Tero Kivinen <kivi...@iki.fi> wrote:
> This email will start two week working group adoption call for
> draft-reddy-ipsecme-ikev2-pqc-auth document. If you are in favor of
> adopting this document for the initial work document for the PQC auth
> work item, reply this email. And especially if you have any objections
> adopting this document as base document, reply this email by
> explaining your objections.
I have read pqc-auth back in December.
In the quantum-safe space we need:
1) a KEM to replace/augment (EC)DH.
2) a authentication/signature algorithm to replace RSA/ECDSA(/EDDSA)
3) a viable certification authority format
This document satisfies #2.
There is also draft-hu-ipsecme-pqt-hybrid-auth.
It would be nice if the authors could get together on this; lord knows we
don't have so many active author cycles.
It has large signatures.
We will perhaps also need:
draft-smyslov-ipsecme-ikev2-reliable-transport-03
For #1, we have:
draft-kampanakis-ml-kem-ikev2-09
and draft-wang-hybrid-kem-ikev2-frodo-02
I would prefer to have a single document: "Quantum-Safe Algorithms and
Methods for IKEv2", which took all these document together.
I would call upon the chairs to use your perogative to create a design team
on this topic, inviting the authors of all these documents to work together.
(For #3, I think we rely upon LAMPS to do it's thing.
Does someone have running code for a complete quantum-safe stack?)
--
Michael Richardson <mcr+i...@sandelman.ca> . o O ( IPv6 IøT consulting )
Sandelman Software Works Inc, Ottawa and Worldwide
signature.asc
Description: PGP signature
_______________________________________________ IPsec mailing list -- ipsec@ietf.org To unsubscribe send an email to ipsec-le...@ietf.org
