Skip to main content

Post-Quantum Use In Protocols
charter-ietf-pquip-01

WG review announcement

WG Review Announcement

From: The IESG <iesg-secretary@ietf.org>
To: IETF-Announce <ietf-announce@ietf.org>
Cc: pqc@ietf.org 
Reply-To: iesg@ietf.org
Subject: WG Review: Post-Quantum Use In Protocols (pquip)

A new IETF WG has been proposed in the Security Area. The IESG has not made
any determination yet. The following draft charter was submitted, and is
provided for informational purposes only. Please send your comments to the
IESG mailing list (iesg@ietf.org) by 2023-01-19.

Post-Quantum Use In Protocols (pquip)
-----------------------------------------------------------------------
Current status: Proposed WG

Chairs:
  Sofia Celi <sceli@brave.com>
  Paul Hoffman <paul.hoffman@icann.org>

Assigned Area Director:
  Roman Danyliw <rdd@cert.org>

Security Area Directors:
  Roman Danyliw <rdd@cert.org>
  Paul Wouters <paul.wouters@aiven.io>

Mailing list:
  Address: pqc@ietf.org
  To subscribe: https://www.ietf.org/mailman/listinfo/pqc
  Archive: https://mailarchive.ietf.org/arch/browse/pqc/

Group page: https://datatracker.ietf.org/group/pquip/

Charter: https://datatracker.ietf.org/doc/charter-ietf-pquip/

Some IETF protocols rely upon cryptographic mechanisms that are considered
secure given today’s “classical computers” but would be vulnerable to attacks
by a Cryptographically Relevant Quantum Computer (CRQC).  These mechanisms
rely upon algorithms based on integer factorization or the discrete logarithm
problem.   Outside of the IETF, active work is underway to develop and
validate Post-Quantum Cryptography (PQC) mechanisms that are expected to be
resilient to the cryptanalysis capabilities of future CRQCs (e.g., CFRG, US
NIST).  Select IETF WGs (e.g., LAMPS, TLS, IPSECME, COSE) have already begun
standardizing revised protocol behaviors. The focus of Post-Quantum Use in
Protocols (PQUIP) WG is to support this growing body of work in the IETF to
facilitate the evolution of IETF protocols and document associated
operational guidance with respect to PQC.

The WG will provide a standing venue to discuss PQC (operational and
engineering) transition issues and experiences to date relevant to work in
the IETF. The WG will also provide a venue of last resort to discuss
PQC-related issues in IETF protocols that have no associated maintenance WGs.
This WG will not update existing protocols, specify new protocols, define new
cryptographic mechanisms, or assess whether a given cryptographic mechanism
is quantum-resistant.

The WG will document operational and design guidance which supports PQC
transition. The general process of elaboration through documentation will be
for issues to be identified and discussed on the mailing list, and
presentations made at WG meetings. When topics merit more coherent
documentation, the WG will adopt documents to capture the information in
Internet-Drafts. If the working group consensus is that the material of the
Internet-Draft is generally useful for archival purposes, the WG will seek
publication of the work items as Informational or Best Current Practices
RFCs. At any point, from early discussion of topics through later
documentation stages, the WG may identify a more appropriate WG for the
matter, and with coordination, dispatch it there.

The output of this WG is expended to inform protocol work and guidance
developed by other WGs in the IETF.  Consistent with other IETF WGs, this WG
will also rely on outside entities (e.g., CFRG) to define and assess new PQC
mechanisms.

The IESG is establishing this working group on an experimental basis, and in
2 years, the IESG intends to review it for rechartering to continue or else
closure.

Milestones:

  Apr 2023 - WG Adoption of an Informational document that defines
  terminology for (hybrid) PQC schemes

  May 2023 - WG Adoption of an Informational document on ‘PQC for engineers’


WG action announcement

WG Action Announcement

From: The IESG <iesg-secretary@ietf.org>
To: IETF-Announce <ietf-announce@ietf.org>
Cc: The IESG <iesg@ietf.org>,
    pqc@ietf.org,
    pquip-chairs@ietf.org 
Subject: WG Action: Formed Post-Quantum Use In Protocols (pquip)

A new IETF WG has been formed in the Security Area. For additional
information, please contact the Area Directors or the WG Chairs.

Post-Quantum Use In Protocols (pquip)
-----------------------------------------------------------------------
Current status: Proposed WG

Chairs:
  Sofia Celi <sceli@brave.com>
  Paul Hoffman <paul.hoffman@icann.org>

Assigned Area Director:
  Roman Danyliw <rdd@cert.org>

Security Area Directors:
  Roman Danyliw <rdd@cert.org>
  Paul Wouters <paul.wouters@aiven.io>

Mailing list:
  Address: pqc@ietf.org
  To subscribe: https://www.ietf.org/mailman/listinfo/pqc
  Archive: https://mailarchive.ietf.org/arch/browse/pqc/

Group page: https://datatracker.ietf.org/group/pquip/

Charter: https://datatracker.ietf.org/doc/charter-ietf-pquip/

Some IETF protocols rely upon cryptographic mechanisms that are considered
secure given today’s “classical computers” but would be vulnerable to attacks
by a Cryptographically Relevant Quantum Computer (CRQC).  These mechanisms
rely upon algorithms based on integer factorization or the discrete logarithm
problem.   Outside of the IETF, active work is underway to develop and
validate Post-Quantum Cryptography (PQC) mechanisms that are expected to be
resilient to the cryptanalysis capabilities of future CRQCs (e.g., CFRG, US
NIST).  Select IETF WGs (e.g., LAMPS, TLS, IPSECME, COSE) have already begun
standardizing revised protocol behaviors. The focus of Post-Quantum Use in
Protocols (PQUIP) WG is to support this growing body of work in the IETF to
facilitate the evolution of IETF protocols and document associated
operational guidance with respect to PQC.

The WG will provide a standing venue to discuss PQC (operational and
engineering) transition issues and experiences to date relevant to work in
the IETF. The WG will also provide a venue of last resort to discuss
PQC-related issues in IETF protocols that have no associated maintenance WGs.
This WG will not update existing protocols, specify new protocols, define new
cryptographic mechanisms, or assess whether a given cryptographic mechanism
is quantum-resistant.

The WG will document operational and design guidance which supports PQC
transition. The general process of elaboration through documentation will be
for issues to be identified and discussed on the mailing list, and
presentations made at WG meetings. When topics merit more coherent
documentation, the WG will adopt documents to capture the information in
Internet-Drafts. If the working group consensus is that the material of the
Internet-Draft is generally useful for archival purposes, the WG will seek
publication of the work items as Informational or Best Current Practices
RFCs. At any point, from early discussion of topics through later
documentation stages, the WG may identify a more appropriate WG for the
matter, and with coordination, dispatch it there.

The output of this WG is expended to inform protocol work and guidance
developed by other WGs in the IETF.  Consistent with other IETF WGs, this WG
will also rely on outside entities (e.g., CFRG) to define and assess new PQC
mechanisms.

The IESG is establishing this working group on an experimental basis, and in
2 years, the IESG intends to review it for rechartering to continue or else
closure.

Milestones:

  Apr 2023 - WG Adoption of an Informational document that defines
  terminology for (hybrid) PQC schemes

  May 2023 - WG Adoption of an Informational document on ‘PQC for engineers’


Ballot announcement

Ballot Announcement