- From: Andrea D'Intino <andrea@dyne.org>
- Date: Wed, 27 Mar 2024 21:26:09 +0100
- To: Michael Prorock <mprorock@mesur.io>
- Cc: Manu Sporny <msporny@digitalbazaar.com>, W3C Credentials CG <public-credentials@w3.org>, Jaromil <jaromil@dyne.org>, Puria 💣 Nafisi Azizi <puria@dyne.org>
- Message-ID: <c5d72231-73cd-4e05-97dd-745911ab26b5@dyne.org>
Thanks Mike. I wasn't aware of FIPS 204 (nor of ML-DSA-65). When implementing Dilitihium2 and Kyber512 and in fact we used liboqs for ntrup761 (see here: https://github.com/dyne/Zenroom/tree/master/lib/pqclean/sntrup761 ) which I see also supports ML-DSA-65. Implementing either ML-DSA-65 or Falcon would take us a month or so, so as soon as a credible use case comes up, we're happy to look at implementing further crypto. But I'd say we'd rather start with Dilithium2. Cheers, | Andrea D'Intino | +45 21 62 79 18 | Project Manager |https://Dyne.org think &do tank | software to empower communities | ⚷ crypto κρυπτο крипто गुप्त् 加密הצפנה المشفره On 27/03/2024 21.00, Michael Prorock wrote: > Yean - totally understand based on implementation availability and > review - just be aware that you won't be getting exactly the FIPS > stuff you are probably after, and that it may work that you can build > on, but maybe not. > > Mike Prorock > Founder > https://mesur.io/ > > > > On Wed, Mar 27, 2024 at 1:53 PM Andrea D'Intino <andrea@dyne.org> wrote: > > Interesting, I'm taking a note. > > For the moment we have implemented Dilithium2 only from PQClean, > so that's all we can work on for now. For the future we're > discussing Falcon (also in PQClean). > > | Andrea D'Intino | +45 21 62 79 18 | Project Manager > |https://Dyne.org <https://Dyne.org> think &do tank | software to empower communities > | ⚷ crypto κρυπτο крипто गुप्त् 加密הצפנה المشفره > > On 27/03/2024 20.51, Michael Prorock wrote: >> I would recommend that any trial implementation utilize ML-DSA, >> perhaps with only one parameter set identified for now, e.g. >> ML-DSA-65. There are subtle, but important differences. See >> section 1.3 here: >> https://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.204.ipd.pdf >> >> For parameter sets, see section 4 of the initial public draft for >> FIPS204 >> >> See here for good implementation starting places if you plan to >> implement rather than incorporate via openssl or otherwise: >> https://github.com/open-quantum-safe/liboqs >> >> Mike Prorock >> Founder >> https://mesur.io/ >> >> >> >> On Wed, Mar 27, 2024 at 1:43 PM Andrea D'Intino <andrea@dyne.org> >> wrote: >> >> Hi Mike, >> >> we use this implementation in Zenroom: >> https://github.com/PQClean/PQClean/tree/master/crypto_sign/dilithium2/clean >> which I believe matches your second option. >> >> Cheers, >> >> | Andrea D'Intino | +45 21 62 79 18 | Project Manager >> |https://Dyne.org <https://Dyne.org> think &do tank | software to empower communities >> | ⚷ crypto κρυπτο крипто गुप्त् 加密הצפנה المشفره >> >> On 27/03/2024 20.31, Michael Prorock wrote: >>> By dilithium 2 do you mean ML-DSA-65 or dilithium from the >>> original definition with the second parameter set and a >>> matrix of 6x5? >>> >>> >>> >>> Mike Prorock >>> founder - mesur.io <http://mesur.io> >>> >>> On Wed, Mar 27, 2024, 13:24 Manu Sporny >>> <msporny@digitalbazaar.com> wrote: >>> >>> On Wed, Mar 27, 2024 at 2:39 PM Andrea D'Intino >>> <andrea@dyne.org> wrote: >>> > we are seeking feedback on a new CCG Work Item >>> proposal regarding the quantum-prooof signatures for >>> Verifiable Credentials across devices and websites. >>> Please leave your support or concerns here: >>> > >>> > https://github.com/w3c-ccg/community/issues/247 >>> >>> Digital Bazaar is supportive of the proposal, will help >>> edit the >>> specification, plans to do an implementation, can help >>> with test >>> suites, and will likely integrate the final solution >>> into our >>> production products. >>> >>> -- manu >>> >>> -- >>> Manu Sporny - https://www.linkedin.com/in/manusporny/ >>> Founder/CEO - Digital Bazaar, Inc. >>> https://www.digitalbazaar.com/ >>>
Received on Wednesday, 27 March 2024 20:26:19 UTC