From 9e6c125ac193cda1f36b9e5eb07e8d8f67011374 Mon Sep 17 00:00:00 2001 From: Hannes Tschofenig Date: Mon, 7 Oct 2024 15:36:27 +0200 Subject: [PATCH] PQC Section --- draft-ietf-uta-tls13-iot-profile.md | 7 +++++++ 1 file changed, 7 insertions(+) diff --git a/draft-ietf-uta-tls13-iot-profile.md b/draft-ietf-uta-tls13-iot-profile.md index 73d067b..97ac74f 100644 --- a/draft-ietf-uta-tls13-iot-profile.md +++ b/draft-ietf-uta-tls13-iot-profile.md @@ -62,6 +62,7 @@ normative: informative: RFC9146: + I-D.ietf-pquip-pqc-engineers: CoAP: RFC7252 ADD: author: @@ -799,6 +800,12 @@ In this security model, it is recommended to combine both randomness and determinism, for example, as described in {{?I-D.irtf-cfrg-det-sigs-with-noise}}. +# Post-Quantum Cryptography (PQC) Considerations + +As detailed in {I-D.ietf-pquip-pqc-engineers}, the IETF is actively working to address the challenges of adopting PQC in various protocols, including TLS. The document highlights key aspects engineers must consider, such as algorithm selection, performance impacts, and deployment strategies. It emphasizes the importance of gradual integration of PQC to ensure secure communication while accounting for the increased computational, memory, and bandwidth requirements of PQC algorithms. These challenges are especially relevant in the context of IoT, where device constraints limit the adoption of larger key sizes and more complex cryptographic operations. + +Incorporating PQC into TLS is still ongoing, with key exchange message sizes increasing due to larger public keys. These larger keys demand more flash storage and higher RAM usage, presenting significant obstacles for resource-constrained IoT devices. The transition from classical cryptographic algorithms to PQC will be a significant challenge for constrained IoT devices, requiring careful planning to select hardware suitable for the task considering the lifetime of an IoT product. + # Open Issues A list of open issues can be found at https://github.com/thomas-fossati/draft-tls13-iot/issues