ounsworth
commented
2 months ago The ML-DSA + ECC pairings to use are this:
ML-DSA-44+NIST-P-256
ML-DSA-65+NIST-P-384
ML-DSA-65+brainpoolP256r1
ML-DSA-87+NIST-P-384
ML-DSA-87+brainpoolP384r1Closed ounsworth closed 1 month ago
ounsworth
commented
2 months ago The ML-DSA + ECC pairings to use are this:
ML-DSA-44+NIST-P-256
ML-DSA-65+NIST-P-384
ML-DSA-65+brainpoolP256r1
ML-DSA-87+NIST-P-384
ML-DSA-87+brainpoolP384r1
janklaussner
commented
2 months ago Removing ML-DSA-44+brainpoolP256r1 leaves OID gap… close it?
johngray-dev
commented
2 months ago The OID Gap doesn't matter, they are still prototype OIDs at this point.
johngray-dev
commented
2 months ago We will define two new RSA 4096 combinations as well
janklaussner
commented
2 months ago @johngray-dev , do we still need edwards curves?
https://datatracker.ietf.org/meeting/120/materials/slides-120-openpgp-pqc-with-nist-and-brainpool-curves-00.pdf