Content-Type: multipart/signed; protocol="application/pkcs7-signature";
	micalg=sha256; boundary="B_3752651171_1133710310"

--B_3752651171_1133710310
Content-type: multipart/alternative;
	boundary="B_3752651166_3794070591"


--B_3752651166_3794070591
Content-type: text/plain; charset="UTF-8"
Content-transfer-encoding: quoted-printable

Given that the likely use case is signing firmware (and software?) updates =
and (maybe) Root CA certs =E2=80=93 we should be OK with smaller-than-2^64 =
allowed number of faster/smaller signatures.

=20

--

Regards,

Uri

=20

There are two ways to design a system. One is to make is so simple there ar=
e obviously no deficiencies.

The other is to make it so complex there are no obvious deficiencies.

                                                                           =
                                                          -  C. A. R. Hoare

=20

=20

=20

=20

From: "'Moody, Dustin (Fed)' via pqc-forum" <pqc-forum@list.nist.gov>
Reply-To: Dustin Moody <dustin.moody@nist.gov>
Date: Wednesday, November 30, 2022 at 07:28
To: pqc-forum <pqc-forum@list.nist.gov>
Subject: [pqc-forum] Request for feedback on possible SPHINCS+ variant

=20

All,

=20

The design of SPHINCS+ imposes a limit on the number of allowable signature=
s from a given public key. For any number of signatures using the public ke=
y, g, there is some very low probability that they will reveal enough of th=
e private key to allow an attacker to forge a signature. As g grows, so doe=
s the probability of this disaster. The total number of signatures must be =
kept low enough that this probability remains negligible. NIST=E2=80=99s Ca=
ll for Proposals required the ability to securely perform 2^64 signatures, =
which imposes requirements on the parameters of SPHINCS+. A smaller maximum=
 number of signatures would result in somewhat smaller and faster signature=
s.=20

=20

=20

NIST asks for public feedback on whether such a version of SPHINCS+ would b=
e beneficial.

=20

=20

NIST PQC team

--=20
You received this message because you are subscribed to the Google Groups "=
pqc-forum" group.
To unsubscribe from this group and stop receiving emails from it, send an e=
mail to pqc-forum+unsubscribe@list.nist.gov.
To view this discussion on the web visit https://groups.google.com/a/list.n=
ist.gov/d/msgid/pqc-forum/SA1PR09MB8669CC55FD9EF5432F6B9C51E5159%40SA1PR09M=
B8669.namprd09.prod.outlook.com.


--=20
You received this message because you are subscribed to the Google Groups "=
pqc-forum" group.
To unsubscribe from this group and stop receiving emails from it, send an e=
mail to pqc-forum+unsubscribe@list.nist.gov.
To view this discussion on the web visit https://groups.google.com/a/list.n=
ist.gov/d/msgid/pqc-forum/063A88E8-BBE9-4111-B481-6EF1323A919A%40ll.mit.edu=
.

--B_3752651166_3794070591
Content-type: text/html; charset="UTF-8"
Content-transfer-encoding: quoted-printable

<html xmlns:o=3D"urn:schemas-microsoft-com:office:office" xmlns:w=3D"urn:sc=
hemas-microsoft-com:office:word" xmlns:m=3D"http://schemas.microsoft.com/of=
fice/2004/12/omml" xmlns=3D"http://www.w3.org/TR/REC-html40"><head><meta ht=
tp-equiv=3DContent-Type content=3D"text/html; charset=3Dutf-8"><meta name=
=3DGenerator content=3D"Microsoft Word 15 (filtered medium)"><style><!--
/* Font Definitions */
@font-face
	{font-family:"Cambria Math";
	panose-1:2 4 5 3 5 4 6 3 2 4;}
@font-face
	{font-family:Calibri;
	panose-1:2 15 5 2 2 2 4 3 2 4;}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
	{margin:0in;
	font-size:11.0pt;
	font-family:"Calibri",sans-serif;}
a:link, span.MsoHyperlink
	{mso-style-priority:99;
	color:blue;
	text-decoration:underline;}
span.EmailStyle19
	{mso-style-type:personal-reply;
	font-family:"Calibri",sans-serif;
	color:windowtext;}
.MsoChpDefault
	{mso-style-type:export-only;
	font-size:10.0pt;}
@page WordSection1
	{size:8.5in 11.0in;
	margin:1.0in 1.0in 1.0in 1.0in;}
div.WordSection1
	{page:WordSection1;}
--></style></head><body lang=3DEN-US link=3Dblue vlink=3Dpurple style=3D'wo=
rd-wrap:break-word'><div class=3DWordSection1><p class=3DMsoNormal>Given th=
at the likely use case is signing firmware (and software?) updates and (may=
be) Root CA certs =E2=80=93 we should be OK with smaller-than-2^64 allowed =
number of faster/smaller signatures.<o:p></o:p></p><p class=3DMsoNormal><o:=
p>&nbsp;</o:p></p><p class=3DMsoNormal>--<o:p></o:p></p><p class=3DMsoNorma=
l>Regards,<o:p></o:p></p><p class=3DMsoNormal>Uri<o:p></o:p></p><p class=3D=
MsoNormal><o:p>&nbsp;</o:p></p><p class=3DMsoNormal><i>There are two ways t=
o design a system. One is to make is so simple there are obviously no defic=
iencies.<o:p></o:p></i></p><p class=3DMsoNormal><i>The other is to make it =
so complex there are no obvious deficiencies.<o:p></o:p></i></p><p class=3D=
MsoNormal><i>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&n=
bsp;&nbsp;&nbsp;&nbsp;&nbsp; &nbsp; &nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nb=
sp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;=
&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nb=
sp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;=
&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nb=
sp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;=
&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nb=
sp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;=
&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nb=
sp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;-&nbsp; C. A. R. Hoare<o=
:p></o:p></i></p><p class=3DMsoNormal><o:p>&nbsp;</o:p></p><p class=3DMsoNo=
rmal><o:p>&nbsp;</o:p></p><p class=3DMsoNormal><o:p>&nbsp;</o:p></p><p clas=
s=3DMsoNormal><o:p>&nbsp;</o:p></p><div style=3D'border:none;border-top:sol=
id #B5C4DF 1.0pt;padding:3.0pt 0in 0in 0in'><p class=3DMsoNormal style=3D'm=
argin-left:.5in'><b><span style=3D'font-size:12.0pt;color:black'>From: </sp=
an></b><span style=3D'font-size:12.0pt;color:black'>&quot;'Moody, Dustin (F=
ed)' via pqc-forum&quot; &lt;pqc-forum@list.nist.gov&gt;<br><b>Reply-To: </=
b>Dustin Moody &lt;dustin.moody@nist.gov&gt;<br><b>Date: </b>Wednesday, Nov=
ember 30, 2022 at 07:28<br><b>To: </b>pqc-forum &lt;pqc-forum@list.nist.gov=
&gt;<br><b>Subject: </b>[pqc-forum] Request for feedback on possible SPHINC=
S+ variant<o:p></o:p></span></p></div><div><p class=3DMsoNormal style=3D'ma=
rgin-left:.5in'><o:p>&nbsp;</o:p></p></div><div><p class=3DMsoNormal style=
=3D'margin-left:.5in;background:white'><span style=3D'font-size:12.0pt;colo=
r:black'>All,<o:p></o:p></span></p></div><div><p class=3DMsoNormal style=3D=
'margin-left:.5in;background:white'><span style=3D'font-size:12.0pt;color:b=
lack'><o:p>&nbsp;</o:p></span></p></div><div><p class=3DMsoNormal style=3D'=
margin-left:.5in;background:white'><span style=3D'font-size:12.0pt;color:bl=
ack'>The design of SPHINCS+ imposes a limit on the number of allowable sign=
atures from a given public key. For any number of signatures using the publ=
ic key, g, there is some very low probability that they will reveal enough =
of the private key to allow an attacker to forge a signature. As g grows, s=
o does the probability of this disaster. The total number of signatures mus=
t be kept low enough that this probability remains negligible. NIST=E2=80=
=99s Call for Proposals required the ability to securely perform 2^64 signa=
tures, which imposes requirements on the parameters of SPHINCS+. A smaller =
maximum number of signatures would result in somewhat smaller and faster si=
gnatures.&nbsp;<o:p></o:p></span></p></div><div><p class=3DMsoNormal style=
=3D'margin-left:.5in;background:white'><span style=3D'font-size:12.0pt;colo=
r:black'><o:p>&nbsp;</o:p></span></p></div><div><p class=3DMsoNormal style=
=3D'margin-left:.5in;background:white'><span style=3D'font-size:12.0pt;colo=
r:black'><o:p>&nbsp;</o:p></span></p></div><div><p class=3DMsoNormal style=
=3D'margin-left:.5in;background:white'><span style=3D'font-size:12.0pt;colo=
r:black'>NIST asks for public feedback on whether such a version of SPHINCS=
+ would be beneficial.<o:p></o:p></span></p></div><div><p class=3DMsoNormal=
 style=3D'margin-left:.5in;background:white'><span style=3D'font-size:12.0p=
t;color:black'><o:p>&nbsp;</o:p></span></p></div><div><p class=3DMsoNormal =
style=3D'margin-left:.5in;background:white'><span style=3D'font-size:12.0pt=
;color:black'><o:p>&nbsp;</o:p></span></p></div><div><p class=3DMsoNormal s=
tyle=3D'margin-left:.5in;background:white'><span style=3D'font-size:12.0pt;=
color:black'>NIST PQC team<o:p></o:p></span></p></div><p class=3DMsoNormal =
style=3D'margin-left:.5in'>-- <br>You received this message because you are=
 subscribed to the Google Groups &quot;pqc-forum&quot; group.<br>To unsubsc=
ribe from this group and stop receiving emails from it, send an email to <a=
 href=3D"mailto:pqc-forum+unsubscribe@list.nist.gov">pqc-forum+unsubscribe@=
list.nist.gov</a>.<br>To view this discussion on the web visit <a href=3D"h=
ttps://groups.google.com/a/list.nist.gov/d/msgid/pqc-forum/SA1PR09MB8669CC5=
5FD9EF5432F6B9C51E5159%40SA1PR09MB8669.namprd09.prod.outlook.com?utm_medium=
=3Demail&amp;utm_source=3Dfooter">https://groups.google.com/a/list.nist.gov=
/d/msgid/pqc-forum/SA1PR09MB8669CC55FD9EF5432F6B9C51E5159%40SA1PR09MB8669.n=
amprd09.prod.outlook.com</a>.<br><br><o:p></o:p></p></div></body></html>

<p></p>

-- <br />
You received this message because you are subscribed to the Google Groups &=
quot;pqc-forum&quot; group.<br />
To unsubscribe from this group and stop receiving emails from it, send an e=
mail to <a href=3D"mailto:pqc-forum+unsubscribe@list.nist.gov">pqc-forum+un=
subscribe@list.nist.gov</a>.<br />
To view this discussion on the web visit <a href=3D"https://groups.google.c=
om/a/list.nist.gov/d/msgid/pqc-forum/063A88E8-BBE9-4111-B481-6EF1323A919A%4=
0ll.mit.edu?utm_medium=3Demail&utm_source=3Dfooter">https://groups.google.c=
om/a/list.nist.gov/d/msgid/pqc-forum/063A88E8-BBE9-4111-B481-6EF1323A919A%4=
0ll.mit.edu</a>.<br />

--B_3752651166_3794070591--

--B_3752651171_1133710310
Content-Type: application/pkcs7-signature; name="smime.p7s"
Content-Transfer-Encoding: base64
Content-Disposition: attachment; filename="smime.p7s"
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--B_3752651171_1133710310--