Protocol Action: 'Post-Quantum Cryptography in OpenPGP' to Proposed Standard (draft-ietf-openpgp-pqc-16.txt)
The IESG <iesg-secretary@ietf.org> Tue, 06 January 2026 19:36 UTC
Return-Path: <iesg-secretary@ietf.org>
X-Original-To: ietf-announce@ietf.org
Delivered-To: ietf-announce@mail2.ietf.org
Received: from [10.244.9.115] (unknown [4.156.85.76]) by mail2.ietf.org (Postfix) with ESMTP id D4911A398A9C; Tue, 6 Jan 2026 11:36:01 -0800 (PST)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
From: The IESG <iesg-secretary@ietf.org>
To: IETF-Announce <ietf-announce@ietf.org>
Subject: Protocol Action: 'Post-Quantum Cryptography in OpenPGP' to Proposed Standard (draft-ietf-openpgp-pqc-16.txt)
X-Test-IDTracker: no
X-IETF-IDTracker: 12.55.0
Auto-Submitted: auto-generated
Precedence: bulk
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
Message-ID: <176772816180.3617026.7626131464831941381@dt-datatracker-5656579b89-p6k4r>
Date: Tue, 06 Jan 2026 11:36:01 -0800
Message-ID-Hash: 5FGJ7H66YAEDKWGTBG64XIGBHG4DLMRR
X-Message-ID-Hash: 5FGJ7H66YAEDKWGTBG64XIGBHG4DLMRR
X-MailFrom: iesg-secretary@ietf.org
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-ietf-announce.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: The IESG <iesg@ietf.org>, draft-ietf-openpgp-pqc@ietf.org, openpgp-chairs@ietf.org, openpgp@ietf.org, paul.wouters@aiven.io, rfc-editor@rfc-editor.org
X-Mailman-Version: 3.3.9rc6
List-Id: "IETF announcement list. No discussions." <ietf-announce.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/ietf-announce/Hyyf6NPzW1j_GkrTmrwEgC1BUFM>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ietf-announce>
List-Help: <mailto:ietf-announce-request@ietf.org?subject=help>
List-Owner: <mailto:ietf-announce-owner@ietf.org>
List-Post: <mailto:ietf-announce@ietf.org>
List-Subscribe: <mailto:ietf-announce-join@ietf.org>
List-Unsubscribe: <mailto:ietf-announce-leave@ietf.org>
The IESG has approved the following document: - 'Post-Quantum Cryptography in OpenPGP' (draft-ietf-openpgp-pqc-16.txt) as Proposed Standard This document is the product of the Open Specification for Pretty Good Privacy Working Group. The IESG contact persons are Paul Wouters and Deb Cooley. A URL of this Internet-Draft is: https://datatracker.ietf.org/doc/draft-ietf-openpgp-pqc/ Technical Summary This document defines a post-quantum public-key algorithm extension for the OpenPGP protocol. Given the generally assumed threat of a cryptographically relevant quantum computer, this extension provides a basis for long-term secure OpenPGP signatures and ciphertexts. Specifically, it defines composite public-key encryption based on ML- KEM (formerly CRYSTALS-Kyber), composite public-key signatures based on ML-DSA (formerly CRYSTALS-Dilithium), both in combination with elliptic curve cryptography, and SLH-DSA (formerly SPHINCS+) as a standalone public key signature scheme. Working Group Summary There was a series of challenging decisions to make, where there were clear disagreements within the working group. For example, the choices of algorithm were contentious, as different constituencies wanted different algorithms. The working group gathered consensus around a relatively small subset of algorithms that everyone agreed was worth supporting, though. Additional documents may progress later, which would add different algorithm choices to the array available in OpenPGP. Document Quality There are multiple implementations that interoperate with each other, and can handle the test vectors in draft-ietf-openpgp-pqc-12. They are tracked as pre-release versions of software, as none of the participating implementors want to produce persistent artifacts until the draft is formalized as an RFC. These implementations and their interoperability can be seen in the OpenPGP Interoperability Test Suite: https://sequoia-pgp.gitlab.io/openpgp-interoperability-test-suite/results.html?q=pqc&impls=33354 Personnel The Document Shepherd for this document is Daniel Kahn Gillmor. The Responsible Area Director is Paul Wouters.