From b45e7bca30078c7b4239f7ff74b06b1bec94de26 Mon Sep 17 00:00:00 2001 From: Christina Harter Date: Mon, 23 Feb 2026 14:56:38 -0800 Subject: [PATCH 1/5] Create agenda & meeting minutes for 2-25-26 TAC meeting Signed-off-by: Christina Harter --- meeting-minutes/2026/2026-02-25-TAC.md | 88 ++++++++++++++++++++++++++ 1 file changed, 88 insertions(+) create mode 100644 meeting-minutes/2026/2026-02-25-TAC.md diff --git a/meeting-minutes/2026/2026-02-25-TAC.md b/meeting-minutes/2026/2026-02-25-TAC.md new file mode 100644 index 0000000..c153af6 --- /dev/null +++ b/meeting-minutes/2026/2026-02-25-TAC.md @@ -0,0 +1,88 @@ +--- +layout: default +title: 2026-02-25 TAC Meeting Record +parent: 2026 +grand_parent: Meeting Minutes +--- + +# Post-Quantum Cryptography Alliance - Technical Advisory Council (TAC) Meeting 25 February, 2026 +[**View Recording**] +*Recordings are also available on your [Open Profile](https://openprofile.dev/my-meetings) page under Past Meetings* +[**Join the meeting**](https://zoom-lfx.platform.linuxfoundation.org/meeting/98559442147?password=5e9d28b7-97d4-4628-9087-5f359dbf3d80) +[**PQCA Meeting Calendar**](https://pqca.org/calendar/) +[**Discord Server**](https://discord.pqca.org )) + +--- + +### **Antitrust Policy Notice** + +Linux Foundation meetings involve participation by industry competitors, and it is the intention of the Linux Foundation to conduct all of its activities in accordance with applicable antitrust and competition laws. It is therefore extremely important that attendees adhere to meeting agendas, and be aware of, and not participate in, any activities that are prohibited under applicable US state, federal or foreign antitrust and competition laws. Examples of types of actions that are prohibited at Linux Foundation meetings and in connection with Linux Foundation activities are described in the Linux Foundation Antitrust Policy available at [linuxfoundation.org/antitrust-policy](https://linuxfoundation.org/antitrust-policy). If you have questions about these matters, please contact your company counsel, or if you are a member of the Linux Foundation, feel free to contact Andrew Updegrove of the firm of Gesmer Updegrove LLP, which provides legal counsel to the Linux Foundation. + +--- + +## Voting Representative Attendance (_Alphabetical by 1st name_) +### Premier Member Representatives + +* [ ] Brian Jarvis, AWS [TAC Chair] +* [ ] Michael Maximilien, IBM +* [ ] Norman Ashley, Cisco (OQS Rep) +* [ ] Sophie Schmieg, Google + + ### Project Representatives +* [ ] Matthias Kannwischer, TCR +* [ ] Hanno Becker, AWS (PQCP) +* [ ] Andreas Schade, IBM (CBOMkit) + +## Non-Voting Representative Attendance + +### LF Staff +* [ ] Christina Harter +* [ ] Hart Montgomery +* [ ] Min Yu + +### Other Attendees +* [ ] Aditya Koranga, NgKore \[TAC Vice Chair\] +* [ ] *Enter other attendees* + +--- +# Meeting Agenda +- Christina: TAC Chair and Technical Community Representative (TCR) nominations now open +- Christina: Reminder: Call for Mentors for PQCA Summer Mentorship Program +- Christina: OQS Fall 2025 mentee blog post - currently under review; plan to publish this week + +# Discussion & Updates + +### **Introduction of 1st Time Attendees** +xxx + +--- + +### **Discussion Item 1** +xxx + +--- + +### **Project Updates** +- OQS + - +x + +- PQCP + - +x + +- CBOMkit + - +x + +--- + +### **Next Steps / Action Items** + +| Action Item | Owner | Status / Due Date | +|--------------|--------|------------------| +| x | x | x | + +--- + +**Adjourned:** x:xxam PT. From ca75ac2a5fe5c97cfc3d283ca87e2765cb52085f Mon Sep 17 00:00:00 2001 From: Brian Jarvis <92757966+brian-jarvis-aws@users.noreply.github.com> Date: Tue, 24 Feb 2026 11:02:23 -0500 Subject: [PATCH 2/5] Apply suggestion from @brian-jarvis-aws Signed-off-by: Brian Jarvis <92757966+brian-jarvis-aws@users.noreply.github.com> --- meeting-minutes/2026/2026-02-25-TAC.md | 7 +++++++ 1 file changed, 7 insertions(+) diff --git a/meeting-minutes/2026/2026-02-25-TAC.md b/meeting-minutes/2026/2026-02-25-TAC.md index c153af6..57ea88a 100644 --- a/meeting-minutes/2026/2026-02-25-TAC.md +++ b/meeting-minutes/2026/2026-02-25-TAC.md @@ -46,9 +46,16 @@ Linux Foundation meetings involve participation by industry competitors, and it --- # Meeting Agenda +Follow ups: + - OQS metric + - CBOMkit pipeline integration blog post + +New items: - Christina: TAC Chair and Technical Community Representative (TCR) nominations now open - Christina: Reminder: Call for Mentors for PQCA Summer Mentorship Program - Christina: OQS Fall 2025 mentee blog post - currently under review; plan to publish this week +- OpenSSF baseline for PQCA projects + # Discussion & Updates From a6d40052dae7aeea3ff583c4b279a919122cb9ec Mon Sep 17 00:00:00 2001 From: Christina Harter Date: Wed, 25 Feb 2026 12:14:24 -0800 Subject: [PATCH 3/5] Add meeting minutes for 2026-02-25-TAC meeting Signed-off-by: Christina Harter --- meeting-minutes/2026/2026-02-25-TAC.md | 143 ++++++++++++++++++++----- 1 file changed, 115 insertions(+), 28 deletions(-) diff --git a/meeting-minutes/2026/2026-02-25-TAC.md b/meeting-minutes/2026/2026-02-25-TAC.md index 57ea88a..465a6e0 100644 --- a/meeting-minutes/2026/2026-02-25-TAC.md +++ b/meeting-minutes/2026/2026-02-25-TAC.md @@ -6,11 +6,15 @@ grand_parent: Meeting Minutes --- # Post-Quantum Cryptography Alliance - Technical Advisory Council (TAC) Meeting 25 February, 2026 -[**View Recording**] -*Recordings are also available on your [Open Profile](https://openprofile.dev/my-meetings) page under Past Meetings* +[**View Recording**](https://zoom.us/rec/share/QauwnxQ4fzzhh2x-oCnESD3EFgkZGpIlYiu-WZe5goawtEwrAdqKZ2lNr5wMYcEU.19tL-isgxmnN-TKr) + +*Recordings are also available on your [Open Profile](https://openprofile.dev/my-meetings) page under Past Meetings* + [**Join the meeting**](https://zoom-lfx.platform.linuxfoundation.org/meeting/98559442147?password=5e9d28b7-97d4-4628-9087-5f359dbf3d80) + [**PQCA Meeting Calendar**](https://pqca.org/calendar/) -[**Discord Server**](https://discord.pqca.org )) + +[**Discord Server**](https://discord.pqca.org) --- @@ -23,26 +27,28 @@ Linux Foundation meetings involve participation by industry competitors, and it ## Voting Representative Attendance (_Alphabetical by 1st name_) ### Premier Member Representatives -* [ ] Brian Jarvis, AWS [TAC Chair] -* [ ] Michael Maximilien, IBM -* [ ] Norman Ashley, Cisco (OQS Rep) -* [ ] Sophie Schmieg, Google +* [x] Brian Jarvis, AWS [TAC Chair] +* [ ] ~~Michael Maximilien, IBM~~ +* [x] Norman Ashley, Cisco (OQS Rep) +* [ ] ~~Sophie Schmieg, Google~~ ### Project Representatives -* [ ] Matthias Kannwischer, TCR -* [ ] Hanno Becker, AWS (PQCP) -* [ ] Andreas Schade, IBM (CBOMkit) +* [x] Andreas Schade, IBM (CBOMkit) +* [ ] ~~Hanno Becker, AWS (PQCP)~~ +* [x] Matthias Kannwischer, TCR ## Non-Voting Representative Attendance ### LF Staff -* [ ] Christina Harter -* [ ] Hart Montgomery -* [ ] Min Yu +* [x] Christina Harter +* [x] Hart Montgomery +* [x] Min Yu ### Other Attendees -* [ ] Aditya Koranga, NgKore \[TAC Vice Chair\] -* [ ] *Enter other attendees* +* [x] Aditya Koranga, NgKore \[TAC Vice Chair\] +* [x] Dhananjay Bhujbal +* [x] Panos Kampanakis +* [x] Sandip Dholakia --- # Meeting Agenda @@ -53,43 +59,124 @@ Follow ups: New items: - Christina: TAC Chair and Technical Community Representative (TCR) nominations now open - Christina: Reminder: Call for Mentors for PQCA Summer Mentorship Program -- Christina: OQS Fall 2025 mentee blog post - currently under review; plan to publish this week +- Christina: OQS Fall 2025 mentee blog post update - OpenSSF baseline for PQCA projects # Discussion & Updates ### **Introduction of 1st Time Attendees** -xxx +No new attendees. + +--- + +### **2026 Elections and Mentorship Updates** +Christina reminded the group that nominations are currently open for: +- [TAC Chair](https://github.com/PQCA/governance/issues/new?template=TAC-chair-nomination.yaml) +- [Technical Community Representative (TCR)](https://github.com/PQCA/governance/issues/new?template=tcr-nomination.yaml) +- [Governing Board General Member Representative](https://forms.gle/SRcA4LK5GD1WMtNv7) + +Nominations remain open through **March 12**, with voting scheduled for **March 13–20**. + +Christina also announced: +- An OQS Fall mentee blog post has been approved following Brian’s review and will be published today. [**Final blog post**](https://pqca.org/blog/2026/lfx-mentorship-enhancing-constant-time-analysis-tooling-in-liboqs/) +- A new PQCA-related blog post from David Chisnall will be sent to the content review team today. +- The call for PQCA mentorship program mentors remains open for the Summer 2026 session (June–August). --- -### **Discussion Item 1** -xxx +### **OQS Metrics and Blog Follow-Ups** +Norman confirmed that the OQS metrics discussion remains unchanged. Brian suggested continuing forward with periodic updates rather than waiting for further refinements. + +The CBOMkit pipeline integration blog post remains paused due to the author’s absence. + +--- + +### **OpenSSF Baselines Discussion** +Hart introduced the topic of [**OpenSSF Baselines**](https://baseline.openssf.org/), describing them as a structured security checklist that can help projects demonstrate adherence to best practices. While PQCA projects are already security-focused, certification could serve as: +- A structured self-assessment +- An external signaling mechanism for enterprise users + +The TAC agreed that each project TSC (OQS, CBOMkit, PQCP) should evaluate: +- The value of pursuing OpenSSF baseline compliance +- The appropriate level to target +- Whether the effort would provide strategic differentiation + +Hart offered to collect feedback and relay it to OpenSSF leadership. --- ### **Project Updates** -- OQS +- OQS (Norman) - -x +Norman reported ongoing planning for the next OQS release. The team discussed coordinating mlk-native update timing, especially in light of increased release frequency from CodePackage. -- PQCP +- PQCP (Matthias) - -x +Matthias shared updates including: + +Upcoming talk about mlkem-native at RWC 2026 on March 9, 2026. + +**mlkem-native & mldsa-native** +- Progress in our experimental Armv8.1-M/MVE backend (see pq-code-package/mlkem-native#1524) + +**mlkem-native:** +- Porting HOL-Light constant-time and memory safety proofs from s2n-bignum (and filling in gaps) +- Wrapping up conversion of x86_64 compression intrinsics to assembly + HOL-Light correctness proofs +- x86_64 AVX2 Keccak implementation with HOL-Light correctness proof contributed by @manastasova - under review -- CBOMkit +**mldsa-native:** +- (Slow) progress towards HOL-Light correctness proofs of native code (x86: 3/17; AArch64: 4/17 -- some still under review) +- Added Cortex-M33 baremetal tests - considering an Armv7/8-M backend + +- CBOMkit (Andreas) - -x +Andreas reported: +- Golang support added to CBOMkit +- Version upgrade to 2.2 +- Improved support for Go crypto libraries +- Potential future language support (C/C++), pending contributor interest + +--- + +### **TLS Endpoint Scanning Proposal** +Dhananjay presented a Go-based TLS endpoint scanning tool that: +- Performs TLS handshakes +- Extracts supported TLS versions and cipher suites +- Collects certificate chains +- Analyzes cryptographic configurations +- Plans to add quantum risk classification + +The tool currently operates as a CLI and does not yet produce output in CBOM format. + +Discussion points included: +- Whether to integrate the tool into CBOMkit or pursue it as a standalone project +- The risk of duplicating existing TLS scanning tools +- The strategic value of adding quantum risk analysis as a differentiator + +Andreas suggested adapting the output into CBOM format. + +Norman and Brian emphasized the potential value of combining source-level scanning and network-level validation. + +The TAC agreed the appropriate next step is discussion within the CBOMkit TSC, including a review of maturity, roadmap, and integration options. --- ### **Next Steps / Action Items** | Action Item | Owner | Status / Due Date | -|--------------|--------|------------------| -| x | x | x | +|-------------|-------|-------------------| +| Publish OQS fall mentee blog post and share on social channels | Christina | Done | +| Send David Chisnall’s PQCA-related blog post to content review team | Christina | Done | +| Review OpenSSF Baselines discussion within OQS TSC and report back | Norman | Next OQS TSC meeting | +| Discuss OpenSSF Baselines value and target level within CBOMkit TSC and report back | Andreas | Next CBOMkit TSC meeting | +| Evaluate OpenSSF Baselines within respective TSCs (OQS, CBOM Kit, PQCP) and provide feedback | All relevant TSCs | Before next TAC meeting | +| Adapt TLS network analyzer output toward CBOM format and prepare maturity presentation | Dhananjay | Next CBOMkit meeting | +| Add TLS endpoint scanning proposal to CBOMkit TSC agenda | Aditya | Before next CBOMkit meeting | +| Collect OpenSSF feedback from PQCA projects and relay to OpenSSF | Hart | Ongoing | +| Submit nominations (with consent) for TAC Chair, TCR, and Governing Board positions | All interested parties | March 12 deadline | +| Volunteer as mentor and review mentorship program details on wiki | All interested parties | March 13 deadline | --- -**Adjourned:** x:xxam PT. +**Adjourned:** 7:58am PT. From 63de54e10462e81a8f5b01533159cf1135eeb743 Mon Sep 17 00:00:00 2001 From: Christina Harter Date: Fri, 27 Feb 2026 07:48:36 -0800 Subject: [PATCH 4/5] Update meeting-minutes/2026/2026-02-25-TAC.md Co-authored-by: AddyTiv Signed-off-by: Christina Harter --- meeting-minutes/2026/2026-02-25-TAC.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/meeting-minutes/2026/2026-02-25-TAC.md b/meeting-minutes/2026/2026-02-25-TAC.md index 465a6e0..82ccfa1 100644 --- a/meeting-minutes/2026/2026-02-25-TAC.md +++ b/meeting-minutes/2026/2026-02-25-TAC.md @@ -109,7 +109,7 @@ Hart offered to collect feedback and relay it to OpenSSF leadership. ### **Project Updates** - OQS (Norman) - -Norman reported ongoing planning for the next OQS release. The team discussed coordinating mlk-native update timing, especially in light of increased release frequency from CodePackage. +Norman reported ongoing planning for the next OQS release. The team discussed coordinating mlkem-native update timing, especially in light of increased release frequency from PQCP. - PQCP (Matthias) - From ff2cb01eedf581d51abe7d8305f9381269a40bd7 Mon Sep 17 00:00:00 2001 From: Christina Harter Date: Fri, 27 Feb 2026 10:23:20 -0800 Subject: [PATCH 5/5] Update meeting-minutes/2026/2026-02-25-TAC.md Co-authored-by: Brian Jarvis <92757966+brian-jarvis-aws@users.noreply.github.com> Signed-off-by: Christina Harter --- meeting-minutes/2026/2026-02-25-TAC.md | 42 +++++++++----------------- 1 file changed, 15 insertions(+), 27 deletions(-) diff --git a/meeting-minutes/2026/2026-02-25-TAC.md b/meeting-minutes/2026/2026-02-25-TAC.md index 82ccfa1..61bca3f 100644 --- a/meeting-minutes/2026/2026-02-25-TAC.md +++ b/meeting-minutes/2026/2026-02-25-TAC.md @@ -108,35 +108,23 @@ Hart offered to collect feedback and relay it to OpenSSF leadership. ### **Project Updates** - OQS (Norman) - - -Norman reported ongoing planning for the next OQS release. The team discussed coordinating mlkem-native update timing, especially in light of increased release frequency from PQCP. - + - There is ongoing planning for the next OQS release. + - The team discussed coordinating mlkem-native update timing, especially in light of increased release frequency from PQCP. - PQCP (Matthias) - - -Matthias shared updates including: - -Upcoming talk about mlkem-native at RWC 2026 on March 9, 2026. - -**mlkem-native & mldsa-native** -- Progress in our experimental Armv8.1-M/MVE backend (see pq-code-package/mlkem-native#1524) - -**mlkem-native:** -- Porting HOL-Light constant-time and memory safety proofs from s2n-bignum (and filling in gaps) -- Wrapping up conversion of x86_64 compression intrinsics to assembly + HOL-Light correctness proofs -- x86_64 AVX2 Keccak implementation with HOL-Light correctness proof contributed by @manastasova - under review - -**mldsa-native:** -- (Slow) progress towards HOL-Light correctness proofs of native code (x86: 3/17; AArch64: 4/17 -- some still under review) -- Added Cortex-M33 baremetal tests - considering an Armv7/8-M backend - + - Upcoming talk about mlkem-native at RWC 2026 on March 9, 2026. + - Progress in our experimental Armv8.1-M/MVE backend (see pq-code-package/mlkem-native#1524) + - mlkem-native + - Porting HOL-Light constant-time and memory safety proofs from s2n-bignum (and filling in gaps) + - Wrapping up conversion of x86_64 compression intrinsics to assembly + HOL-Light correctness proofs + - x86_64 AVX2 Keccak implementation with HOL-Light correctness proof contributed by @manastasova - under review + - mldsa-native: + - (Slow) progress towards HOL-Light correctness proofs of native code (x86: 3/17; AArch64: 4/17 -- some still under review) + - Added Cortex-M33 baremetal tests - considering an Armv7/8-M backend - CBOMkit (Andreas) - - -Andreas reported: -- Golang support added to CBOMkit -- Version upgrade to 2.2 -- Improved support for Go crypto libraries -- Potential future language support (C/C++), pending contributor interest - + - Golang support added to CBOMkit + - Version upgrade to 2.2 + - Improved support for Go crypto libraries + - Potential future language support (C/C++), pending contributor interest --- ### **TLS Endpoint Scanning Proposal**