IETF Logo Mail Archive

Re: [lamps] OID für KEM?

Russ Housley <housley@vigilsec.com> Fri, 08 October 2021 16:54 UTC

Return-Path: <housley@vigilsec.com>
X-Original-To: spasm@ietfa.amsl.com
Delivered-To: spasm@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3CB4B3A0870 for <spasm@ietfa.amsl.com>; Fri, 8 Oct 2021 09:54:44 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.898
X-Spam-Level:
X-Spam-Status: No, score=-1.898 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, SPF_HELO_NONE=0.001, SPF_NONE=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id PqNUIm-fiMzb for <spasm@ietfa.amsl.com>; Fri, 8 Oct 2021 09:54:39 -0700 (PDT)
Received: from mail.smeinc.net (mail.smeinc.net [209.135.209.11]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 46BCC3A08C1 for <spasm@ietf.org>; Fri, 8 Oct 2021 09:54:39 -0700 (PDT)
Received: from localhost (localhost [127.0.0.1]) by mail.smeinc.net (Postfix) with ESMTP id 74D8B300C50 for <spasm@ietf.org>; Fri, 8 Oct 2021 12:54:40 -0400 (EDT)
X-Virus-Scanned: amavisd-new at mail.smeinc.net
Received: from mail.smeinc.net ([127.0.0.1]) by localhost (mail.smeinc.net [127.0.0.1]) (amavisd-new, port 10026) with ESMTP id EB7FVQ_GCc8t for <spasm@ietf.org>; Fri, 8 Oct 2021 12:54:38 -0400 (EDT)
Received: from [192.168.1.161] (pool-141-156-161-153.washdc.fios.verizon.net [141.156.161.153]) by mail.smeinc.net (Postfix) with ESMTPSA id 64036300B19; Fri, 8 Oct 2021 12:54:38 -0400 (EDT)
From: Russ Housley <housley@vigilsec.com>
Message-Id: <C7F5365D-3B42-49CF-AA4F-E6974F071422@vigilsec.com>
Content-Type: multipart/signed; boundary="Apple-Mail=_11B3FABB-B595-435C-9B05-12A5C51FBF09"; protocol="application/pgp-signature"; micalg="pgp-sha256"
Mime-Version: 1.0 (Mac OS X Mail 12.4 \(3445.104.21\))
Date: Fri, 08 Oct 2021 12:54:34 -0400
In-Reply-To: <5BA17D7A-F19D-474B-8DD8-8EB36A363818@ll.mit.edu>
Cc: LAMPS WG <spasm@ietf.org>
To: Uri Blumenthal <uri@ll.mit.edu>
References: <5BA17D7A-F19D-474B-8DD8-8EB36A363818@ll.mit.edu>
X-Mailer: Apple Mail (2.3445.104.21)
Archived-At: <https://mailarchive.ietf.org/arch/msg/spasm/sgew4nNWqT-Wy8n2urb5GZgtW9w>
Subject: Re: [lamps] OID für KEM?
X-BeenThere: spasm@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "This is a venue for discussion of doing Some Pkix And SMime \(spasm\) work." <spasm.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/spasm>, <mailto:spasm-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/spasm/>
List-Post: <mailto:spasm@ietf.org>
List-Help: <mailto:spasm-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/spasm>, <mailto:spasm-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 08 Oct 2021 16:54:44 -0000

Uri:

Researchers are going to assign OIDs to use in their projects.  A group of researchers might collaborate to use the same OIDs.  My worry is that these will not ever go away.

The LAMPS WG cannot assign these OIDs.  The charter says:

   5.a. The US National Institute of Standards and Technology (NIST)
   has a Post-Quantum Cryptography (PQC) effort to produce one or more
   quantum-resistant public-key cryptographic algorithm standards.
   The LAMPS WG will specify the use of these new PQC public key
   algorithms with the PKIX certificates and the Cryptographic Message
   Syntax (CMS). These specifications will use object identifiers
   for the new algorithms that are assigned by NIST.

Russ


> On Oct 8, 2021, at 12:48 PM, Blumenthal, Uri - 0553 - MITLL <uri@ll.mit.edu> wrote:
> 
> There was a discussion here some time ago regarding NIST PQC KEM candidates, and assigning them OIDs for use in various protocols.
> The conclusion at  that time was that an OID should identify not just the bare-bones algorithm, but the suite the KEM in question is made a part of.
> 
> I now need to define a certificate that would authenticate PQ public key for use in a variety of non-public (yet) protocols that utilize KEM. That means - I need to identify the algorithm this public key is for, and not bother with differentiating between different protocols that may use this KEM and therefore this public key.
> I understand that I can create an Algo Identifier myself, but my preference is something with broader acceptability and interoperability.
> 
> What does the WG think? Any recommendations?
> 
> Regards,
> Uri

v2.23.0 | Report a Bug | By Email