minutes.md

2024-11-21 : TSC Minutes

Agenda

• Welcome

• Minutes/actions from previous meeting

• Updates from related communities:

  • PQCA
  • Open Quantum Safe

• Review status of sub projects:

  • mlkem-libjade
  • mlkem-rust-libcrux
  • mlkem-native

• Discussion (if not covered previously)

  • Renaming of mlkem-native #105
  • FIP203 - 7 function api #4
  • Working towards liboqs usage #103
  • Do we supply randombytes() #86 - NO/test-only / close ?
  • Requiring OpenSSL CLA #113
  • Other Open TSC issues

• Any other business

Welcome

• Matthias welcomed everyone to the meeting. Nigel unable to join today

Minutes/actions from previous meeting

Updates from related communities

PQCA

None of today's attendees were at the PQCA meeting, so no update.

OQS

• Working on next OQS release including ML-DSA & a security advisory.
• Some discussions/issue around additional APIs, such as public key derivation from secret key. To be discussed as TSC, and community wants clarity from NIST before moving ahead.

Review of subprojects

mlkem-c-libjade

• Additional proofs finished on AVX rejection sampling code
• Tiago working on pushing things up from upstream to pqcp.
• Close to having a AVX2 implementation ready to go out.
• Will need to add new APIs as that general discussion continues.
• After this want to do arm verified implementations, & dilithium. Cortex-M4 to start, more powerful in future, also vectorization.

mlkem-native (was mlkem-c-aarch64)

• Finished CBMC proofs for everything except SHA-3 (C code -> top level API).
  • Absence of undefined behaviour, memory safety / no overflow.
  • CBMC is pragmatic choice - assumed/guaranteed bounds of input/output.
• Release in next 2-3 weeks hopefully.

Open TSC issues

• #105 Renaming - done
• #4 API discussion ongoing. Gaining Consensus (maybe secret key->public key to be added). Plan to draft email for NIST (pqc forum/list) in issue with summary of discussion.
• #103 No specific work on integration into OQS yet. (Pravek/Basil). After alpha.
• #86 Random bytes - we should not have implementation / should close.
• #113 OpenSSL - need individual and employer document. Relevant for mlkem-native, and for mlkem-c-libjade. Good time to do it comment in issue

Any other business

• Releases / structure
  • libjade
    • will be AVX2 (perhaps x86) assembly + source code (single Jasmin file) + header for C + docs.
    • in future will expand as compiler adds new backends.
    • user provides randombytes().
    • next year make it possible to reuse parts of implementations, not all of it.
    • liboqs will be consuming from pqcp in future.
  • mlkem-native
    • source code only initially. considering a library.
    • aarch64 has many Keccak implementations... may need to determine at runtime in future.
  • generally... more discussion on APIs and modularity.

Action items

New

Outstanding

Completed

Recordings

• Recordings are available on your Open Profile page under Past Meetings.

Upcoming TAC meetings

• Next TSC meeting in 2 weeks, 2024-12-05 1300 UTC.

Please check the calendar

Attended by

TSC voting members

• Manuel Barbosa, University of Porto
• Hanno Becker, AWS
• Nigel Jones, IBM
• Matthias J. Kannwischer, Chelpis Quantum Tech
• Franziskus Kiefer, Cryspen
• Tiago Oliveira, Sandbox AQ
• John Schanck, Mozilla
• Pravek Sharma, University of Waterloo
• Douglas Stebila, University of Waterloo

Additional attendees