IETF Logo Mail Archive

Re: [lamps] [EXT] Re: Call for Adoption of draft-ounsworth-pq-composite-sigs

Santosh Chokhani <santosh.chokhani@gmail.com> Wed, 17 April 2024 14:49 UTC

Return-Path: <santosh.chokhani@gmail.com>
X-Original-To: spasm@ietfa.amsl.com
Delivered-To: spasm@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 42027C14F6E2 for <spasm@ietfa.amsl.com>; Wed, 17 Apr 2024 07:49:47 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.096
X-Spam-Level:
X-Spam-Status: No, score=-2.096 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Cxz2-3wN_dky for <spasm@ietfa.amsl.com>; Wed, 17 Apr 2024 07:49:42 -0700 (PDT)
Received: from mail-qv1-xf2c.google.com (mail-qv1-xf2c.google.com [IPv6:2607:f8b0:4864:20::f2c]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D2D3DC14F6BB for <spasm@ietf.org>; Wed, 17 Apr 2024 07:49:42 -0700 (PDT)
Received: by mail-qv1-xf2c.google.com with SMTP id 6a1803df08f44-69b5dae6a64so6664656d6.1 for <spasm@ietf.org>; Wed, 17 Apr 2024 07:49:42 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20230601; t=1713365382; x=1713970182; darn=ietf.org; h=content-language:thread-index:content-transfer-encoding :mime-version:message-id:date:subject:in-reply-to:references:to:from :from:to:cc:subject:date:message-id:reply-to; bh=mnIyEEnFvtjcRs0HaS+vhvx7h6rdF05SbeQqDwv4QEQ=; b=JQfHkBSh2S/yWY1k6m+klby2uZqBkeDcgswSPax4TbrJadWHIp1h5VAHIciNA56A87 2+7/Ol1Vikrwl/zI9s4bhVOt5RD20QrkYlbE5fz5T6iJXH8SHlsDwYIuqmMd0YfDn08l JFeX4ICbYqV5vRJ/iNZEEionJFmFuUWjHAw/5LTYsCy11g5mr5bJHfNXWm85mwGc/Isj d16ZxcScxPdCHOKsf5QeSlqFVaPSzQ8IDaQS+eGTJA2Zd4gi2pB+Gm/q8P4cqjsUzWUB ZOIYxa6xEclXDi0YrECSDRguV+0Ge8B8d8K1WwjTxkdnn/IU6G8jyc874ctfIOpJyra1 n8cg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1713365382; x=1713970182; h=content-language:thread-index:content-transfer-encoding :mime-version:message-id:date:subject:in-reply-to:references:to:from :x-gm-message-state:from:to:cc:subject:date:message-id:reply-to; bh=mnIyEEnFvtjcRs0HaS+vhvx7h6rdF05SbeQqDwv4QEQ=; b=qYOdWfqwe629wARy2TIjg7+Zig4qoRuRrBtv6E18nG1PVG6UOPPuK6E+ZvA44OYY1k PsifRF1oqVY3hEOAhN0MZUWloYQ2Hu3xxlTwUF3zm+y4aJisbL1vI77IVQjjQTdOvPU9 sFxoq0m1Op9yJszt+uIMscHufEovBGr3Vh7WducwwCZbq3TWLcyUIyHbiyaA5J/CU1en oMDVCHzX7dT+mAdoK9MnMBVrONVHmY5+L7rx2v0H69j73vAQvNVzhtOXBgND9hf4lGTY jrZ9HEu2duSGSg2x7y2bfLEO/PFifNuXnINIpj6AV9vF7usH+Ad9f64XWKtvLwqxiRym QkKg==
X-Forwarded-Encrypted: i=1; AJvYcCX9z9Ppv89EadhxlCVfJ6mvVcD0zrwsIlqiZK0b2LIXWa81VROSwkRXn1S9uXaaPfWAZWPKomlc9/5tCj3I5Q==
X-Gm-Message-State: AOJu0YxV4n8ImLo7ARgWJbwWv+36fTqlRtKRyl3MAA0mY4nNAXnI8l5H QeqXU/p7HJkvqRPeZoQq29rwoZPUpJgL0CkclwzeUXZFA6DVQ0g+K3Xz6A==
X-Google-Smtp-Source: AGHT+IGRBdVS9j83zvEuJIGb7GSiEmgfslKz4CZRNM4DyHJhMi2Mg2lEdQZpUmWmaOzlNouW1MgVCw==
X-Received: by 2002:a05:6214:174b:b0:69b:60b6:7c5d with SMTP id dc11-20020a056214174b00b0069b60b67c5dmr8738251qvb.18.1713365381601; Wed, 17 Apr 2024 07:49:41 -0700 (PDT)
Received: from SantoshBrain (pool-141-149-43-58.nycmny.fios.verizon.net. [141.149.43.58]) by smtp.gmail.com with ESMTPSA id u3-20020a0cdd03000000b0069b53e6cc5bsm7287874qvk.94.2024.04.17.07.49.41 (version=TLS1_2 cipher=ECDHE-ECDSA-AES128-GCM-SHA256 bits=128/128); Wed, 17 Apr 2024 07:49:41 -0700 (PDT)
From: Santosh Chokhani <santosh.chokhani@gmail.com>
To: "'Blumenthal, Uri - 0553 - MITLL'" <uri@ll.mit.edu>, 'LAMPS' <spasm@ietf.org>
References: <dfbc62145d004111ac3a55f668e7d00d@amazon.com> <090834BF-7BCB-44F1-8381-3012F15BF0D0@ll.mit.edu>
In-Reply-To: <090834BF-7BCB-44F1-8381-3012F15BF0D0@ll.mit.edu>
Date: Wed, 17 Apr 2024 10:49:41 -0400
Message-ID: <04fb01da90d6$7ae65f10$70b31d30$@gmail.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: quoted-printable
X-Mailer: Microsoft Outlook 15.0
Thread-Index: AQFcw2zKElC29Wr0Ea6Qp+tiUaPY1QEYbG6Rsl9fYpA=
Content-Language: en-us
Archived-At: <https://mailarchive.ietf.org/arch/msg/spasm/2w6FDDaonxjl6PVX0Sz6qEV4C3E>
Subject: Re: [lamps] [EXT] Re: Call for Adoption of draft-ounsworth-pq-composite-sigs
X-BeenThere: spasm@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: This is the mail list for the LAMPS Working Group <spasm.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/spasm>, <mailto:spasm-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/spasm/>
List-Post: <mailto:spasm@ietf.org>
List-Help: <mailto:spasm-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/spasm>, <mailto:spasm-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 17 Apr 2024 14:49:47 -0000

I also oppose the adoption.  I have wrecked my brain and do not see why this is necessary.

There are simpler and more agile solutions for various scenarios I conjure up.

-----Original Message-----
From: Spasm [mailto:spasm-bounces@ietf.org] On Behalf Of Blumenthal, Uri - 0553 - MITLL
Sent: Wednesday, April 17, 2024 10:30 AM
To: LAMPS <spasm@ietf.org>
Subject: Re: [lamps] [EXT] Re: Call for Adoption of draft-ounsworth-pq-composite-sigs

I concur with Panos and Stephen - and oppose the adoption: I don’t think it’s a needed or beneficial capability.

Regards,
Uri

> On Apr 17, 2024, at 10:00, Kampanakis, Panos <kpanos=40amazon.com@dmarc.ietf.org> wrote:
> 
> !-------------------------------------------------------------------|
>  This Message Is From an External Sender  This message came from 
> outside the Laboratory.
> |-------------------------------------------------------------------!
> 
> I oppose adoption as well.
> 
> Some of the reasons:
> - Combining sigs is not as urgent of an issue, so we better have trust to whatever we deploy before we need them.
> - We can afford to wait for most signing use-cases, and those that can't, can use SLH-DSA which is conservatively secure.
> - Classical  and PQ sigs will coexist for a long time so any PQ signature security issue could be remediated by swapping back to classical.
> 
> 
> -----Original Message-----
> From: Spasm <spasm-bounces@ietf.org> On Behalf Of Stephen Farrell
> Sent: Wednesday, April 17, 2024 9:21 AM
> To: Russ Housley <housley@vigilsec.com>; LAMPS <spasm@ietf.org>
> Subject: RE: [EXTERNAL] [lamps] Call for Adoption of 
> draft-ounsworth-pq-composite-sigs
> 
> CAUTION: This email originated from outside of the organization. Do not click links or open attachments unless you can confirm the sender and know the content is safe.
> 
> 
> 
> Hiya,
> 
>> On 16/04/2024 19:29, Russ Housley wrote:
>> At IETF 119, there was a short discussion of 
>> draft-ounsworth-pq-composite-sigs.  The authors asked for a call for 
>> adoption, and no one offered any reason not to move forward at that 
>> time.
>> 
>> This message starts a two-week call for adoption of this document.
>> Please say whether you support adoption of this document by Tuesday,
>> 30 April 2024.
> 
> (Perhaps unsurprisingly;-) I oppose adoption.
> 
> I don't think we have a sufficient understanding of the costs of adding composite sigs to x.509 based PKIs, and how those costs will be distributed amongst the various parties involved, nor about what's likely or unlikely to be deployed, to fire ahead now and define a pile of new composite sig algs. To do proper engineering, we should IMO have such an understanding before we start spraying out new OIDs each of which imposes costs on participants in PKIs.
> 
> Cheers,
> S.
> 
> PS: I could also raise objections about lower level details of the draft but those could perhaps be handled after adoption, e.g. whether, and if so what kinds of, RSA sigs to include shouldn't be based on what's possible but on what's likely to get adopted esp. by real CAs, relying parties and key holders.
> 
> 
> _______________________________________________
> Spasm mailing list
> Spasm@ietf.org
> https://www.ietf.org/mailman/listinfo/spasm

v2.23.0 | Report a Bug | By Email