IETF Logo Mail Archive

Re: [lamps] [EXTERNAL] Re: Proposed re-charter text for hybrid and dual crypto modes

Mike Ounsworth <Mike.Ounsworth@entrust.com> Thu, 28 January 2021 20:22 UTC

Return-Path: <Mike.Ounsworth@entrust.com>
X-Original-To: spasm@ietfa.amsl.com
Delivered-To: spasm@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2B3EB3A1715 for <spasm@ietfa.amsl.com>; Thu, 28 Jan 2021 12:22:09 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.101
X-Spam-Level:
X-Spam-Status: No, score=-2.101 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=entrust.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ljg7te74FhLF for <spasm@ietfa.amsl.com>; Thu, 28 Jan 2021 12:22:05 -0800 (PST)
Received: from NAM04-CO1-obe.outbound.protection.outlook.com (mail-eopbgr690118.outbound.protection.outlook.com [40.107.69.118]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id BAD9D3A1730 for <spasm@ietf.org>; Thu, 28 Jan 2021 12:22:03 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=MlufNOPdv0rE9VKIzpNTA4BKqf9lLKcUhIt6qTl0wVcTw1eD+NuE10EI8HuIx2AoSvPwR83QFd8ZInbyDmIO0iF/xoQ3N5Z+viJNvCf8+/Vl+b4Wt9ww/hEkDpnm/3S+UiVma/liyNAXvgUdPnsr15E7lNYH5oA+PQxBzKMuIp9JPzAw5ayiPZsr70rt04LRJfeasYo6R+n1jfyBsmi1QLEvXNuBFGaU6fGnJ3Zf3OoEgnzJu4dvscvOJZzbLUhAO83ONTMdoC31yakvwIIZwYxAYaoUQzbNYFTND0sRcxgooWUkGVbu5HEpR3sot4yesL7d2DCAOmPSqDT/YM6omQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=PpUWHhWl7T7WNqRsvOsvbkFkXexEyCV4hKgvr/mO7VE=; b=DUvEIFtLMpHL+IfAoJ1FBjSBMDq+aJ3ncOf9Q7Ti1iNksplcpcZxrPW9oqrUln4ePBaN/qeClyHP7xTKUOUXBU5sD09sHgaJ8Dnv5WZ3jLYzABrB9K/tM5utyzcMIlpfkjTeNAJVtQmDw4soAdQeJ1p46i1ClCNIWKNnfy2+iRFJluf0iqlUJFW9eVdaeOtx+uAn1P69sj8K+9e2i0jFp0S3uNmi4FGpt7C+wrOgkt5aO6I30z6knuysGF6lg2/33P/nIpcXYwhcgSeqaOK+E2ribx6RkB6bAQftLcyi7Mj+2epYdpElRR8VIePKEhNpgCEPZ9xRMZ22hZTbm7kIQA==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=entrust.com; dmarc=pass action=none header.from=entrust.com; dkim=pass header.d=entrust.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=entrust.com; s=selector2; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=PpUWHhWl7T7WNqRsvOsvbkFkXexEyCV4hKgvr/mO7VE=; b=DApALl6iaAhuwkdzfzjH4bNuw3EHIU5mbDaw6lptTSR40f/lnyV9WfZpHA8GnO9sHaG6g5epVXhp8x4D18Sk7M6tfH76XzjKMq7IIsE6X3C0M7/sX/NAvs7KzUWs9xX/v5SwhKaP77AMC8jGKSyiNvmg009R7XktVw+JmlueVI4Wppd3mC1LRJP0TQM2/ROySnIUmK9OUUSn3t7xKb/0atWpxe6DdJG0XF2qhmMF45cnqf1Kio7Z/C37UYR7fCZta4tV5fVsgjMY74gkncHLLtfvSJksL0JY1OOVgmdCV5wJbyxNAYhMm1w1fCoKYjGQb9E9zmazHz79Nv+eYILdPw==
Received: from DM6PR11MB4380.namprd11.prod.outlook.com (2603:10b6:5:14e::20) by DM6PR11MB2571.namprd11.prod.outlook.com (2603:10b6:5:c7::17) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3805.17; Thu, 28 Jan 2021 20:22:01 +0000
Received: from DM6PR11MB4380.namprd11.prod.outlook.com ([fe80::a816:b4fb:846e:9417]) by DM6PR11MB4380.namprd11.prod.outlook.com ([fe80::a816:b4fb:846e:9417%6]) with mapi id 15.20.3784.019; Thu, 28 Jan 2021 20:22:01 +0000
From: Mike Ounsworth <Mike.Ounsworth@entrust.com>
To: Sean Turner <sean@sn3rd.com>
CC: LAMPS <spasm@ietf.org>
Thread-Topic: [EXTERNAL] Re: [lamps] Proposed re-charter text for hybrid and dual crypto modes
Thread-Index: Adb1q3GYntimtkHXQaOdOOEUbm7smwABWBgAAABqtFA=
Date: Thu, 28 Jan 2021 20:22:01 +0000
Message-ID: <DM6PR11MB43801C9A891C0DF843AE309C9FBA9@DM6PR11MB4380.namprd11.prod.outlook.com>
References: <DM6PR11MB43808FA7D74229A5997965649FBA9@DM6PR11MB4380.namprd11.prod.outlook.com> <1BE0BD5D-BD11-40E7-87F5-61EE49AAF1FD@sn3rd.com>
In-Reply-To: <1BE0BD5D-BD11-40E7-87F5-61EE49AAF1FD@sn3rd.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: sn3rd.com; dkim=none (message not signed) header.d=none;sn3rd.com; dmarc=none action=none header.from=entrust.com;
x-originating-ip: [4.19.72.62]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 627b8d17-6b1f-4b12-a2f3-08d8c3ca5edf
x-ms-traffictypediagnostic: DM6PR11MB2571:
x-microsoft-antispam-prvs: <DM6PR11MB25715A61BF5EE091EBBCF0209FBA9@DM6PR11MB2571.namprd11.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:6430;
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:DM6PR11MB4380.namprd11.prod.outlook.com; PTR:; CAT:NONE; SFS:(4636009)(346002)(136003)(396003)(366004)(376002)(39850400004)(86362001)(64756008)(66556008)(66446008)(26005)(66476007)(66946007)(6506007)(53546011)(7696005)(52536014)(71200400001)(186003)(5660300002)(316002)(966005)(478600001)(76116006)(55016002)(83380400001)(4326008)(9686003)(33656002)(6916009)(8676002)(8936002)(2906002); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata: ch6fc4cSy4NbLza6+nKdILSeGAZ2Z2+eaPKiMk8po8gsP6Zp/s2p5ip89B1qXYwIAJYRtcJwWi0OJpUtKWDTDCVTv7HElXE9SHpz6JeTixQTRE2dFdBmX3KSWE+o6tTuxEbru7ycZ9OZ1IZF2W5idxBSQcY/2g9ukHF8JKza04b4skv8tDdj1hl9CZ3cKbL/zkmmAB5e7H3oD9KVZisMEtlEjS2T4JU9NPQC7E105E3t9/oLuj9Mxiton8rAzHlCeK1WVgNPgaS9edN+lWRveM/BFs2pZo2Kkh0WpFVe/OCwqpQpPEHCGze1U26uXsOljW1Va1z+3Ko4ZkHbEJ1SD4GWnEvxPNpxs/AkVeEEOAMlEONg6nT9oyCFneTMHRzjRU+daIZT72OopZV8gjqw/tWGWZ1wfPNA5hAt5jd5gRqujBqCuQEo1ooG/HgEbtuuDZfKwYL9b23uykiBivlaiyg16o76G3sicNvl/garl8EVsNQ7oR64VJfD7751HRyazzgy8Zdjhl9pGAEQwrIgXb6EGsb3vH0ektQ3Va1i2FKu4vZMG3QhFTQ0+LxP7bmbZuvN0lJtKaR1LrclAHkSqGA27FpYNp4A5qNLBZ/JlBZz4WIkFwinNr54MlKh7fFu8GGfvJjTAq/bvf2+Fe3GGOibokgcDzz4JXH/l+pf/jhn30LmyVr8z3e3vxGhL4/8hgVMuDnQW7g0q2V9Ac+mvWACxPBgO6TvG29CNPP2sZIf9DpYXeUlJzVE3oxnYMdpz+JeR9RoOUS3x3hjlB7w/WB7OrZG4tQ4LuT70TcHhNqYexgXDRB+IAcO+0HwHurA18LqgIPvQSQk65bMTLbEgraYN6K2esHSCYmHek+kIipJzvrQcvoAEj3X/zMluWxpdEm5R+y40e5cn6pc/8fie0J33q0TRJqIGQ55EdCuNEm819DjgQ0XjCzL4E5Q/O/cYj7i4M0trULxzXY2Wiav0uJT8k1W44p6dcaVfnur5dOLdyz5z26J3WiyAZfNyRuJu6WZrqvD7vq22XGhL30T9AsSoqI57Oy21eFirOBuFBo=
x-ms-exchange-transport-forked: True
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: entrust.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: DM6PR11MB4380.namprd11.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 627b8d17-6b1f-4b12-a2f3-08d8c3ca5edf
X-MS-Exchange-CrossTenant-originalarrivaltime: 28 Jan 2021 20:22:01.4910 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: f46cf439-27ef-4acf-a800-15072bb7ddc1
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: UqyiGy9QBQyPkMtNZJr2dMt+4AoOa1H3q+yeerztRzFo1UEvTqTWixjYJy+M98xXvMSRBX+CpdxpbnK0wtu5bqh/qgsFthI5K9RrIubZFCM=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DM6PR11MB2571
Archived-At: <https://mailarchive.ietf.org/arch/msg/spasm/ff3f61dHndyryai3ceO9_0_AhLU>
Subject: Re: [lamps] [EXTERNAL] Re: Proposed re-charter text for hybrid and dual crypto modes
X-BeenThere: spasm@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "This is a venue for discussion of doing Some Pkix And SMime \(spasm\) work." <spasm.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/spasm>, <mailto:spasm-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/spasm/>
List-Post: <mailto:spasm@ietf.org>
List-Help: <mailto:spasm-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/spasm>, <mailto:spasm-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 28 Jan 2021 20:22:16 -0000

From discussion at the interim meeting, perhaps "... will update documents produced by the PKIX and S/MIME WG.." maybe is not broad enough and maybe needs to allow for new documents? The idea here is to make sure existing standards have sufficient hybrid and dual support, not to go inventing totally new protocols. 

... that said, I wonder whether draft-ounsworth-pq-composite-sigs actually falls inside this wording or not; as a standalone definition of a new signature algorithm, it's not technically updating any existing documents...

---
Mike Ounsworth

-----Original Message-----
From: Sean Turner <sean@sn3rd.com> 
Sent: January 28, 2021 2:05 PM
To: Mike Ounsworth <Mike.Ounsworth@entrust.com>
Cc: LAMPS <spasm@ietf.org>
Subject: [EXTERNAL] Re: [lamps] Proposed re-charter text for hybrid and dual crypto modes

WARNING: This email originated outside of Entrust.
DO NOT CLICK links or attachments unless you trust the sender and know the content is safe.

I think if we are going to do this then I think these are the words I’d use.

Get ready to explain the quoted text to the IESG :)

spt

> On Jan 28, 2021, at 14:27, Mike Ounsworth <Mike.Ounsworth=40entrust.com@dmarc.ietf.org> wrote:
> 
> Proposed charter text:
> 
> Post-quantum cryptography (PQC) will require a transition period in some ways similar to previous crypto migrations, but unique in that timelines require deployment of PQC before cryptographers have full confidence in the replacement algorithms. NIST has called for transition mechanisms that "layer" traditional and PQ crypto together, referred to as "hybrid key establishment" and "dual signatures". The LAMPS working group will update documents produced by the PKIX and S/MIME WG to support hybrid key establishment, encryption, and dual signature mechanisms.
> 
> ---
> Mike Ounsworth
> Software Security Architect, Entrust
> 
> _______________________________________________
> Spasm mailing list
> Spasm@ietf.org
> https://urldefense.com/v3/__https://www.ietf.org/mailman/listinfo/spasm__;!!FJ-Y8qCqXTj2!Jm1C-jM0OWxeWC2pfaUPxUrtNIduGAR2D2ki58AztVqNiHwWMrn1kfswxRZ8GadHIQEL$

v2.23.0 | Report a Bug | By Email