To make sure we mention the NIST PQ Level categorization (that will not change as the NIST PQ Project progresses), I was thinking we could add something in the Sec Considerations section like
[...] Because of this, the user SHOULD ensure that the post-quantum preshared key used has at least 256 bits of entropy, in order to provide 128 bits of post-quantum security. That provides security equivalent to Level 5 defined in the NIST PQ Project Call For Proposals [NISTPQCFP]. -----Original Message----- From: IPsec <ipsec-boun...@ietf.org> On Behalf Of Paul Wouters Sent: Thursday, December 26, 2019 12:58 PM To: Valery Smyslov <s...@elvis.ru> Cc: ipsec@ietf.org WG <ipsec@ietf.org>; last-c...@ietf.org; draft-ietf-ipsecme-qr-ikev2....@ietf.org; 'secdir' <sec...@ietf.org> Subject: Re: [IPsec] [Last-Call] [secdir] Secdir last call review of draft-ietf-ipsecme-qr-ikev2-09 On Wed, 25 Dec 2019, Valery Smyslov wrote: > Uri, I don't mind referencing NIST levels, but I'd like to first hear > from my co-authors, > > who are definitely more experienced in cryptography and in NIST levels > than I am :-) I don't think mentioning the NIST competition is useful. Per definition, that is incomplete preliminary data. Paul _______________________________________________ IPsec mailing list IPsec@ietf.org https://www.ietf.org/mailman/listinfo/ipsec
smime.p7s
Description: S/MIME cryptographic signature
_______________________________________________ IPsec mailing list IPsec@ietf.org https://www.ietf.org/mailman/listinfo/ipsec
