RARE user and assistance email list

[mc36 <>]

hi,
first of all, im also very interested in the outcome of these efforts...
as i see there is nothing stable i can test against for now, so i'm waiting 
for the outcome...
this stands for the ietf efforts...
on the other hand, during wireguard implementation, i added the wg-pqc 
extensions...
that one is achieved basically with a pre-shared secret used in key 
derivations only...
then i remembered that during macsec key exchange i was not able to reverse 
engineer what cisco does,
so i came up with my own dhe+preshared implementation which uses similar 
thing: does not exchange
the preshared key or anything but uses it to feed the key derivation 
functions... so for now i believe
we have at least 2 implementation that are pqc-safe at the moment: wg-psk and 
macsec-psk...
and as soon as ietf progresses, i plan to proceed with the official ones 
too...
regards,
cs




On 12/14/21 13:21, Eoin Kenny wrote:
> Hi RARE team,
>
> Has there been any discussion in relation to the possibility of implementing 
> post-quantum cryptography(PQC) in freeRouter?
> https://csrc.nist.gov/projects/post-quantum-cryptography/round-3-submissions
>
> Standardisation is expected to be completed in 2022 and Classic McEliece 
> looks like a good candidate for testing.
> https://classic.mceliece.org/
> There are already some implementations, Adva [1] and 
> https://post-quantum.com/.
>
> There is working ongoing in the IETF on extending IKEv2 to handle larger 
> payloads. It may be possible to implement PQC for IPsec with PQ-IKEv2 and 
> Classic McEliece coding.
>
> Regards
> Eoin
>
> [1] 
> https://www.adva.com/en/resources/resources-gated-page/solution-briefs/making-networks-quantum-safe