IETF Logo Mail Archive

[TLS] Re: [EXT] Re: ML-DSA in TLS

tirumal reddy <kondtir@gmail.com> Sat, 16 November 2024 06:16 UTC

Return-Path: <kondtir@gmail.com>
X-Original-To: tls@ietfa.amsl.com
Delivered-To: tls@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D2476C14F5E9 for <tls@ietfa.amsl.com>; Fri, 15 Nov 2024 22:16:52 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.103
X-Spam-Level:
X-Spam-Status: No, score=-2.103 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_BLOCKED=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id pvFiGctQxjyS for <tls@ietfa.amsl.com>; Fri, 15 Nov 2024 22:16:49 -0800 (PST)
Received: from mail-ed1-x52e.google.com (mail-ed1-x52e.google.com [IPv6:2a00:1450:4864:20::52e]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 0F964C14F5EC for <tls@ietf.org>; Fri, 15 Nov 2024 22:16:49 -0800 (PST)
Received: by mail-ed1-x52e.google.com with SMTP id 4fb4d7f45d1cf-5cf7b79c6a6so3788473a12.0 for <tls@ietf.org>; Fri, 15 Nov 2024 22:16:48 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20230601; t=1731737807; x=1732342607; darn=ietf.org; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:from:to:cc:subject:date:message-id:reply-to; bh=V3eGl6NJBmUym9oeBo3ZRHcnWVgqjzIZ0+rb1u8dsfg=; b=Q32tRwZPl7q88txl9mJ9DgZFtcwh9DhF/LFnpD/JewMt1nsYZy7FPYkaRpYbTVAXe8 OQ+fAPd/bxpkaS0BFGoc/dalZcg1rnK62oIBbf8QnxD3aNdxb6YqzwQIEFVlV+tChZxm lQww+rUy4qzD2tapSeFy6+HjB/7A3dQ2JwKOcR4q4t/D8OWx+8BepBvE4+8vKUwNXf1F AWCSFSR9zNhoZ0MeGm4E5EB3Hu5Cr8Cla67LTunloAxh/hTpz7LdysO7GEdt7AjkRpHW xCAMEkuabgEO/qQ0P4vmgrpFd5GOuKq/gE6Llnm51PsUomnccjq7gIsd6mVe7jeGvU/E 7oSQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1731737807; x=1732342607; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:x-gm-message-state:from:to:cc:subject:date:message-id :reply-to; bh=V3eGl6NJBmUym9oeBo3ZRHcnWVgqjzIZ0+rb1u8dsfg=; b=u4FqC4ESJawjdCZS8td1f2BhPqIXrVvHumTYH8gvawQ8fbFjK6zCHsGdYAxgHCto4N u4Qa3xQB3WMtnBpqgmnMRBsBZ5DihKJJXzYxOEL7Hz/Z/SiYdAtpUJMXBxalh6EwnG4a aix4vIBXV5LCnL6qOI5dsoaDZFj2mxwjjFc2L1M9J8V6AQvirjT6948mkz0vlHhMTKnw Cs8OTi75/GHFVECec5+eafjLgJASfA5rrrC4P9BYSf2OL9lZaNMh0qR8Qd1yOVuqp7Nx dsyiM7ScmTuhXKQ7jRnTATKcEOyqPM/Sw434Om5GJ+lX9fAdb5gLP/HBE9U01MlDMxI/ E3Mw==
X-Forwarded-Encrypted: i=1; AJvYcCV2jY2wyEQP00QOd420v3T29pmnauZISKBocenobr5MiO12zOFDo2Z90SikxEaiLBVec/k=@ietf.org
X-Gm-Message-State: AOJu0YzHHr/ZvGKKYOVxUNHOQsKV6zxPaPe89b1buAbR4Xo9Fgpw6lUD bruSTVj1LnONb2Q1bvzmv+FwXxGEV7NtMgKpl8OEldHRZn8H5iRAFSS3nb8cqQLX4WNWo6e73MT 7dOz7KHwLnPS9KN3+FvVZ7obM+ic=
X-Google-Smtp-Source: AGHT+IHuAPERak1lRAlu2MfMEJc5VrnoNP1HNL1Ir/D/hRxNOkPP7dadwVV378k9F8PdVejNb7DU7Dft9Qdke1WhUJQ=
X-Received: by 2002:a17:907:3f17:b0:a99:ff33:9ba5 with SMTP id a640c23a62f3a-aa2077daaf8mr829595166b.24.1731737806915; Fri, 15 Nov 2024 22:16:46 -0800 (PST)
MIME-Version: 1.0
References: <CAMjbhoUFkL=UT0Pt2xjPLm998=j1ef+wdm0WO14_W7OJDJ-hOg@mail.gmail.com> <CAMjbhoWY+1Km_=+PbXfEjab02AfWpbd4WwKwuBN_5KZZpCkXZg@mail.gmail.com> <bd714bdc-5bf9-47a6-8e66-b2e4624c9df0@cs.tcd.ie> <GVXPR07MB9678722E47C82B14B0F296F389242@GVXPR07MB9678.eurprd07.prod.outlook.com> <CAAWw3Rh-2A1zuEWOLuoaQ5DMcDGb_oQXRc8ZNYNVoO8KDsqzTA@mail.gmail.com> <e855562b-2bce-4bd4-ab58-074550c34475@redhat.com> <CAAWw3Rj7L8v9OOJtGHMvCXRtcHYAMU3TLPJ_etf8EP8MSiSHGQ@mail.gmail.com> <BN0P110MB141974314450179F48B424D99024A@BN0P110MB1419.NAMP110.PROD.OUTLOOK.COM> <CAAWw3Rgy7qonCMqKmYiCQZi3RCq=t4J94NA817ONYGOTwP3FDw@mail.gmail.com> <CACsn0c=8J4S00mzOWpHgKSudnpp=zzRjGmVQ5tRNTOnN5ekWfw@mail.gmail.com> <CAAWw3RjCk1hhjapG5r6F0NEo83G=XzyNuscSrzJMeefuZm_cJA@mail.gmail.com> <CACsn0ckf57w-6xg+-d2WrvoY-RGM+BQbZFP-fo=OTC11kNdRYQ@mail.gmail.com> <CAAWw3Rg9YW5=Gd3E-XvthsU6-N=zx_N0Ss2uZsaVcB5c8HoQFA@mail.gmail.com>
In-Reply-To: <CAAWw3Rg9YW5=Gd3E-XvthsU6-N=zx_N0Ss2uZsaVcB5c8HoQFA@mail.gmail.com>
From: tirumal reddy <kondtir@gmail.com>
Date: Sat, 16 Nov 2024 11:46:10 +0530
Message-ID: <CAFpG3gdOewSQoMFN5yZD5YuztGJ7-fUQ1q4nQsCi5JJquDg8QQ@mail.gmail.com>
To: Andrey Jivsov <crypto@brainhub.org>
Content-Type: multipart/alternative; boundary="000000000000d35455062701a05d"
Message-ID-Hash: OLZ76JXJPOJZRGOOFTAE4P37OIUJ5B3Y
X-Message-ID-Hash: OLZ76JXJPOJZRGOOFTAE4P37OIUJ5B3Y
X-MailFrom: kondtir@gmail.com
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-tls.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: John Mattsson <john.mattsson=40ericsson.com@dmarc.ietf.org>, Bas Westerbaan <bas=40cloudflare.com@dmarc.ietf.org>, TLS List <tls@ietf.org>
X-Mailman-Version: 3.3.9rc6
Precedence: list
Subject: [TLS] Re: [EXT] Re: ML-DSA in TLS
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls/MyeFfJqrRprdcOaMf8zpLxAoX9k>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Owner: <mailto:tls-owner@ietf.org>
List-Post: <mailto:tls@ietf.org>
List-Subscribe: <mailto:tls-join@ietf.org>
List-Unsubscribe: <mailto:tls-leave@ietf.org>

On Sat, 16 Nov 2024 at 10:23, Andrey Jivsov <crypto@brainhub.org> wrote:

> On Fri, Nov 15, 2024 at 3:56 PM Watson Ladd <watsonbladd@gmail.com> wrote:
>
>> ...
>> Why not hash based signatures?
>>
>
>  I think that the stateful ones are perfectly suited for certifications in
> X.509 certs, but in the TLS handshake this has to be Sphincs+, at 16.2KB
> per signature at the AES-192 security level. In addition to size concerns,
> it's not allowed in CNSA 2.0. Are vendors considering SPHINCS+ for this
> purpose?
>

Yes, we are considering SPHINCS+ for long-lived TLS sessions in telco
deployments for interfaces where computational costs of signature
generation and validation are minor compared to data transmission and
processing demands of user data. The findings in Amazon
<https://www.amazon.science/publications/the-impact-of-data-heavy-post-quantum-tls-1-3-on-the-time-to-last-byte-of-real-world-connections>
paper
<https://www.amazon.science/publications/the-impact-of-data-heavy-post-quantum-tls-1-3-on-the-time-to-last-byte-of-real-world-connections>
shows that while PQ algorithms increase the TLS 1.3 handshake data size,
their effect on connection performance is minimal for large data transfers,
especially in low-loss networks.

-Tiru


> _______________________________________________
> TLS mailing list -- tls@ietf.org
> To unsubscribe send an email to tls-leave@ietf.org
>

v2.29.0 | Report a Bug | By Email | System Status