IETF Logo Mail Archive

Re: [lamps] Proposed re-charter text for hybrid and dual crypto modes

Michael Jenkins <m.jenkins.364706@gmail.com> Sun, 31 January 2021 16:20 UTC

Return-Path: <m.jenkins.364706@gmail.com>
X-Original-To: spasm@ietfa.amsl.com
Delivered-To: spasm@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 73A503A10B3 for <spasm@ietfa.amsl.com>; Sun, 31 Jan 2021 08:20:14 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.847
X-Spam-Level:
X-Spam-Status: No, score=-1.847 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_ENVFROM_END_DIGIT=0.25, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ZX-Ole8LTek5 for <spasm@ietfa.amsl.com>; Sun, 31 Jan 2021 08:20:12 -0800 (PST)
Received: from mail-io1-xd2e.google.com (mail-io1-xd2e.google.com [IPv6:2607:f8b0:4864:20::d2e]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 19A903A10B0 for <spasm@ietf.org>; Sun, 31 Jan 2021 08:20:11 -0800 (PST)
Received: by mail-io1-xd2e.google.com with SMTP id s24so3163415iob.6 for <spasm@ietf.org>; Sun, 31 Jan 2021 08:20:11 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=XmjzXnoKLL1S7vQu8bd/RK4oXQKb/go5/nbawa3SWew=; b=EBqE6onveFgNKZI8wRhKQ0dtOe2mIqUd7lLcFr1ZfUF19lWOgvvIpI4SCIu1sp4ezw jTb3Y64W8Zw16p7GKJKl0wIxEoM5zAXJERVMQIgmAWMZ16+K+QCJfbPlvyayM71ZBf/A DA/JI4I9PUJ26BmqAeY+gAeYA6RidA8qcrkJK38q9I7Wdr9okOTDDUqYZfszNPRM2eoM oWfhInJBak5uuiNhVR4zq/y7+dO340JWfdneqG6OTYrdGfieeWz9LrgNOxpHML85+UlT 9YOZQcigxNOWLwU51YGGqFqq8HtQUAHvJGPEl3YMAgeJIShDL3/Dc0rw2FuYdOUvVhnW WlEQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=XmjzXnoKLL1S7vQu8bd/RK4oXQKb/go5/nbawa3SWew=; b=q1ARSAZ0r1tOU6fQujxBJf1WWUXYHCLZx01EjJ/W3xJseR1OI7O5W2KKUcH0O5GvSS r3MWF/p4uxnvnP0lTu9n+7vED13bu5/OWyfkIPfZjWR2mfgFi7NCcHrF/JhxmAS8Bd08 xwYciQ0a3ihBMltb90GfU9FAU/0Y9dvKfKOkc5AcHaICxW/SVqvbnRUWP4P9bFXmC0O4 tyoOkW5elSR+Ia3x3Zy+hrXmneTZ3FzUQjS9ekzjU71j9YAxK15DNoZoHJqAYf9W7pb1 hUfo/Gvv6kS88WgLJ1YZAUyWt7m0Tkl9pj98+7B6Yi228hJgrQPFEhdL1MXgIyy7sXdx Ed5Q==
X-Gm-Message-State: AOAM531V6Za3Miq6hz3iBLgovsPhIwiy18WI+cZPBq6HsdoAczpF8JdK a6wOjNdRF5x/NEMY9XFHdfOSAFll22dQte3i+R4ksj2U
X-Google-Smtp-Source: ABdhPJxRMNbaSF61DCx3cEM+c2ky6q51TS4rLrqTeRj6LEwvyRiK0uncvhcaQ8MnaSCCEnsXiF3CWBLSgembnUbUuB0=
X-Received: by 2002:a02:cd25:: with SMTP id h5mr5008519jaq.31.1612110011138; Sun, 31 Jan 2021 08:20:11 -0800 (PST)
MIME-Version: 1.0
References: <DM6PR11MB43808FA7D74229A5997965649FBA9@DM6PR11MB4380.namprd11.prod.outlook.com> <E64102E4-AA88-4B87-814A-6C79F6655102@vigilsec.com>
In-Reply-To: <E64102E4-AA88-4B87-814A-6C79F6655102@vigilsec.com>
From: Michael Jenkins <m.jenkins.364706@gmail.com>
Date: Sun, 31 Jan 2021 11:20:00 -0500
Message-ID: <CAC2=hneq2Lx5Ke1fpEjSgUPvP58MBEOD9LiB6rnNRQnirqAf9A@mail.gmail.com>
To: Russ Housley <housley@vigilsec.com>
Cc: LAMPS <spasm@ietf.org>
Content-Type: multipart/alternative; boundary="0000000000008d839d05ba349c96"
Archived-At: <https://mailarchive.ietf.org/arch/msg/spasm/g7EYb_jBR7-4OoyMWiLm2H8mmyw>
Subject: Re: [lamps] Proposed re-charter text for hybrid and dual crypto modes
X-BeenThere: spasm@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "This is a venue for discussion of doing Some Pkix And SMime \(spasm\) work." <spasm.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/spasm>, <mailto:spasm-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/spasm/>
List-Post: <mailto:spasm@ietf.org>
List-Help: <mailto:spasm-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/spasm>, <mailto:spasm-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 31 Jan 2021 16:20:15 -0000

Not that I object to any of the work being proposed, but we seem to have
put paid to the notion of "limited". This is looking like PKIXme.

On Sat, Jan 30, 2021 at 4:14 PM Russ Housley <housley@vigilsec.com> wrote:

> Building on the text proposed by Mike, I want to address a point raised by
> Max and a point raised by Sean.
>
> First, Max observed that PQC algorithms will be used in both the one
> certificate and the two certificate models.  So, I propose charter text
> that has a place for each of them.
>
> Second, Sean observed that the charter will need some background text to
> explain what we are doing to the IESG.  So, I propose some charter text for
> additional context.
>
> Third, the charter is structured as a list of deliverables for the LAMPS
> WG.  So, I structured the proposed charter text as a new numbered item "X".
>
> ~~~
>
> X. Recent progress in the development of quantum computers pose a threat
> to widely deployed public key algorithms.  As a result, there is a need
> to prepare for a day when cryptosystems such as RSA, Diffie-Hellman,
> ECDSA, ECDH, and EdDSA cannot be depended upon.  As a result, there are
> efforts to develop standards for post-quantum cryptosystem (PQC)
> algorithms that that will be secure if large-scale quantum computers
> are ever developed.
>
> a. Specify the use of PQC public key algorithms with the PKIX
> certificates and the Cryptographic Message Syntax (CMS).
>
> b. Develop specifications to facilitate a lengthy transition from
> today's public key algorithms to PQC public key algorithms.  Unlike
> previous algorithm transitions, time will be needed before there is
> full confidence in the PQC public key algorithms.  Therefore,
> transition mechanisms that combine traditional algorithms with PQC
> algorithms will be needed for "hybrid key establishment" and "dual
> signatures".  NIST defines "hybrid key establishment" as any key
> establishment scheme that is a combination of two or more components
> that are themselves cryptographic key-establishment schemes.  NIST
> defines "dual signatures" as any signature scheme that consists of
> two or more signatures on a common message.  The specifications
> developed will enable PKIX and S/MIME protocols to support hybrid key
> establishment and dual signature mechanisms.
>
> ~~~
>
> Review and comments welcome.
>
> Russ
>
>
> > On Jan 28, 2021, at 2:27 PM, Mike Ounsworth <Mike.Ounsworth=
> 40entrust.com@dmarc.ietf.org> wrote:
> >
> > Proposed charter text:
> >
> > Post-quantum cryptography (PQC) will require a transition period in some
> ways similar to previous crypto migrations, but unique in that timelines
> require deployment of PQC before cryptographers have full confidence in the
> replacement algorithms. NIST has called for transition mechanisms that
> "layer" traditional and PQ crypto together, referred to as "hybrid key
> establishment" and "dual signatures". The LAMPS working group will update
> documents produced by the PKIX and S/MIME WG to support hybrid key
> establishment, encryption, and dual signature mechanisms.
> >
> > ---
> > Mike Ounsworth
> > Software Security Architect, Entrust
>
> _______________________________________________
> Spasm mailing list
> Spasm@ietf.org
> https://www.ietf.org/mailman/listinfo/spasm
>


-- 
Mike Jenkins
mjjenki@nsa.gov <mjjenki@tycho.ncsc.mil> - if you want me to read it only
at my desk
m.jenkins.364706@gmail.com - to read everywhere
443-634-3951

v2.23.0 | Report a Bug | By Email