Re: [IPsec] Comment on draft-kampanakis-ml-kem-ikev2

"Kampanakis, Panos" <> Wed, 31 January 2024 04:11 UTC

Return-Path: <>
Received: from localhost (localhost []) by (Postfix) with ESMTP id C4571C151980 for <>; Tue, 30 Jan 2024 20:11:52 -0800 (PST)
X-Virus-Scanned: amavisd-new at
X-Spam-Flag: NO
X-Spam-Score: -7.104
X-Spam-Status: No, score=-7.104 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H4=0.001, RCVD_IN_MSPIKE_WL=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_NONE=0.001, T_SCC_BODY_TEXT_LINE=-0.01, UNPARSEABLE_RELAY=0.001] autolearn=ham autolearn_force=no
Authentication-Results: (amavisd-new); dkim=pass (1024-bit key)
Received: from ([]) by localhost ( []) (amavisd-new, port 10024) with ESMTP id iU_YGzWWqXhj for <>; Tue, 30 Jan 2024 20:11:48 -0800 (PST)
Received: from ( []) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by (Postfix) with ESMTPS id 3B39CC14F73E for <>; Tue, 30 Jan 2024 20:11:48 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;;; q=dns/txt; s=amazon201209; t=1706674308; x=1738210308; h=from:to:date:message-id:references:in-reply-to: mime-version:subject; bh=o7RILcQs2x04Q79FLm8nzzBI12/ghffLt4qzV69DEtg=; b=VCK9vg7CLLgPu2u0UUopAgVAKiQKkp5FrBC4jBojjASbP2ZrYjg5/JeA echIImO2Y3GZVseO/DkVyDc7I2tRhSvNr3dgIA9FXKxXFudRQJ5pFfgO+ wk7qKLvFDR9Aec3qS9mwEfXhlW9wO4FDQAcWXyQUC6ztsa9EK9pXVEgjK U=;
X-IronPort-AV: E=Sophos;i="6.05,231,1701129600"; d="scan'208,217";a="62500751"
Thread-Topic: [IPsec] Comment on draft-kampanakis-ml-kem-ikev2
Received: from (HELO ([]) by with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 31 Jan 2024 04:11:46 +0000
Received: from [] by [] with esmtp (Farcaster) id 6f7d69f7-18e4-422d-8aed-1eecb0aff7e4; Wed, 31 Jan 2024 04:11:46 +0000 (UTC)
X-Farcaster-Flow-ID: 6f7d69f7-18e4-422d-8aed-1eecb0aff7e4
Received: from ( by ( with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.2.1118.40; Wed, 31 Jan 2024 04:11:45 +0000
Received: from ( by ( with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA) id 15.2.1118.40; Wed, 31 Jan 2024 04:11:44 +0000
Received: from ([fe80::4f78:75cd:3117:8055]) by ([fe80::4f78:75cd:3117:8055%5]) with mapi id 15.02.1118.040; Wed, 31 Jan 2024 04:11:44 +0000
From: "Kampanakis, Panos" <>
To: "Bruckert, Leonie" <>, "" <>
Thread-Index: AdpTbguY61E/A+nBR8OJo8KotVdreQAjXPcw
Date: Wed, 31 Jan 2024 04:11:44 +0000
Message-ID: <>
References: <>
In-Reply-To: <>
Accept-Language: en-US
Content-Language: en-US
x-originating-ip: []
Content-Type: multipart/alternative; boundary="_000_e76e4c34353942e988eda569eca9c4daamazoncom_"
MIME-Version: 1.0
Archived-At: <>
Subject: Re: [IPsec] Comment on draft-kampanakis-ml-kem-ikev2
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Discussion of IPsec protocols <>
List-Unsubscribe: <>, <>
List-Archive: <>
List-Post: <>
List-Help: <>
List-Subscribe: <>, <>
X-List-Received-Date: Wed, 31 Jan 2024 04:11:52 -0000

Thx Leonie. Good idea. Will do. I will align the text a bit with the terminology draft.

From: IPsec <> On Behalf Of Bruckert, Leonie
Sent: Tuesday, January 30, 2024 6:40 AM
Subject: [EXTERNAL] [IPsec] Comment on draft-kampanakis-ml-kem-ikev2

CAUTION: This email originated from outside of the organization. Do not click links or open attachments unless you can confirm the sender and know the content is safe.

Thanks for setting up this draft!

Have you considered to align terminology with draft-ietf-pquip-pqt-hybrid-terminology? It defines a "PQ/T Hybrid Key Encapsulation Mechanism" as a "multi-algorithm KEM made up of two or more component KEM algorithms where at least one is a post-quantum algorithm and at least one is a traditional algorithm". This definition may not perfectly match how a hybrid KEM is done in IKEv2 as it is a sequential approach. However, I think it would be good to have a reference to the terminology draft.