Hi, Here is the latest draft-hu-ipsecme-pqt-hybrid-auth, following are the updates, comments are welcome
1. Change in -02 clarify the approach in the document is general dropping support for PreHash ML-DSA, change example to Pure Signature ML-DSA adding more details in signing process to align with ietf-lamps-pq-composite-sigs-04 add text in Security Considerations to emphasize prohibit of key reuse clarify the both C and S bit MAY be 1 at the same time clarify the receiver behavior when the announcement contains no algid typo fixes -----Original Message----- From: [email protected] <[email protected]> Sent: Thursday, May 1, 2025 9:00 AM To: Guilin WANG <[email protected]>; Jun Hu (Nokia) <[email protected]>; Wang; Guilin <[email protected]>; Yasufumi Morioka <[email protected]> Subject: New Version Notification for draft-hu-ipsecme-pqt-hybrid-auth-02.txt CAUTION: This is an external email. Please be very careful when clicking links or opening attachments. See the URL nok.it/ext for additional information. A new version of Internet-Draft draft-hu-ipsecme-pqt-hybrid-auth-02.txt has been successfully submitted by Hu, Jun and posted to the IETF repository. Name: draft-hu-ipsecme-pqt-hybrid-auth Revision: 02 Title: Post-Quantum Traditional (PQ/T) Hybrid PKI Authentication in the Internet Key Exchange Version 2 (IKEv2) Date: 2025-05-01 Group: Individual Submission Pages: 13 URL: https://www.ietf.org/archive/id/draft-hu-ipsecme-pqt-hybrid-auth-02.txt Status: https://datatracker.ietf.org/doc/draft-hu-ipsecme-pqt-hybrid-auth/ HTML: https://www.ietf.org/archive/id/draft-hu-ipsecme-pqt-hybrid-auth-02.html HTMLized: https://datatracker.ietf.org/doc/html/draft-hu-ipsecme-pqt-hybrid-auth Diff: https://author-tools.ietf.org/iddiff?url2=draft-hu-ipsecme-pqt-hybrid-auth-02 Abstract: One IPsec area that would be impacted by Cryptographically Relevant Quantum Computer (CRQC) is IKEv2 authentication based on traditional asymmetric cryptographic algorithms: e.g RSA, ECDSA; which are widely deployed authentication options of IKEv2. There are new Post-Quantum Cryptographic (PQC) algorithms for digital signature like NIST [ML-DSA], however it takes time for new cryptographic algorithms to mature, so there is security risk to use only the new algorithm before it is field proven. This document describes a IKEv2 hybrid authentication scheme that could contain both traditional and PQC algorithms, so that authentication is secure as long as one algorithm in the hybrid scheme is secure. The IETF Secretariat _______________________________________________ IPsec mailing list -- [email protected] To unsubscribe send an email to [email protected]
