Re: [lamps] [EXTERNAL] Re: Hybrid pkix isn't needed
Mike Ounsworth <Mike.Ounsworth@entrust.com> Mon, 30 January 2023 21:12 UTC
Return-Path: <Mike.Ounsworth@entrust.com>
X-Original-To: spasm@ietfa.amsl.com
Delivered-To: spasm@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7ADA2C1782D8 for <spasm@ietfa.amsl.com>; Mon, 30 Jan 2023 13:12:38 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.096
X-Spam-Level:
X-Spam-Status: No, score=-2.096 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=entrust.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id lHu9YE0GzZi4 for <spasm@ietfa.amsl.com>; Mon, 30 Jan 2023 13:12:34 -0800 (PST)
Received: from mx07-0015a003.pphosted.com (mx07-0015a003.pphosted.com [185.132.183.227]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 585DFC15C509 for <spasm@ietf.org>; Mon, 30 Jan 2023 13:12:34 -0800 (PST)
Received: from pps.filterd (m0242864.ppops.net [127.0.0.1]) by mx08-0015a003.pphosted.com (8.17.1.19/8.17.1.19) with ESMTP id 30UGxBMH028707; Mon, 30 Jan 2023 15:12:30 -0600
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=entrust.com; h=from : to : cc : subject : date : message-id : references : in-reply-to : content-type : content-transfer-encoding : mime-version; s=mail1; bh=pAoUHCk/dVT8fkpmq3UKJXSFq1LlE6LakHOpoIp2Lr4=; b=ELbj/eXZYXPYurRy5pstc0exZIgYSbo8TTlZ+/B1td734RNPW8W+ncxNMzck8ebUG5XY 3TxUgVfby5iITQQ7nb2uZnk36A31kB4oCKt1/dmIHZbq8375jDk1+28jPNJ0mVt/kgTg 9f4oii0nqgJlaU5uJ8rShi9RbpB0T79xnDzzIXoVHLYaf8/hy63uo47nt7Zu+PhdHuR5 2TqQaBMgPbUAgIeEDkXWOBheOrEGW7lk6Qa24ciKK69cY8q3SfaKzLStfTphvjW8tBHG ZaZzYfNpf+pWxtS3+ACgRSxAFYzamy/49+FGVHMa6tyg+/jwGdYJBD4Acel+258jAq5D SQ==
Received: from nam11-dm6-obe.outbound.protection.outlook.com (mail-dm6nam11lp2177.outbound.protection.outlook.com [104.47.57.177]) by mx08-0015a003.pphosted.com (PPS) with ESMTPS id 3nd196rejx-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Mon, 30 Jan 2023 15:12:30 -0600
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=JZiHOuxCfQut53tfocKvno5u338QKuX/Ox4H0spf1lMIAcIXhj2CMZP4SfHWXzv91Zz9n/T9y9nJRObsVp7pkBvaCg9fLVvhW/RxJiOEYoVceN1AcwF+dGZHGMdoriuqTRRn+YZ0mEMVjCTQCp3oc13XQ/rOAEZRpBgqlEVv+jjm2gAqUMW90FQgwRccx9lbqvQpNWbSBj3vQUPX85Md1IK7g5P+2cfaU0tSTbOVPX9jGtXl7/bhnYMhJBQGYElyyQx7/ynE3Ek72bpSsE/gor3wYbNaUnGu1CBO6Br8UnUujsCldQ6mv+lq3Id3avls4kW5uwFXreJXzShXh5taDQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=pAoUHCk/dVT8fkpmq3UKJXSFq1LlE6LakHOpoIp2Lr4=; b=UUATGtJGpPDZOntWuPu4ZAL4VkEcAzdTmLRllMzWJ+dutW1EkqmtQ2ktlB9a8uvwch5l4UbyYuhPGOVBz3WB33vFMBr9JwDRi8J/tj2ialKjspwPoRIOoQaL6YCtUTIBr3iiq9rzwrhkLJh3KsodtSeNHrYfkQ3TOkhmMDTBIQv2d3nbCfEwf0jdzlueNtztBOgkiphlxoZyV6lOnA2kt2v6gsqPVUQulxytAfzhoO1i6/4y+zB0KHKlrQnThMo5TJlOc2ySItXRjoKPee9Fk2bNpi6fdkgnH1GzIfgD3m+B9Y3Bu3gwsPnCLBAPTgWv/HQ5aEiKH0HTp10WrZxksA==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=entrust.com; dmarc=pass action=none header.from=entrust.com; dkim=pass header.d=entrust.com; arc=none
Received: from CH0PR11MB5739.namprd11.prod.outlook.com (2603:10b6:610:100::20) by DM8PR11MB5655.namprd11.prod.outlook.com (2603:10b6:8:28::10) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.6043.36; Mon, 30 Jan 2023 21:12:28 +0000
Received: from CH0PR11MB5739.namprd11.prod.outlook.com ([fe80::3000:a478:192a:3860]) by CH0PR11MB5739.namprd11.prod.outlook.com ([fe80::3000:a478:192a:3860%4]) with mapi id 15.20.6043.036; Mon, 30 Jan 2023 21:12:28 +0000
From: Mike Ounsworth <Mike.Ounsworth@entrust.com>
To: Watson Ladd <watsonbladd@gmail.com>, Seo Suchan <tjtncks@gmail.com>
CC: "spasm@ietf.org" <spasm@ietf.org>
Thread-Topic: [EXTERNAL] Re: [lamps] Hybrid pkix isn't needed
Thread-Index: AQHZNEYdLfcavEmiTECHyprDlQzdea63RJYggAAKCwCAAAJBAIAABlKAgAAc6fA=
Date: Mon, 30 Jan 2023 21:12:27 +0000
Message-ID: <CH0PR11MB5739CD0B53949DD827D724269FD39@CH0PR11MB5739.namprd11.prod.outlook.com>
References: <CACsn0c=uPvp_hmakpfPff8WkYh1q9NhjfTJYs7iFu_czL2yAyA@mail.gmail.com> <DS7PR12MB5983E36300151BFC47E5CB34AAD39@DS7PR12MB5983.namprd12.prod.outlook.com> <CH0PR11MB57392033396F181A9853FAD79FD39@CH0PR11MB5739.namprd11.prod.outlook.com> <CACsn0c=n5TLZRywpRCQhpyoxX65OfA9p6e5iz9jKnnEVSX4zmQ@mail.gmail.com> <f04487ba-594d-ae24-828a-e08889c3b51e@gmail.com> <CACsn0cm_ggt-mzX2Sd_29bMBOBbBj6ozouZu0gSzg3LY2bDN-A@mail.gmail.com>
In-Reply-To: <CACsn0cm_ggt-mzX2Sd_29bMBOBbBj6ozouZu0gSzg3LY2bDN-A@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: CH0PR11MB5739:EE_|DM8PR11MB5655:EE_
x-ms-office365-filtering-correlation-id: 525b2785-2de0-4a00-f027-08db0306b12f
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:CH0PR11MB5739.namprd11.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230025)(346002)(39860400002)(396003)(366004)(136003)(376002)(451199018)(66476007)(4326008)(64756008)(66446008)(41300700001)(8676002)(33656002)(55016003)(110136005)(8936002)(52536014)(66946007)(316002)(76116006)(66556008)(5660300002)(966005)(83380400001)(71200400001)(2906002)(7696005)(26005)(186003)(9686003)(478600001)(6506007)(53546011)(86362001)(38070700005)(122000001)(38100700002); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-OriginatorOrg: entrust.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: CH0PR11MB5739.namprd11.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 525b2785-2de0-4a00-f027-08db0306b12f
X-MS-Exchange-CrossTenant-originalarrivaltime: 30 Jan 2023 21:12:27.9828 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: f46cf439-27ef-4acf-a800-15072bb7ddc1
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: feDolRAAbIbryFewrXPwTx8fIFmMhEEitjmEkak+6+Yz6MNqlNpmQZ7KL7qpJDoqXLzsNppDPSQhhYbT+7JoLJkuREom8OeKQ5JHhbI/wfM=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DM8PR11MB5655
X-Proofpoint-ORIG-GUID: b9TJFquZFr9_gvCmi53d7RjYosup1wXx
X-Proofpoint-GUID: b9TJFquZFr9_gvCmi53d7RjYosup1wXx
X-Proofpoint-Virus-Version: vendor=baseguard engine=ICAP:2.0.219,Aquarius:18.0.930,Hydra:6.0.562,FMLib:17.11.122.1 definitions=2023-01-30_17,2023-01-30_01,2022-06-22_01
X-Proofpoint-Spam-Details: rule=outbound_notspam policy=outbound score=0 bulkscore=0 impostorscore=0 malwarescore=0 mlxscore=0 clxscore=1011 adultscore=0 suspectscore=0 priorityscore=1501 lowpriorityscore=0 spamscore=0 phishscore=0 mlxlogscore=999 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.12.0-2212070000 definitions=main-2301300199
Archived-At: <https://mailarchive.ietf.org/arch/msg/spasm/OGMPvqNU6opfS1lLDKaaWMbUYB0>
Subject: Re: [lamps] [EXTERNAL] Re: Hybrid pkix isn't needed
X-BeenThere: spasm@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "This is a venue for discussion of doing Some Pkix And SMime \(spasm\) work." <spasm.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/spasm>, <mailto:spasm-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/spasm/>
List-Post: <mailto:spasm@ietf.org>
List-Help: <mailto:spasm-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/spasm>, <mailto:spasm-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 30 Jan 2023 21:12:38 -0000
>> Yet another is S/MIME email certificates: you need PQ CAs before you can issue PQ encryption certs. >Why? There's nothing wrong with mixed algorithms in a chain. The bigger issue here is root program policies about what can be signed. I don't follow. You're saying that we should issue post-quantum certificates off pre-quantum CAs? > Hash based schemes are secure if any signature scheme is secure. Maybe. I agree that HBS's are unlikely to yield algorithmic attacks, but they're just as likely as any other code to mess up an IF statement. If that's in the validation code then you have a problem (see the recent "psychic signatures" thing with ECDSA). Hence the suggestion that *all* PQ algorithms should be used in some form of hybrid with battle-harneded ECDSA implementations. > Even if we want to hybridize, having hybrid keys in certs seems a lot simpler to me than tying multiple certs through complex mechanisms. Everyone seems to have a strong opinion on this, and nobody's opinions seem to line up. Some use cases will prefer multi-cert, some will prefer composite keys, some may even find migration benefits to using both together: multiple certs where one is composite. In my opinion, we are under-estimating how complicated PQ transitions will be, especially for the larger and more complex PKIs in the world. More available tools is a good thing. --- Mike Ounsworth -----Original Message----- From: Spasm <spasm-bounces@ietf.org> On Behalf Of Watson Ladd Sent: Monday, January 30, 2023 1:20 PM To: Seo Suchan <tjtncks@gmail.com> Cc: spasm@ietf.org Subject: [EXTERNAL] Re: [lamps] Hybrid pkix isn't needed WARNING: This email originated outside of Entrust. DO NOT CLICK links or attachments unless you trust the sender and know the content is safe. ______________________________________________________________________ On Mon, Jan 30, 2023 at 10:57 AM Seo Suchan <tjtncks@gmail.com> wrote: > > Think there are two kinds of fail mode hybrid cert try to guard against: > Quantum computer came out breaking classical asymmetrical crypto, or > PQ algorithm we chooses was not that great and it broken down by new > classical attack Hash based schemes are secure if any signature scheme is secure. Even if we want to hybridize, having hybrid keys in certs seems a lot simpler to me than tying multiple certs through complex mechanisms. Sincerely, Watson Ladd -- Astra mortemque praestare gradatim _______________________________________________ Spasm mailing list Spasm@ietf.org https://urldefense.com/v3/__https://www.ietf.org/mailman/listinfo/spasm__;!!FJ-Y8qCqXTj2!fbHlvsGbpeRxQD89nneD-IbLn8xy29QgjYcb3jlsA-alvCwSee1kGDXWYq32siMT1rpBen_H1e2IjHGOlQ9khMb1wIiDAOg$ Any email and files/attachments transmitted with it are confidential and are intended solely for the use of the individual or entity to whom they are addressed. If this message has been sent to you in error, you must not copy, distribute or disclose of the information it contains. Please notify Entrust immediately and delete the message from your system.
- [lamps] Hybrid pkix isn't needed Watson Ladd
- Re: [lamps] Hybrid pkix isn't needed Michael Markowitz
- Re: [lamps] Hybrid pkix isn't needed Watson Ladd
- Re: [lamps] Hybrid pkix isn't needed Tadahiko Ito
- Re: [lamps] Hybrid pkix isn't needed Ilari Liusvaara
- Re: [lamps] Hybrid pkix isn't needed Hubert Kario
- Re: [lamps] Hybrid pkix isn't needed Mike Ounsworth
- Re: [lamps] Hybrid pkix isn't needed Watson Ladd
- Re: [lamps] Hybrid pkix isn't needed Seo Suchan
- Re: [lamps] Hybrid pkix isn't needed Watson Ladd
- Re: [lamps] [EXTERNAL] Re: Hybrid pkix isn't need… Mike Ounsworth
- Re: [lamps] Hybrid pkix isn't needed Stephen Farrell
- Re: [lamps] Hybrid pkix isn't needed Tadahiko Ito
- Re: [lamps] Hybrid pkix isn't needed Ilari Liusvaara
- Re: [lamps] Hybrid pkix isn't needed Ilari Liusvaara
- Re: [lamps] Hybrid pkix isn't needed Carl Wallace
- Re: [lamps] [EXTERNAL] Re: Hybrid pkix isn't need… Mike Ounsworth
- Re: [lamps] Hybrid pkix isn't needed Phillip Hallam-Baker
- Re: [lamps] Hybrid pkix isn't needed Tim Hollebeek