Comments (7)
Is there a compelling reason to support NTRU?
from mbedtls.
https://www.securityinnovation.com/uploads/CyaSSL%20and%20NTRU%20Data%20Sheet.pdf
from mbedtls.
Pointing to a marketing sheet from another library is not an argument.. Is there a compelling reason?
from mbedtls.
The main argument is that the NTRU seems to be a much better option than RSA or ECC. Whether it's a compelling reason? Is there a compelling reason to use RSA vs ECC or sha256/512 vs md5/sha1? Different people have different answers.
http://middleware.internet2.edu/idtrust/2009/papers/07-perlner-quantum.pdf
http://www.math.brown.edu/~jpipher/NTRUSign_RSA.pdf
from mbedtls.
The fact that the patent-holders and implementors of NTRU say it is better, is not an argument for us. There is no convincing support to prefer NTRU over RSA/ECC in the cryptography community in general.
The arguments for RSA / ECC are much better acceptance / peer-review world wide than NTRU
The arguments for SHA256/512 vs MD5/SHA1 -> Not-broken and more research vs broken MD5/SHA-1.
The primary reason why we are hesitant to add NTRU is that it is patented / GPL-only: PolarSSL has no 'special features' in either the GPL or commercial version that the other version does not have. We can only use NTRU in the GPL version of the library, not the commercial one, without licensing fees. The patents will expire in 4 years. So then this discussion point is moot.
from mbedtls.
Thank you for the clarification - I understand why the addition of NTRU can be problematic. There is also a commercial license (polarssl). This doesn't change the fact that it will gradually have to look for solutions such as NTRU - new versions of D-Wave will become more dangerous to conventional cryptography. There is also (old) McEliece as alternative to NTRU.
Do I have to close this issue?
from mbedtls.
When D-Wave actually becomes a realistic issue, the crypto community in general will move to other public algorithms..
from mbedtls.
Related Issues (20)
- Replace `MBEDTLS_MD_CAN_SHA512` with its `PSA_WANT` counterpartart
- Replace `MBEDTLS_MD_CAN_SHA3_*` with its `PSA_WANT` counterpartarts
- Client certificate verify HOT 1
- mbedtls_pk_sign_ext() returned -16000 (-0x3e80) HOT 1
- Do not perform adjustments on legacy crypto from PSA, when MBEDTLS_PSA_CRYPTO_CLIENT && !MBEDTLS_PSA_CRYPTO_C HOT 2
- Can't disable certificate verification with TLSv1.3 HOT 2
- MBEDTLS_ERR_SSL_RECEIVED_NEW_SESSION_TICKET breaks backwards-compatibility? HOT 1
- Clean up psk_list in ssl-opt.sh
- Support the `crypto_config.h` usage in depends.py
- Update the `cipher_id` domain to use PSA macros in `depends.py`
- Update the `cipher_chaining` domain to use PSA macros in `depends.py`
- Update the `curves` domain to use PSA macros in `depends.py`
- Update the `hashes` domain to use PSA macros in `depends.py`
- Update the `pkalgs` domain to use PSA macros in `depends.py`
- Guidance to remove check_config.h inclusion from mbedtls_config.h
- CMake: Dependency scope HOT 3
- Remove hkdf.c
- Protect against spurious definitions of derived symbols
- 2.28 only: build broken when `check_config.h` is not included
- Missing include stdlib.h and stdio.h in some platform configurations
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from mbedtls.