On Tue, Sep 05, 2023 at 04:05:27PM -0700, Christopher Allen wrote: > > However, this poll is missing one important element, which is to > strictly limit ciphersuites to those that make sense, not a > ciphersuite for every possible variant.
I have posted a set of rules for determining the ciphersuites that make sense (including handling some future edge cases), and currently it gives 12 ciphersuites. Applications are expected to profile this down. If HPKE adds compact curves (highly desirable), the rules give 6 additional ciphersuites (what I supect to be the most wanted one is among the six). If HPKE additionally adds AEGIS (which could happen), the rules give 9 additional ciphersuites (AEGIS without compact would give 6). HPKE adding ShangMi (China) algorithms (another thing that could happen) would add only 1 ciphersuite. And a subtle but very serious issue is how to make all the ciphersuites (including future ones!) work in the same way. Ciphersuites that work differently are not acceptable due to causing extreme complexity. -Ilari _______________________________________________ COSE mailing list [email protected] https://www.ietf.org/mailman/listinfo/cose
