Professional Documents
Culture Documents
Subdomain: Cryptography
TLS evolution: from TLS 1.2 to PostQuantum ciphers
Agenda
Appendix
Provides
▶ Authenticity
– Server and/or client
▶ Confidentiality
▶ Integrity
Parameters for RSA key length Elliptic curves Finite field Groups
Key strength
and groups secp384r1
secp256r1
▶ To be used in Good At least 3072 bits
x448
ciphers x25519
ffdhe4096
Sufficient 2048 – 3071 bits
ffdhe3072
Phase-out secp224r1 ffdhe2048
Insufficient Less than 2048 bits Others Others
NIST timeline
▶ Standardization starts in 2017
▶ Should end around 2025
Time (kCPU Cycles) Keygen Encaps Decaps Time (kCPU Cycles) Keygen Encaps Decaps
Transition challenges
Additional key size (Bytes) Additional latency (ms) – Computation NOT included
Ongoing study on the integration of NIST candidates into SSL/TLS (eprint 2019/858)
Challenges
▶ Use SPHINCS-256 signature (2017)
BIKE. https://bikesuite.org/
ROLLO. https://pqc-rollo.org/
Kyber. https://pq-crystals.org/
DILITHIUM. https://pq-crystals.org/dilithium/index.shtml
Rainbow. https://csrc.nist.gov/CSRC/media/Projects/Post-Quantum-Cryptography/documents/round-
2/submissions/Rainbow-Round2.zip
SPHINCS+. https://sphincs.org/
Design issues for hybrid key exchange in TLS 1.3.
https://datatracker.ietf.org/doc/draft-stebila-tls-hybrid-design/
Hybrid Post-Quantum Key Encapsulation Methods (PQ KEM) for Transport Layer Security 1.2
https://tools.ietf.org/html/draft-campagna-tls-bike-sike-hybrid-01
PQClean project. https://github.com/PQClean/PQClean
Open Quantum Safe project. https://openquantumsafe.org/
Google Experiment on Post-Quantum Cryptography.
https://www.imperialviolet.org/2018/12/12/cecpq2.html
Integration of NIST candidates in TLS. https://eprint.iacr.org/2019/858
▶ TLS1.3
ClientKeyExchange +Pre Shared Key
Finished Finished
Finished
Quantum computers will have a tremendous effect on the security of many cryptosystems that are
massively deployed all around the world
T+ 33 652 38 74 38
loic.bidoux@worldline.com
T+ 33 320 60 79 79
slim.bettaieb@worldline.com
Atos, the Atos logo, Atos Syntel, Unify, and Worldline are registered trademarks of the
Atos group. October 2018. © 2018 Atos. Confidential information owned by Atos, to be
used by the recipient only. This document, or any part of it, may not be reproduced,
copied, circulated and/or distributed nor quoted without prior written approval from Atos.