[CESG] CESG-P-2018-06-005 Approval to release CCSDS 352.0-P-1.1, CCSDS Cryptographic Algorithms (Proposed Pink Sheets, Issue 1.1) for CCSDS Agency review

Thomas Gannett thomas.gannett at tgannett.net
Mon Jul 23 20:47:55 UTC 2018

Dear CESG Members,


Conditions for approval of CESG-P-2018-06-005 Approval to release CCSDS
352.0-P-1.1, CCSDS Cryptographic Algorithms (Proposed Pink Sheets, Issue
1.1) for CCSDS Agency review have been disposed to the satisfaction of the
AD(s) who voted to approve with conditions. The Secretariat will now proceed
with CMC polling to authorize release for CCSDS Agency review.



Logothete, L.L.C.

thomas.gannett at tgannett.net

+1 443 472 0805


From: Mario.Merri at esa.int [mailto:Mario.Merri at esa.int] 
Sent: Monday, July 23, 2018 4:05 AM
To: Weiss, Howard
Cc: Brigitte.Behal at cnes.fr; Peter M Shames, (313B); CCSDS Secretariat; CCSDS
Subject: Re: Result of CESG-P-2018-06-005 Approval to release CCSDS


Hi Howie, 

your proposed way forward is agreeable to MOIMS. 



From:        "Weiss, Howard" <Howard.Weiss at parsons.com> 
To:        "Mario.Merri at esa.int" <Mario.Merri at esa.int>,
"Brigitte.Behal at cnes.fr" <Brigitte.Behal at cnes.fr> 
Cc:        CCSDS Secretariat <thomas.gannett at tgannett.net>, "Peter M Shames,
(313B)" <peter.m.shames at jpl.nasa.gov>, CCSDS Secretariat
<secretariat at mailman.ccsds.org> 
Date:        12/07/2018 15:14 
Subject:        Re: Result of CESG-P-2018-06-005 Approval to release CCSDS


Mario and Brigitte,

Concerning your conditional approval for the release of the CCSDS Algorithms
pink sheets, you are correct in that the only changes are the increase in
length of the cryptographic keys. This is predicated on the security
community realization that brute force and (future) quantum attacks against
shorter keys are a major threat to the the security of cryptographic

Yet, we fully understand your concern about compliance of older systems with
a changed standard.

As a result, the Security WG has agreed that the increased key sizes will be
made a "shall" for future missions.  The smaller key sizes will remain in
the document for backward compatibility as "may" specifications for use in
older missions although we will include a note discouraging the use of the
smaller key sizes as being potentially vulnerable to attack.

Is this course of action agreeable to you?



Howard Weiss, CISSP

7110 Samuel Morse Drive
Columbia, MD 21046
443-430-8089 (office)
443-494-9087 (cell)
443-430-8238 (fax)
howard.weiss at parsons.com

Please consider the environment before printing this message

From: CCSDS Secretariat <thomas.gannett at tgannett.net>
Sent: Sunday, July 8, 2018 4:14 PM
To: Weiss, Howard
Cc: Mario.Merri at esa.int; Brigitte.Behal at cnes.fr
Subject: Result of CESG-P-2018-06-005 Approval to release CCSDS  352.0-P-1.1


The CESG poll below closed with conditional approval. Please
negotiate resolution of the conditions directly with the ADs who
voted "Approve with Conditions" and CC the Secretariat on all related


>CESG E-Poll Identifier: CESG-P-2018-06-005 Approval to release CCSDS
>352.0-P-1.1, CCSDS Cryptographic Algorithms (Proposed Pink Sheets,
>Issue 1.1) for CCSDS Agency review
>Results of CESG poll beginning 20 June 2018 and ending 5 July 2018:
>                  Abstain:  0 (0%)
>  Approve Unconditionally:  4 (66.67%) (Barkley, Shames, Burleigh, Wilmot)
>  Approve with Conditions:  2 (33.33%) (Merri, Behal)
>  Disapprove with Comment:  0 (0%)
>Mario Merri (Approve with Conditions): The main change is the
>strenghen of the authenticaltion keys. These have been increased,
>thus making implementations that followed the previous CCSDS
>recommentation not-compliant. Why has the document update not been
>made in a backward-compatible manner, still strongly recommending
>the new key lengths?
>Bigette Behal (Approve with Conditions): cf. MOIMS AD
>Total Respondents: 6
>No response was received from the following Area(s):
>PROPOSED SECRETARIAT ACTION:            Generate CMC poll after
>conditions have been addressed
>* * * * * * * * * * * * * * * * * * * * * * * *

NOTICE: This email message and all attachments transmitted with it may
contain privileged and confidential information, and information that is
protected by, and proprietary to, Parsons Corporation, and is intended
solely for the use of the addressee for the specific purpose set forth in
this communication. If the reader of this message is not the intended
recipient, you are hereby notified that any reading, dissemination,
distribution, copying, or other use of this message or its attachments is
strictly prohibited, and you should delete this message and all copies and
backups thereof. The recipient may not further distribute or use any of the
information contained herein without the express written authorization of
the sender. If you have received this message in error, or if you have any
questions regarding the use of the proprietary information contained
therein, please contact the sender of this message immediately, and the
sender will provide you with further instructions.

This message is intended only for the recipient(s) named above. It may
contain proprietary information and/or
protected content. Any unauthorised disclosure, use, retention or
dissemination is prohibited. If you have received
this e-mail in error, please notify the sender immediately. ESA applies
appropriate organisational measures to protect
personal data, in case of data privacy queries, please contact the ESA Data
Protection Officer (dpo at esa.int).
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mailman.ccsds.org/pipermail/cesg/attachments/20180723/39b5096b/attachment.html>

More information about the CESG mailing list