[PATCH] Add NTRUEncrypt public key encryption algorithm

Opal Raava opalraava at riseup.net
Tue Sep 8 23:59:06 CEST 2015


Hi Zhenfei,

On 09/08/2015 08:45 PM, Zhenfei Zhang wrote:
> Hi list,
> 
> I wish to contribute this patch to the libgcrypt.
> Can I please ask what is the right approach to get this patch included
> in a release?
> Thanks.

First of all, I'm new to this list, so I speak only for myself.

I'm sure happy to see lattice stuff, it's interesting. But the first
thing that bothers me is that it introduces a dependency. We can't just
link in some crypto algorithm from somewhere, we want source :)

As it stands now, libgcrypt doesn't have any dependencies at all, even
GMP integers are included as source in the library.

Secondly, experimental crypto is not really libgcrypt's thing. If I look
at the Wikipedia article on NTRUEncrypt, I read that it's not yet proven
to be secure against quantum cryptanalysis, and there is a problem with
performance. What I read about the attacks doesn't make me happy either.

It's all just not crystalized out yet, and the algorithm is not a formal
standard, as far as I can tell. I see that the IEEE is working towards a
standard with NTRUEncrypt, which is good, but it's not there yet.

Anyway, just my 2 cents,
--Opal




More information about the Gcrypt-devel mailing list