summaryrefslogtreecommitdiff
path: root/59/0b713a9fb07f3a4b5f2c902386eb7c5c559a4e
blob: 8e07bca999dac7f8f0c0f4c02374d174a8674abc (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
Return-Path: <earonesty@gmail.com>
Received: from smtp4.osuosl.org (smtp4.osuosl.org [140.211.166.137])
 by lists.linuxfoundation.org (Postfix) with ESMTP id 510CAC002C
 for <bitcoin-dev@lists.linuxfoundation.org>;
 Mon, 11 Apr 2022 18:17:38 +0000 (UTC)
Received: from localhost (localhost [127.0.0.1])
 by smtp4.osuosl.org (Postfix) with ESMTP id 300A141506
 for <bitcoin-dev@lists.linuxfoundation.org>;
 Mon, 11 Apr 2022 18:17:38 +0000 (UTC)
X-Virus-Scanned: amavisd-new at osuosl.org
X-Spam-Flag: NO
X-Spam-Score: -1.398
X-Spam-Level: 
X-Spam-Status: No, score=-1.398 tagged_above=-999 required=5
 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1,
 FREEMAIL_FORGED_FROMDOMAIN=0.25, FREEMAIL_FROM=0.001,
 HEADER_FROM_DIFFERENT_DOMAINS=0.25, HTML_MESSAGE=0.001,
 RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001]
 autolearn=no autolearn_force=no
Authentication-Results: smtp4.osuosl.org (amavisd-new);
 dkim=pass (2048-bit key) header.d=q32-com.20210112.gappssmtp.com
Received: from smtp4.osuosl.org ([127.0.0.1])
 by localhost (smtp4.osuosl.org [127.0.0.1]) (amavisd-new, port 10024)
 with ESMTP id ZlByy25jb1y0
 for <bitcoin-dev@lists.linuxfoundation.org>;
 Mon, 11 Apr 2022 18:17:36 +0000 (UTC)
X-Greylist: whitelisted by SQLgrey-1.8.0
Received: from mail-lf1-x133.google.com (mail-lf1-x133.google.com
 [IPv6:2a00:1450:4864:20::133])
 by smtp4.osuosl.org (Postfix) with ESMTPS id A09144136B
 for <bitcoin-dev@lists.linuxfoundation.org>;
 Mon, 11 Apr 2022 18:17:36 +0000 (UTC)
Received: by mail-lf1-x133.google.com with SMTP id bu29so28227358lfb.0
 for <bitcoin-dev@lists.linuxfoundation.org>;
 Mon, 11 Apr 2022 11:17:36 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
 d=q32-com.20210112.gappssmtp.com; s=20210112;
 h=mime-version:references:in-reply-to:from:date:message-id:subject:to;
 bh=gNA+xvIvJQpkKnLWrT6v5SryMjZjPczJ6/KzAmRMVcs=;
 b=tgdsYzHEXHnFMKN3WAABmFl1iBMDnikUVQ+GSqXEAcpbLnR/xQbUYkjqVk7wcdyUD0
 ahpfilkqJ15JQcyj36A1elCOzSuWQ/kKwTyvQ4jQiiD4Qoh+MHYBfGDH8ZViNT4UN73I
 CDFwzsvl4AP7vpyvwz1n8cDS4od8TNkZddyKU0SlfrXuUnHGL9v8dFi9CVeYpcob4STg
 gfNaeJVuTJ/3TNOzcN/0mAH7VYOrwMAGdaowOTcAlZ8+7HlScpbSHCmzWszqrT4g1Iw3
 Rt/Odw6UIp5cb5f0mwmRwkit2AwEMTR7Tiz0ehRDsZ/OiagjerV7BsbF95f4m13102zX
 dVWQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
 d=1e100.net; s=20210112;
 h=x-gm-message-state:mime-version:references:in-reply-to:from:date
 :message-id:subject:to;
 bh=gNA+xvIvJQpkKnLWrT6v5SryMjZjPczJ6/KzAmRMVcs=;
 b=jkdKxnrLYMgTqUcmGoSSOUsWbCz3Ltj7zAZ/safFWqvhqeSpphYYdMEZm6j4VOVJFm
 ASP2g4VR1jx4EYt8YuVEAbxXkVMuiJLUB5UmdYV+aB/H0t413P5p2HiNUuILA+gam9H/
 oJs6XK6589P1M1PcqegevjCUav5YjB5CVObmJ2YNvrttap+Nj8S2jq/MFTza2H4Sbio1
 QX9s6o5O7azUZcO9BEchqMNhIcUOoIqn0IWfm0gPcizE8Pc7HxjI4mLdt6cbBu81yKRq
 NUnRJQ48g2TpJIOADXL7m1SQH9ekur2nZUwWmRiQSlJwlVSoWEyrkwBEChTGbh3Vqldy
 Wz9w==
X-Gm-Message-State: AOAM533pQMBPIAqeF6zPbBe2SZomQu0QZVA/u3j7CX9StAdsWtEMPVQV
 33N6i1IoXkmloILnAdyezRf9lJ0jv93xImQxCyAkyQ8=
X-Google-Smtp-Source: ABdhPJzFONbZJfOtZdgt5kXfOqlDxO9T7edoZ0OVgpOjz6y9y5IKsMj8j1WWdIdgXCWz0XWKG6qND+lnnTEBBidQf6c=
X-Received: by 2002:a05:6512:3b85:b0:46b:a0ea:aa46 with SMTP id
 g5-20020a0565123b8500b0046ba0eaaa46mr6090833lfv.145.1649701054521; Mon, 11
 Apr 2022 11:17:34 -0700 (PDT)
MIME-Version: 1.0
References: <CAJowKg+xgenKmyA7gHPmPV0VNF-PdAww2nAxBfS-Z7v5GcpeLA@mail.gmail.com>
 <CAO3Pvs9-Le1LJmY9KA2YXoOYu4rJ6ns3tJFWeMZffbed_59n6Q@mail.gmail.com>
In-Reply-To: <CAO3Pvs9-Le1LJmY9KA2YXoOYu4rJ6ns3tJFWeMZffbed_59n6Q@mail.gmail.com>
From: Erik Aronesty <erik@q32.com>
Date: Mon, 11 Apr 2022 14:17:22 -0400
Message-ID: <CAJowKgLsXnbia-5MeOveOEGVLjCCLAQyeng1_bnbguFi3OiYmQ@mail.gmail.com>
To: Olaoluwa Osuntokun <laolu32@gmail.com>, 
 Bitcoin Protocol Discussion <bitcoin-dev@lists.linuxfoundation.org>
Content-Type: multipart/alternative; boundary="0000000000005726c605dc64f528"
X-Mailman-Approved-At: Mon, 11 Apr 2022 19:27:58 +0000
Subject: Re: [bitcoin-dev] Simple step one for quantum
X-BeenThere: bitcoin-dev@lists.linuxfoundation.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Bitcoin Protocol Discussion <bitcoin-dev.lists.linuxfoundation.org>
List-Unsubscribe: <https://lists.linuxfoundation.org/mailman/options/bitcoin-dev>, 
 <mailto:bitcoin-dev-request@lists.linuxfoundation.org?subject=unsubscribe>
List-Archive: <http://lists.linuxfoundation.org/pipermail/bitcoin-dev/>
List-Post: <mailto:bitcoin-dev@lists.linuxfoundation.org>
List-Help: <mailto:bitcoin-dev-request@lists.linuxfoundation.org?subject=help>
List-Subscribe: <https://lists.linuxfoundation.org/mailman/listinfo/bitcoin-dev>, 
 <mailto:bitcoin-dev-request@lists.linuxfoundation.org?subject=subscribe>
X-List-Received-Date: Mon, 11 Apr 2022 18:17:38 -0000

--0000000000005726c605dc64f528
Content-Type: text/plain; charset="UTF-8"

FWICT: Streamlined NTRU Prime (sntrup) has no known patent issues.

Should be fine.

Regardless, a "double-wrapped bitcoin address of some kind" can be
specified, coded up and the relevant module replaced whenever the dust
settles.

I know Bitcoin doesn't (yet) have fee "weights", but i still think these
addresses should be called "heavier" if they are at al significantly slower
to validate.

On Mon, Apr 11, 2022 at 2:07 PM Olaoluwa Osuntokun <laolu32@gmail.com>
wrote:

> The NIST Post-Quantum Cryptography competition [1] results should be
> published "soon":
>
> https://groups.google.com/a/list.nist.gov/g/pqc-forum/c/fvnhyQ25jUg/m/-pYN2nshBgAJ
> .
>
> The last reply on that thread promised results by the end of March, but
> since that has come and gone, I think it's safe to expect results by the
> end
> of this month (April). FWIW, NTRU and NTRU Prime both made it to round 3
> for
> the public key encryption/exchange and digital signature categories, but
> both of them seem to be mired in some sort of patent controversy atm...
>
> -- Laolu
>
> [1]: https://csrc.nist.gov/Projects/post-quantum-cryptography
>
> On Fri, Apr 8, 2022 at 5:36 PM Erik Aronesty via bitcoin-dev <
> bitcoin-dev@lists.linuxfoundation.org> wrote:
>
>> First step could be just implementing a similar address type
>> (secp26k1+NTRU) and associated validation as a soft fork
>>
>> https://www.openssh.com/releasenotes.html#9.0
>>
>> Then people can opt-in to quantum safe addresses
>>
>> Still should work with schnorr and other things
>>
>> It's a lot of work to fold this in and it's a some extra validation work
>> for nodes
>>
>> Adding a fee premium for using these addresses in order to address that
>> concern seems reasonable
>>
>> I'm not saying I endorse any action at all.  Personally I think this is
>> putting the cart like six and a half miles in front of the horse.
>>
>> But if there's a lot of people that are like yeah please do this, I'd be
>> happy to make an NTRU bip or something.
>>
>>
>>
>>
>> _______________________________________________
>> bitcoin-dev mailing list
>> bitcoin-dev@lists.linuxfoundation.org
>> https://lists.linuxfoundation.org/mailman/listinfo/bitcoin-dev
>>
>

--0000000000005726c605dc64f528
Content-Type: text/html; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable

<div dir=3D"ltr"><span style=3D"color:rgb(0,0,0);font-family:sans-serif;fon=
t-size:14.4px">FWICT: Streamlined NTRU Prime (</span><code style=3D"font-si=
ze:1.2em;color:rgb(0,0,0)">sntrup</code><span style=3D"color:rgb(0,0,0);fon=
t-family:sans-serif;font-size:14.4px">) has no known patent issues.=C2=A0 =
=C2=A0<br><br>Should be fine.=C2=A0 <br><br>Regardless, a &quot;double-wrap=
ped bitcoin address of some kind&quot; can be specified, coded up and the r=
elevant module replaced whenever the dust settles.=C2=A0 =C2=A0<br><br>I kn=
ow Bitcoin doesn&#39;t (yet) have fee=C2=A0&quot;weights&quot;, but i still=
 think these addresses should be called &quot;heavier&quot; if they are at =
al significantly slower to validate.</span></div><br><div class=3D"gmail_qu=
ote"><div dir=3D"ltr" class=3D"gmail_attr">On Mon, Apr 11, 2022 at 2:07 PM =
Olaoluwa Osuntokun &lt;<a href=3D"mailto:laolu32@gmail.com">laolu32@gmail.c=
om</a>&gt; wrote:<br></div><blockquote class=3D"gmail_quote" style=3D"margi=
n:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex=
"><div dir=3D"ltr">The NIST Post-Quantum Cryptography competition [1] resul=
ts should be<br>published &quot;soon&quot;:<br><a href=3D"https://groups.go=
ogle.com/a/list.nist.gov/g/pqc-forum/c/fvnhyQ25jUg/m/-pYN2nshBgAJ" target=
=3D"_blank">https://groups.google.com/a/list.nist.gov/g/pqc-forum/c/fvnhyQ2=
5jUg/m/-pYN2nshBgAJ</a>.<br><br><div>The last reply on that thread promised=
 results by the end of March, but<br>since that has come and gone, I think =
it&#39;s safe to expect results by the end<br>of this month (April). FWIW, =
NTRU and NTRU Prime both made it to round 3 for<br>the public key encryptio=
n/exchange and digital signature categories, but<br>both of them seem to be=
 mired in some sort of patent controversy atm...<br><br>-- Laolu<br><br>[1]=
: <a href=3D"https://csrc.nist.gov/Projects/post-quantum-cryptography" targ=
et=3D"_blank">https://csrc.nist.gov/Projects/post-quantum-cryptography</a><=
br><div></div></div></div><br><div class=3D"gmail_quote"><div dir=3D"ltr" c=
lass=3D"gmail_attr">On Fri, Apr 8, 2022 at 5:36 PM Erik Aronesty via bitcoi=
n-dev &lt;<a href=3D"mailto:bitcoin-dev@lists.linuxfoundation.org" target=
=3D"_blank">bitcoin-dev@lists.linuxfoundation.org</a>&gt; wrote:<br></div><=
blockquote class=3D"gmail_quote" style=3D"margin:0px 0px 0px 0.8ex;border-l=
eft:1px solid rgb(204,204,204);padding-left:1ex"><div dir=3D"auto"><div dir=
=3D"auto">First step could be just implementing a similar address type (sec=
p26k1+NTRU) and associated validation as a soft fork=C2=A0</div><div dir=3D=
"auto"><br></div><a href=3D"https://www.openssh.com/releasenotes.html#9.0" =
rel=3D"noreferrer" target=3D"_blank">https://www.openssh.com/releasenotes.h=
tml#9.0</a><div dir=3D"auto"><br></div><div dir=3D"auto">Then people can op=
t-in to quantum safe addresses</div><div dir=3D"auto"><br></div><div dir=3D=
"auto">Still should work with schnorr and other things</div><div dir=3D"aut=
o"><br></div><div dir=3D"auto">It&#39;s a lot of work to fold this in and i=
t&#39;s a some extra validation work for nodes</div><div dir=3D"auto"><br><=
/div><div dir=3D"auto">Adding a fee premium for using these addresses in or=
der to address that concern seems reasonable</div><div dir=3D"auto"><br></d=
iv><div dir=3D"auto">I&#39;m not saying I endorse any action at all.=C2=A0 =
Personally I think this is putting the cart like six and a half miles in fr=
ont of the horse.</div><div dir=3D"auto"><br></div><div dir=3D"auto">But if=
 there&#39;s a lot of people that are like yeah please do this, I&#39;d be =
happy to make an NTRU bip or something.</div><div dir=3D"auto"><br></div><d=
iv dir=3D"auto"><br></div><div dir=3D"auto"><br></div><div dir=3D"auto"><br=
></div></div>
_______________________________________________<br>
bitcoin-dev mailing list<br>
<a href=3D"mailto:bitcoin-dev@lists.linuxfoundation.org" target=3D"_blank">=
bitcoin-dev@lists.linuxfoundation.org</a><br>
<a href=3D"https://lists.linuxfoundation.org/mailman/listinfo/bitcoin-dev" =
rel=3D"noreferrer" target=3D"_blank">https://lists.linuxfoundation.org/mail=
man/listinfo/bitcoin-dev</a><br>
</blockquote></div>
</blockquote></div>

--0000000000005726c605dc64f528--