[Sidrops] Re: New I-D: draft-yoshikawa-sidrops-pqc-rpki-00 (PQC signature profile for RPKI)

"yoshikawa.tomoki.67i@st.kyoto-u.ac.jp" <yoshikawa.tomoki.67i@st.kyoto-u.ac.jp> Thu, 25 June 2026 05:25 UTC

Return-Path: <yoshikawa.tomoki.67i@st.kyoto-u.ac.jp>
X-Original-To: sidrops@mail2.ietf.org
Delivered-To: sidrops@mail2.ietf.org
Received: from localhost (localhost [127.0.0.1]) by mail2.ietf.org (Postfix) with ESMTP id E21B9107039FB for <sidrops@mail2.ietf.org>; Wed, 24 Jun 2026 22:25:13 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=ietf.org; s=ietf1; t=1782365113; bh=b5am2kNVTinUO6ZfrDrBaLZRW8vFkOw9Wm/UnJtexmc=; h=From:To:CC:Subject:Date:References:In-Reply-To; b=yfMonbea4Vk0KpDZeilU/ZWpzqeDD+eW9MziOMq69nWLYRCBNV1tznqA3pKLqYJkN bgPgEJu1AA1dE3mPtf5vhgtCOZe8OVAwOZ3WY9h9FOLj6oY8dHfZAcEDVcB3Xjzfvq WoJLzSMaqt0VCuwyaeNxe7Esq/bjpN6xtDrD6q8U=
X-Virus-Scanned: amavisd-new at ietf.org
X-Spam-Flag: NO
X-Spam-Score: -1.997
X-Spam-Level:
X-Spam-Status: No, score=-1.997 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=0.001, RCVD_IN_VALIDITY_CERTIFIED_BLOCKED=0.001, RCVD_IN_VALIDITY_RPBL_BLOCKED=0.001, SPF_PASS=-0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: mail2.ietf.org (amavisd-new); dkim=pass (1024-bit key) header.d=st.kyoto-u.ac.jp
Received: from mail2.ietf.org ([166.84.6.31]) by localhost (mail2.ietf.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ajGvFDdyC-Nl for <sidrops@mail2.ietf.org>; Wed, 24 Jun 2026 22:25:11 -0700 (PDT)
Received: from OS0P286CU010.outbound.protection.outlook.com (mail-japanwestazon11021095.outbound.protection.outlook.com [40.107.74.95]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange ECDHE (P-384) server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by mail2.ietf.org (Postfix) with ESMTPS id 0202D107033A9 for <sidrops@ietf.org>; Wed, 24 Jun 2026 22:16:39 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector10001; d=microsoft.com; cv=none; b=pGf835pYDDln8ksZnM9Wm/cz4W+j/Fr2ekHQ/EjiPmePktUBR1pqN8zUDgW5YN9TuWVxoy6hZNPEFKk33edhlwW1avrPEGy3qJUeVGKuglU79l2/Jn/8kV53C9XtxYcEnE7pEiGNPFtWdPCOeao7/TaXzAm6Uu9Jor2mY9Ii2pPzgkH7cL3cxeXlfoAETNck8nvh16orOOmOoYhA0nmGHDlbtYFnY8MVTeDPxxFex2iw8/Uz19IDFNYnQ/FMl/2dQP1ETYFJnwWytTZRB4SQCRxahGJWLrq4rZ9NpL+1Obzdsk4kORXrK37UMfAvPZBM1HFOu4i69N6tNSViMdsVOA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector10001; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=b5am2kNVTinUO6ZfrDrBaLZRW8vFkOw9Wm/UnJtexmc=; b=V8CIeVqnQlVZ3PxAFhO9njpcranP/xqwYyz/D6P+lGUeAAc2CSEv4lVe35MmYhGZc5pumw7FSpa9VSYvZpMmLnc70S91cJPplLR/Iwv+soOSg80J9ENg4DotSk00pRyybO/XPqbxhLHAKifPYPRubPm6XZNa53CHj0EDpPXL3F2mZ7+uj8L1HtSDkX1+l+rAQJFoIqdNl91nBvirLZwEJrqO0i5VAQ0WoF8HQPA5s5jjqHQ9Omgv/cp7ByI6+Gnl1hMIqSy5SJCPm8IfMnlPsCGBNsgyCsUmNXN4vjC+00w600pbhXj7e8fE1CZ9+2bZD+O2ZdccPIN8x6dBKo+2+g==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=st.kyoto-u.ac.jp; dmarc=pass action=none header.from=st.kyoto-u.ac.jp; dkim=pass header.d=st.kyoto-u.ac.jp; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=st.kyoto-u.ac.jp; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=b5am2kNVTinUO6ZfrDrBaLZRW8vFkOw9Wm/UnJtexmc=; b=hVUF/6Sv6uTI4ds9tJgJtZzDpRF+L0tg3Nk2Ll2W4jZmeutwhp1PvL/LIokxt+IeLjLQ6vlsneMX7v4Gae1s0BVDEcB1/uWAMXuDgawAN7D4/BPWVM9ls4yacZ1g2RoSiU7MtMKMI/ICqWK7erztgsoUAKy0d9M1UMgT2SNnFvc=
Received: from OSZP286MB1487.JPNP286.PROD.OUTLOOK.COM (2603:1096:604:1b3::6) by TYYP286MB5691.JPNP286.PROD.OUTLOOK.COM (2603:1096:405:299::6) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.21.159.16; Thu, 25 Jun 2026 05:16:27 +0000
Received: from OSZP286MB1487.JPNP286.PROD.OUTLOOK.COM ([fe80::fe51:4275:5da6:4669]) by OSZP286MB1487.JPNP286.PROD.OUTLOOK.COM ([fe80::fe51:4275:5da6:4669%5]) with mapi id 15.21.0159.015; Thu, 25 Jun 2026 05:16:26 +0000
From: "yoshikawa.tomoki.67i@st.kyoto-u.ac.jp" <yoshikawa.tomoki.67i@st.kyoto-u.ac.jp>
To: Loganaden Velvindron <loganaden@gmail.com>
Thread-Topic: [Sidrops] Re: New I-D: draft-yoshikawa-sidrops-pqc-rpki-00 (PQC signature profile for RPKI)
Thread-Index: AQHdAL2sxLoCe8Le1U6J0dnDSXNsxLZKbbBNgAAK+QCABCtIUoAAB0eAgAAVs6Y=
Date: Thu, 25 Jun 2026 05:16:26 +0000
Message-ID: <OSZP286MB1487DB4ABB75F733620F97FAFEEC2@OSZP286MB1487.JPNP286.PROD.OUTLOOK.COM>
References: <OSZP286MB1487042DC90455369ED69676FEE22@OSZP286MB1487.JPNP286.PROD.OUTLOOK.COM> <ajWzqH4slnzcGeQf@feather.sobornost.net> <OSZP286MB14878DE6FA179A8C2CE1D211FEE12@OSZP286MB1487.JPNP286.PROD.OUTLOOK.COM> <ajad0w18JoTo7KFb@feather.sobornost.net> <OSZP286MB1487FBBA9E5F111EE1B3D328FEEF2@OSZP286MB1487.JPNP286.PROD.OUTLOOK.COM> <ajkhGjaMm4KkuhBl@feather.sobornost.net> <OSZP286MB14878918E662252A4901501FFEEC2@OSZP286MB1487.JPNP286.PROD.OUTLOOK.COM> <CAOp4FwT81Ruyrg5DBN0mNqkeO7jpGif3e364BVRknUgPYHMong@mail.gmail.com>
In-Reply-To: <CAOp4FwT81Ruyrg5DBN0mNqkeO7jpGif3e364BVRknUgPYHMong@mail.gmail.com>
Accept-Language: ja-JP, en-US
Content-Language: ja-JP
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
msip_labels:
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=st.kyoto-u.ac.jp;
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: OSZP286MB1487:EE_|TYYP286MB5691:EE_
x-ms-office365-filtering-correlation-id: 482b3223-462f-4423-1629-08ded278e84a
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;ARA:13230040|4022899009|366016|786006|10070799003|23010399003|376014|1800799024|13003099007|18002099003|22082099003|38070700021|8096899003|11063799006|4143699003|56012099006;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255;CTRY:;LANG:zh-tw;SCL:1;SRV:;IPV:NLI;SFV:NSPM;H:OSZP286MB1487.JPNP286.PROD.OUTLOOK.COM;PTR:;CAT:NONE;SFS:(13230040)(4022899009)(366016)(786006)(10070799003)(23010399003)(376014)(1800799024)(13003099007)(18002099003)(22082099003)(38070700021)(8096899003)(11063799006)(4143699003)(56012099006);DIR:OUT;SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 2
x-ms-exchange-antispam-messagedata-0: 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
x-ms-exchange-antispam-messagedata-1: W6qcqNCzul+pBBFU9jAEtTs7YPDQwDe9fV4=
Content-Type: multipart/alternative; boundary="_000_OSZP286MB1487DB4ABB75F733620F97FAFEEC2OSZP286MB1487JPNP_"
MIME-Version: 1.0
X-OriginatorOrg: st.kyoto-u.ac.jp
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: OSZP286MB1487.JPNP286.PROD.OUTLOOK.COM
X-MS-Exchange-CrossTenant-Network-Message-Id: 482b3223-462f-4423-1629-08ded278e84a
X-MS-Exchange-CrossTenant-originalarrivaltime: 25 Jun 2026 05:16:26.7942 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 8a268964-6e22-4131-869d-b3173b0603c2
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: Yh4EuJ6BmdcdekDn14QCc2pZULN9LmPzaM+vSN+ZfHtthFTATYi0ryAijiYix+bUW5x2lPRz4hyhT6V0SfHz0UfGQLs0NmyMAuEvS7OwHcfRDqJt+EfrqMk5VFiE63kH
X-MS-Exchange-Transport-CrossTenantHeadersStamped: TYYP286MB5691
Message-ID-Hash: Y7FZ57GMKHGY5ZOXRH6WIHDT4YHR6RYB
X-Message-ID-Hash: Y7FZ57GMKHGY5ZOXRH6WIHDT4YHR6RYB
X-MailFrom: yoshikawa.tomoki.67i@st.kyoto-u.ac.jp
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-sidrops.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: Job Snijders <job@bsd.nl>, "sidrops@ietf.org" <sidrops@ietf.org>
X-Mailman-Version: 3.3.9rc6
Precedence: list
Subject: [Sidrops] Re: New I-D: draft-yoshikawa-sidrops-pqc-rpki-00 (PQC signature profile for RPKI)
List-Id: A list for the SIDR Operations WG <sidrops.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/sidrops/F1LFM2s8jVTF_-4C-SefkuCXruU>
List-Archive: <https://mailarchive.ietf.org/arch/browse/sidrops>
List-Help: <mailto:sidrops-request@ietf.org?subject=help>
List-Owner: <mailto:sidrops-owner@ietf.org>
List-Post: <mailto:sidrops@ietf.org>
List-Subscribe: <mailto:sidrops-join@ietf.org>
List-Unsubscribe: <mailto:sidrops-leave@ietf.org>

Hi Loganaden,

Thank you for the information.

The fact that FN-DSA is not yet standardized is also one of the reasons I currently lean toward ML-DSA.
Your point about implementation difficulty from a vendor perspective is also very helpful.

I will take this into account in the section.

Kind regards,

Tomoki
________________________________
差出人: Loganaden Velvindron <loganaden@gmail.com>
送信日時: 2026年6月25日 12:54
宛先: yoshikawa.tomoki.67i@st.kyoto-u.ac.jp <yoshikawa.tomoki.67i@st.kyoto-u.ac.jp>
CC: Job Snijders <job@bsd.nl>; sidrops@ietf.org <sidrops@ietf.org>
件名: Re: [Sidrops] Re: New I-D: draft-yoshikawa-sidrops-pqc-rpki-00 (PQC signature profile for RPKI)

For the rationale section,
I would argue to be cautious with FN-DSA (aka Falcon) as it is
currently hard to get right due
to it requiring constant time operations. It has been a challenge to get right.

Please see an example of a bug here:
https://x.com/bwesterb/status/1509583201848672258

I'm not sure whether router vendors will want to take a chance on FN-DSA.




On Thu, 25 Jun 2026 at 07:30, yoshikawa.tomoki.67i@st.kyoto-u.ac.jp
<yoshikawa.tomoki.67i@st.kyoto-u.ac.jp> wrote:
>
> Hi Job,
>
> Thanks, that makes the mixed-tree construction clear!
>
> I'll work the manifest/product key-consistency rule and the certificate
> signature vs. SPKI distinction into the draft. More broadly, I'd like to
> take the feedback from this thread - mixed-tree, composites, and the
> BGPsec scope - and work it into -01 as a more coherent revision rather
> than piecemeal.
>
> Kind regards,
> Tomoki
>
> ________________________________
> 差出人: Job Snijders <job@bsd.nl>
> 送信日時: 2026年6月22日 20:48
> 宛先: yoshikawa.tomoki.67i@st.kyoto-u.ac.jp <yoshikawa.tomoki.67i@st.kyoto-u.ac.jp>
> CC: sidrops@ietf.org <sidrops@ietf.org>
> 件名: Re: [Sidrops] Re: New I-D: draft-yoshikawa-sidrops-pqc-rpki-00 (PQC signature profile for RPKI)
>
> On Mon, Jun 22, 2026 at 11:09:56AM +0000, yoshikawa.tomoki.67i@st.kyoto-u.ac.jp wrote:
> > Thank you for the clarification!
> >
> > My earlier statement that BGPsec was outside the scope was too broad, and
> > the distinction makes sense now.
> >
> > I will split it as follows:
> >
> > * The BGPsec UPDATE signature algorithm and the use of the public key
> >   carried in a BGPsec Router Certificate are matters for IDR and
> >   RFC 8608.
> > * The signatures on BGPsec Router Certificates, their issuing CA
> >   certificates, and the associated CRLs are part of RPKI repository
> >   maintenance and remain within the SIDROPS scope, including any updates
> >   needed to RFC 6485/7935/8209.
> >
> > I will revise the draft accordingly. The RPKI signature profile should
> > cover the certificates and CRLs associated with BGPsec Router
> > Certificates, while the algorithm used to sign BGPsec UPDATE messages
> > remains separate.
> >
> > Thank you again for correcting the BGPsec scope distinction!
>
>
> Expressed as a simple rule: all the products listed on a given manifest
> MUST be signed with the same key, and that key also MUST be the key that
> was used to sign that manifest.
>
> The above rule must be checked by RPs, otherwise you'd end up with gaps
> in the certification chains, which would be a security issue.
>
> To produce mixed certification chains: sign with algorithm X over a CA
> certificate that has as SPKI a public key of algorithm Y, and sign that
> CA's manifest using algorithm Y. (Somewhat similar to how BGPsec router
> certificates are signed with RSA-2048 but contain a P-256 public key in
> their SPKI.)
>
> Kind regards,
>
> Job
> _______________________________________________
> Sidrops mailing list -- sidrops@ietf.org
> To unsubscribe send an email to sidrops-leave@ietf.org