IETF Logo Mail Archive

Re: [lamps] PQC X.509 115 Hackathon

John Gray <John.Gray@entrust.com> Thu, 13 October 2022 00:19 UTC

Return-Path: <John.Gray@entrust.com>
X-Original-To: spasm@ietfa.amsl.com
Delivered-To: spasm@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id AC29FC1522B4; Wed, 12 Oct 2022 17:19:48 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.807
X-Spam-Level:
X-Spam-Status: No, score=-2.807 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=entrust.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id xKj67NfK09oG; Wed, 12 Oct 2022 17:19:45 -0700 (PDT)
Received: from mx07-0015a003.pphosted.com (mx07-0015a003.pphosted.com [185.132.183.227]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 9B112C1522B1; Wed, 12 Oct 2022 17:19:44 -0700 (PDT)
Received: from pps.filterd (m0242864.ppops.net [127.0.0.1]) by mx08-0015a003.pphosted.com (8.17.1.5/8.17.1.5) with ESMTP id 29CGoV1K010420; Wed, 12 Oct 2022 19:19:42 -0500
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=entrust.com; h=from : to : subject : date : message-id : references : in-reply-to : content-type : mime-version; s=mail1; bh=Q/vWLDGdaAAp6vYyo5NefKMvLh6JoUUeca6B8GlEshw=; b=aWFSdED0oKGvLFwOdSvLEECtBzxIUMp5xRZ2OvjaytRfZZ6BeDkcBmyQXYWMNzXno8U+ M38xzXAvrB+rGtPtVhJJT/3SezKKs9Ug3l04mBQBTozm8c199Cgy/Z6MQ1Dxj2UTiKRk l9M0/m+LcofPtZFiLtSLjN583FKSiH9u5xkEkazljCHHGzASzxk+ug1NRzafgupaGgJV KIN8l/RbK+Q5ON6vENWBwZrVxYFF53f0Ny5IxlYxjrsdoMj1OL+GSAkINEPtZmRMIiOq L8WR5SNLhM0f0pCdH7XDnUQ5klCyW0HZnkoxNOxTVENdHEG0a6JDJKUPChfkvd2ecvtM ow==
Received: from nam12-bn8-obe.outbound.protection.outlook.com (mail-bn8nam12lp2177.outbound.protection.outlook.com [104.47.55.177]) by mx08-0015a003.pphosted.com (PPS) with ESMTPS id 3k35w2mwqv-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Wed, 12 Oct 2022 19:19:41 -0500
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=OuAvs+2gdZ8J93N934xuW0xgv1yit/8sECfD0zbv0e1ZBi2MZBozM7z03Zid05bfqT0w+qfJoLZi4YDiyqiHIurHFJ9Z/JeZqL3+jr/NMD26/B4vAsACdGY5DQFRVGDKyiNDJN63SsJd6D8XGFuHcug4XeitpwwMAJ9mC0KcYq8Sw6vPlplnWAjqVCKBWauSY1Q7g07nfIkPHgHmZuGKtqP5Lhl/o1JJA581nabhZQZ0kQ78NVStLfb3usjs84qwrEoDQvuxia1Zlah9Kg5c/DrVczy8OTgV4Pil0XIc8iKoV8k5EzQjhafWqhgQDe7eOr1L/WpR4W75F8JZfAp4Iw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=Q/vWLDGdaAAp6vYyo5NefKMvLh6JoUUeca6B8GlEshw=; b=nQtSpaCQ3KRCR7SITt/jKXVpIXT8T7cm5Yy8lNqA2ARStUjCWQ2Wv9OJUf1Mii+XNi97pnoZgdwRGsF2waA6nJgjVXtZspNuQsXHMArsDk3BJOxMGD5BMy8yam8vRZA1yFOA2lAeb+ihQAIngjp4TxjyC6DCc3kAo7JzfjbLtqS9ltCbGKL1PPyuXy33hyqO3ev0oaI9jdN2vT71asGYMYszu6FBfTIsegXvVev1g/Ndd9qWz3SNmLR6Ko3Vp53v6HUaNGBeAW6p/b58CsSx8clYvxjh62tV/G+cLH+lSnImFg8pIZ+gJOG0YzPXgZqGi5z0YPayOGjy30vzcUaWNg==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=entrust.com; dmarc=pass action=none header.from=entrust.com; dkim=pass header.d=entrust.com; arc=none
Received: from DM6PR11MB2585.namprd11.prod.outlook.com (2603:10b6:5:ce::22) by SA1PR11MB6733.namprd11.prod.outlook.com (2603:10b6:806:25c::17) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.5676.32; Thu, 13 Oct 2022 00:19:38 +0000
Received: from DM6PR11MB2585.namprd11.prod.outlook.com ([fe80::f014:fd43:52f0:b50f]) by DM6PR11MB2585.namprd11.prod.outlook.com ([fe80::f014:fd43:52f0:b50f%4]) with mapi id 15.20.5709.021; Thu, 13 Oct 2022 00:19:38 +0000
From: John Gray <John.Gray@entrust.com>
To: Mike Ounsworth <Mike.Ounsworth=40entrust.com@dmarc.ietf.org>, 'LAMPS' <spasm@ietf.org>, "pqc@ietf.org" <pqc@ietf.org>, "hackathon@ietf.org" <hackathon@ietf.org>
Thread-Topic: PQC X.509 115 Hackathon
Thread-Index: AdjYVOXE6GpE7MN6R9W+NqLxsx9F5gCNS/yw
Date: Thu, 13 Oct 2022 00:19:38 +0000
Message-ID: <DM6PR11MB25852409BE2751E34E1E83AAEA259@DM6PR11MB2585.namprd11.prod.outlook.com>
References: <CH0PR11MB5739E98B69C5AD88745F539E9F5D9@CH0PR11MB5739.namprd11.prod.outlook.com>
In-Reply-To: <CH0PR11MB5739E98B69C5AD88745F539E9F5D9@CH0PR11MB5739.namprd11.prod.outlook.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: DM6PR11MB2585:EE_|SA1PR11MB6733:EE_
x-ms-office365-filtering-correlation-id: b9f9b855-a3e4-4df5-78c4-08daacb09d99
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: yeSvKsjVxxCd6LLvy/GgJHg1/mtG9YNoW747vAFXzAVn6pJu7Bg/9McLLwnJCJKpe3ACmQSWWUfEdtxyY7/MFuhMCHwrmDOsds7jOkpZviOZ2BodDy25MLl4Kvo3MUZ9kWnbvvnArWJQVxlUMB5pOXcSfIo9RLpImfPamj0V+qTRLA2LrneB3/QdCb/WK/8boQFBSHFi8KnH48DX0EVNh0+Sq9ut1edeHm3LlJjVXQZxhipD3xsgMAmr8UqxoMSGb00HEkydML+1QFfoA3F11aPGS5FsljKMoJKG8UbDeX3hjX6MwNLrhlVV+OXqUILJi0qkKeOOF/ubs6u1s9pDKjEnc5VcHNXCUl3dLh8nraGkXoGf3uTKKynmmRk9Qo4PU5aoS99KV06U0jduZdUnVloBP4I0UQWWakDS/NWk/ofGcrJZVdlHxaNMs+WbiiKa3dKagIRAcqzWb9qWrIhbg4rsaE0/YtpyTgaYKO1+1TfHxaah4ycttG8OQRt8xezEAhh1CjQ80Wj57IMkvfpgMw873h2R3t/kKf6dalSyOGCRU5FD7pxRGEiiZ45Ys3KGUZaZiWfrVTm77FmG9jVwjddwO4Fg2W7FzR14Ydco9dywQKCPMJdn0M0BEZintOaycH3arLh+/6F7ayMmnFUYPQRLS2AVWPjL9NGsWBrzDVDUWv4KKwDJh7pcHgUooubNYHHWcNjPdVurtEzZ00qkpBcK8AN8DeYPPj3AUucmri7JX5ZEW740O0ReaH8K9tKMiLMhD9OuFSRcn41uta8HLffU3SgNuHFsX/xEC3LsCDdiC/Vv+rKHIfYnRmm4NeZmwH30vS0ITUZ6TYpnuypqPg==
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:DM6PR11MB2585.namprd11.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230022)(136003)(396003)(376002)(346002)(39850400004)(366004)(451199015)(7696005)(86362001)(33656002)(66899015)(110136005)(38100700002)(122000001)(53546011)(6506007)(166002)(186003)(38070700005)(21615005)(2906002)(52536014)(76116006)(83380400001)(66946007)(316002)(478600001)(66556008)(66446008)(9686003)(26005)(8676002)(8936002)(966005)(41300700001)(66476007)(5660300002)(71200400001)(64756008)(55016003); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: multipart/alternative; boundary="_000_DM6PR11MB25852409BE2751E34E1E83AAEA259DM6PR11MB2585namp_"
MIME-Version: 1.0
X-OriginatorOrg: entrust.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: DM6PR11MB2585.namprd11.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: b9f9b855-a3e4-4df5-78c4-08daacb09d99
X-MS-Exchange-CrossTenant-originalarrivaltime: 13 Oct 2022 00:19:38.4492 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: f46cf439-27ef-4acf-a800-15072bb7ddc1
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: k1kN7arZy4T6h6k8oRwIQy9h2Vp3KQuaVh5VfykHAOKs2/fTuW5l5pQwxDE8+xSN4k9JKz17K9JqbgIn3jUGVw==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: SA1PR11MB6733
X-Proofpoint-ORIG-GUID: n4DKvpm_Ll8Am30ZPN92isfHb7k5PCjs
X-Proofpoint-GUID: n4DKvpm_Ll8Am30ZPN92isfHb7k5PCjs
X-Proofpoint-Virus-Version: vendor=baseguard engine=ICAP:2.0.205,Aquarius:18.0.895,Hydra:6.0.545,FMLib:17.11.122.1 definitions=2022-10-12_12,2022-10-12_01,2022-06-22_01
X-Proofpoint-Spam-Details: rule=outbound_notspam policy=outbound score=0 clxscore=1011 malwarescore=0 bulkscore=0 priorityscore=1501 mlxlogscore=999 suspectscore=0 lowpriorityscore=0 adultscore=0 phishscore=0 mlxscore=0 impostorscore=0 spamscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.12.0-2209130000 definitions=main-2210130000
Archived-At: <https://mailarchive.ietf.org/arch/msg/spasm/MgwIIMt7N0sYp4wdFcx1MrXDr2M>
Subject: Re: [lamps] PQC X.509 115 Hackathon
X-BeenThere: spasm@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "This is a venue for discussion of doing Some Pkix And SMime \(spasm\) work." <spasm.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/spasm>, <mailto:spasm-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/spasm/>
List-Post: <mailto:spasm@ietf.org>
List-Help: <mailto:spasm-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/spasm>, <mailto:spasm-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 13 Oct 2022 00:19:48 -0000

Thank you for all your comments and suggestions in regards to a PQC X.509 Hackathon.   We have added the details of this hackathon topic to the IETF Hackathon Wiki located here as 'PQ keys and signatures in X.509 / PKIX'

https://wiki.ietf.org/en/meeting/115/hackathon

We hope that at least one author for each of these drafts is able to join in some capacity so we can attempt to come to a consensus on the key and signature formats of the PQ finalist algorithms.


  *   https://datatracker.ietf.org/doc/html/draft-uni-qsckeys-00.html
  *   https://datatracker.ietf.org/doc/draft-massimo-lamps-pq-sig-certificates/
We plan to distribute a set of OIDS we will use to identify the key and signature formats (we need those to interoperate with the various X.509 structures like PublicKeyInfo, PrivateKeyInfo, X509Certificate, PKCS10, X509CRL, OSCP, CMS, etc).   Ideally we suggest that these are done in an agile way in software to make it easier to plug in the real OID values once they have been officially registered.  We will use formats already suggested in existing drafts whenever possible.

I know there have already been multiple key format proposals for some of the PQ key and Signature drafts, so we can use different OIDs to designate different formats if we want to test with different key and signature formats for the same algorithms.   If there are key and signature formats that aren't included in the list we provide, please suggest and add to the list.

I plan to add this information into the IETF GitHub repository in the next week, so stay tuned!

If there is something you think we have missed, please let us know.

Cheers,

John Gray
Entrust




From: Spasm <spasm-bounces@ietf.org> On Behalf Of Mike Ounsworth
Sent: Tuesday, October 4, 2022 9:01 PM
To: 'LAMPS' <spasm@ietf.org>; pqc@ietf.org
Subject: [EXTERNAL] [lamps] PQC X.509 115 Hackathon

WARNING: This email originated outside of Entrust.
DO NOT CLICK links or attachments unless you trust the sender and know the content is safe.
________________________________
Hi LAMPS and people interested in PQC!

As suggested at 114, my colleague John Gray and I would like to do a 115 Hackathon on PQ keys and signatures in X.509 / PKIX.

We are suggesting to play with Dilithium, Falcon, Sphincs+, and Composite signing algorithms in Certs, CRLs, CSRs, PKCS#12s, CMS SignedData, maybe OCSP Responses, maybe Timestamping, maybe CMP. We can bring: the Entrust Toolkit (which we can hack at), Bounce Castle, OpenQuantumSafe-openssl, OpenCA (easier if Max Pala is there, but we can probably figure out how to build it).

The point of the hackathon, I think, is going to be OIDs, and public key / private key formats (ex.: the differences between Dilithium and Falcon encodings in draft-uni-qsckeys, and draft-massimo-lamps-pq-sig-certificates).



Question 1: are others interested in joining us at the hackathon? (no point is signing up for a hackathon spot if we're the only ones there)

Question 2: whether or not you're joining, what PQ X.509 / PKIX things would you like to see working with Dilithium, Falcon, Sphincs+, Composite?


---
Mike Ounsworth
Software Security Architect, Entrust

Any email and files/attachments transmitted with it are confidential and are intended solely for the use of the individual or entity to whom they are addressed. If this message has been sent to you in error, you must not copy, distribute or disclose of the information it contains. Please notify Entrust immediately and delete the message from your system.

v2.23.0 | Report a Bug | By Email