounsworth
- Re: [Secdispatch] Problem statement for post-quan… Scott Fluhrer (sfluhrer)
- Re: [Secdispatch] Problem statement for post-quan… Stephen Farrell
- Re: [Secdispatch] [EXTERNAL]Re: Problem statement… Mike Ounsworth
- Re: [Secdispatch] [EXTERNAL]Re: Problem statement… Stephen Farrell
- Re: [Secdispatch] [EXTERNAL]Re: Problem statement… Daniel Van Geest
- Re: [Secdispatch] [EXTERNAL]Re: Problem statement… Panos Kampanakis (pkampana)
- Re: [Secdispatch] Problem statement for post-quan… Kathleen Moriarty
- Re: [Secdispatch] [EXTERNAL]Re: Problem statement… Mike Ounsworth
- Re: [Secdispatch] [EXTERNAL]Re: Problem statement… Stephen Farrell
- Re: [Secdispatch] Problem statement for post-quan… Michael Richardson
- Re: [Secdispatch] Problem statement for post-quan… Stephen Farrell
- Re: [Secdispatch] Problem statement for post-quan… Salz, Rich
- Re: [Secdispatch] Problem statement for post-quan… Michael Richardson
- Re: [Secdispatch] Problem statement for post-quan… Mohit Sethi M
- Re: [Secdispatch] Problem statement for post-quan… Ira McDonald
- Re: [Secdispatch] [EXTERNAL]Re: Problem statement… Mike Ounsworth
- Re: [Secdispatch] Problem statement for post-quan… Daniel Van Geest
- Re: [Secdispatch] Problem statement for post-quan… Stephen Farrell
- Re: [Secdispatch] Problem statement for post-quan… Panos Kampanakis (pkampana)
- Re: [Secdispatch] [EXTERNAL]Re: Problem statement… Mike Ounsworth
- Re: [Secdispatch] Problem statement for post-quan… Stephen Farrell
- Re: [Secdispatch] Problem statement for post-quan… Ira McDonald
- Re: [Secdispatch] Problem statement for post-quan… Salz, Rich
- Re: [Secdispatch] [EXTERNAL]Re: Problem statement… Stephen Farrell
- Re: [Secdispatch] Problem statement for post-quan… Ira McDonald
- Re: [Secdispatch] Problem statement for post-quan… Salz, Rich
- Re: [Secdispatch] Problem statement for post-quan… Ira McDonald
- Re: [Secdispatch] Problem statement for post-quan… Douglas Stebila
- Re: [Secdispatch] [EXTERNAL]Re: Problem statement… Mike Ounsworth
- Re: [Secdispatch] [EXTERNAL]Re: Problem statement… Stephen Farrell
- Re: [Secdispatch] Problem statement for post-quan… Richard Barnes
- Re: [Secdispatch] Problem statement for post-quan… Michael Richardson
- Re: [Secdispatch] Problem statement for post-quan… Ira McDonald
- Re: [Secdispatch] [EXTERNAL]Re: Problem statement… Michael Richardson
- Re: [Secdispatch] Problem statement for post-quan… Stephen Farrell
- Re: [Secdispatch] [EXTERNAL]Re: Problem statement… Mike Ounsworth
- Re: [Secdispatch] [EXTERNAL]Re: Problem statement… Mike Ounsworth
- Re: [Secdispatch] [EXTERNAL]Re: Problem statement… Stephen Farrell
- Re: [Secdispatch] Problem statement for post-quan… Martin Thomson
- Re: [Secdispatch] [EXTERNAL]Re: Problem statement… Phillip Hallam-Baker
- Re: [Secdispatch] Problem statement for post-quan… Phillip Hallam-Baker
- Re: [Secdispatch] [EXTERNAL]Re: Problem statement… Dr. Pala
- Re: [Secdispatch] Problem statement for post-quan… John Mattsson
- Re: [Secdispatch] Problem statement for post-quan… Markku-Juhani O. Saarinen
- Re: [Secdispatch] Problem statement for post-quan… John Mattsson
- Re: [Secdispatch] Problem statement for post-quan… Mike Ounsworth
- Re: [Secdispatch] Problem statement for post-quan… Benjamin Kaduk