[MLS] Re: Fwd: New Version Notification for draft-ietf-mls-pq-ciphersuites-01.txt
"Hale, Britta (CIV)" <britta.hale@nps.edu> Tue, 04 November 2025 18:18 UTC
Return-Path: <britta.hale@nps.edu>
X-Original-To: mls@mail2.ietf.org
Delivered-To: mls@mail2.ietf.org
Received: from localhost (localhost [127.0.0.1]) by mail2.ietf.org (Postfix) with ESMTP id 2DF9F82C1B52 for <mls@mail2.ietf.org>; Tue, 4 Nov 2025 10:18:41 -0800 (PST)
X-Virus-Scanned: amavisd-new at ietf.org
X-Spam-Flag: NO
X-Spam-Score: -1.897
X-Spam-Level:
X-Spam-Status: No, score=-1.897 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=0.001, RCVD_IN_VALIDITY_RPBL_BLOCKED=0.001, RCVD_IN_VALIDITY_SAFE_BLOCKED=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail2.ietf.org ([166.84.6.31]) by localhost (mail2.ietf.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Tv0nJuZKVwOE for <mls@mail2.ietf.org>; Tue, 4 Nov 2025 10:18:40 -0800 (PST)
Received: from DM1PR04CU001.outbound.protection.outlook.com (mail-centralusazon11010057.outbound.protection.outlook.com [52.101.61.57]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange ECDHE (P-384) server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by mail2.ietf.org (Postfix) with ESMTPS id 8254D82C1B46 for <mls@ietf.org>; Tue, 4 Nov 2025 10:18:40 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector10001; d=microsoft.com; cv=none; b=ay40ULrv3iWIATW9zninUj9VCutTaVx5mYaxPqGbMizGI+HCjxxStRmwzbV451oe2DFSGKRp/qYg5Rbq9LbxWpE2MUxWyOW16yziiJ3l3HZJo5Fnsoq22rWxr0MGyewygiHx647OJpL+u6wPe0eTb3DrIdJvHFrmbFKBe5P5M9Gtp315Hj4Z++2tAninBNLULDavZri8BWBjKlc4he47A3LvlqabdH442YZLwbvZxNxIV12NrgKsL8xrpm4EYVTg258/U9yojBpu06rNjYW+fUHPV/cFsBsxNtVHj++g5y27Y3DxNyySJsjFPlZ3XmFPtYH1UEqQC807XYglaN88VA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector10001; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=G++/wKSVlJDc0AT4qIhQB7jYJ4htWKGj80YK5l4FOmI=; b=R06igTi/YgaDeK8wSACK6gBfLfP2cizHOlXWejKKxCd5+qFVwLBIWHW/RC4EgZDuKuHoC75mcyQEG/LadM8MtogFKQ0/MpztKhyWU0eNqtmHCUdEjQdDrqT21yhcE6RYTuJ+N4xqqbW3nV8COHJs4xeyYItguItMlU4rfX2akkUvn5WBk86mX9iwVkgYQtwaRr0lSKqxHPOUywrXAOxD/ldDjw8kQH8Hd8bBcJhtqDCOT7Z8XqXHxuu7pAfGaCdo/LuBlclttbntCxRdxuu9gcapVgeNj6PabNxg1KKyqNNBYh+uidkmtxcY4arlqm5TdDV5oJK7oaSAfkoxDf1lGA==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=nps.edu; dmarc=pass action=none header.from=nps.edu; dkim=pass header.d=nps.edu; arc=none
Received: from DS2PR13MB7553.namprd13.prod.outlook.com (2603:10b6:8:332::9) by CH2PR13MB3672.namprd13.prod.outlook.com (2603:10b6:610:9f::13) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.9298.7; Tue, 4 Nov 2025 18:18:30 +0000
Received: from DS2PR13MB7553.namprd13.prod.outlook.com ([fe80::e0cf:2ae6:6e27:6259]) by DS2PR13MB7553.namprd13.prod.outlook.com ([fe80::e0cf:2ae6:6e27:6259%4]) with mapi id 15.20.9298.006; Tue, 4 Nov 2025 18:18:30 +0000
From: "Hale, Britta (CIV)" <britta.hale@nps.edu>
To: Deirdre Connolly <durumcrustulum@gmail.com>, Richard Barnes <rlb@ipv.sx>
Thread-Topic: [MLS] Re: Fwd: New Version Notification for draft-ietf-mls-pq-ciphersuites-01.txt
Thread-Index: AQHcTbQJ0yQA3B0sR0SHxQefIiMmJrTizPqA//+AWIA=
Date: Tue, 04 Nov 2025 18:18:30 +0000
Message-ID: <66549BD7-E7FC-4408-B0D2-086BDB6F93ED@nps.edu>
References: <176227803027.652171.12655145854778720422@dt-datatracker-5df8666cb-7l4w5> <CAKoiRuZVSWbooy_Zug3890TgXD0dQ1JEx+D6K5Lg8pbzbLi7UA@mail.gmail.com> <CAL02cgRUKcpkReKpdLo==H5zubpJ8AkXCKvaCkVQW5AmP1CdSg@mail.gmail.com> <CAFR824xJBnBjoQ2KxRwbkX4Gfb11Nzd8v+cBxUxV4HSJ8cOaxA@mail.gmail.com>
In-Reply-To: <CAFR824xJBnBjoQ2KxRwbkX4Gfb11Nzd8v+cBxUxV4HSJ8cOaxA@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
msip_labels: MSIP_Label_acbbd4a6-dc2f-44d9-ad2c-c28d4679873f_Enabled=true;MSIP_Label_acbbd4a6-dc2f-44d9-ad2c-c28d4679873f_Enabled=true;MSIP_Label_acbbd4a6-dc2f-44d9-ad2c-c28d4679873f_Method=Standard;MSIP_Label_acbbd4a6-dc2f-44d9-ad2c-c28d4679873f_Tag=50, 3, 0, 1;MSIP_Label_acbbd4a6-dc2f-44d9-ad2c-c28d4679873f_ActionId=336c3056-384e-4597-a265-1e2a2e8f4779;MSIP_Label_acbbd4a6-dc2f-44d9-ad2c-c28d4679873f_Name=No Label;MSIP_Label_acbbd4a6-dc2f-44d9-ad2c-c28d4679873f_SiteId=6d936231-a517-40ea-9199-f7578963378e;MSIP_Label_acbbd4a6-dc2f-44d9-ad2c-c28d4679873f_ContentBits=0;MSIP_Label_acbbd4a6-dc2f-44d9-ad2c-c28d4679873f_SetDate=2025-11-04T18:13:44Z;
user-agent: Microsoft-MacOutlook/16.102.25102623
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=nps.edu;
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: DS2PR13MB7553:EE_|CH2PR13MB3672:EE_
x-ms-office365-filtering-correlation-id: 6e869e9b-f544-4832-7ef0-08de1bce8e81
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;ARA:13230040|376014|10070799003|366016|1800799024|4022899009|38070700021|7053199007|8096899003|13003099007;
x-microsoft-antispam-message-info: ZPET6as2W4VfEZQAU0UFqm2NjiSMYCGpcZ04Uur59AcXptYe8DVEAwv3GS2+2tVJN6Rm8HZtRgmhkFq/Vm2QncvUqQAIabtcfPQSvRn+MBKQTFqdMLEkmWvk7eb+rI/rF/xFSc4j2ZTBZAGfs3KQXdW89eu1G2jlh/vSoWoQUNVaChHWVtAkZnx5yt6xumKNKG5Y+rhVhxrd6F/wq4RbsylcnG3QSewkWxvk1zOi906oqzqSWPo3+7wtczsPRJxnH4JLqyaYzKrA2ijWwi9vUxgP710F02CzEItvf8MbGwWU8ahYqG8uNWM4vycD9sX1plsC788R4V7CM1xw1qhjRMNytyTG+zmwX1+EpbwTiWOmEsSYeTmm5cw2wB7qJOrO0xUNPqLHnoA3XOuqgUJRpKqo0tcFQcIxrBjXq3seDDy+F+FNhpvXLnr9QCDdk7xCse+TVzy0c4koTPestowk/CcMvFkUDr9KPHzPbSgmOZFs0mgKSFIL7lY62LvMICS476I7VIRU2Pbtvi7VlYc5idUGpD/H1z0/XVj0ilL4vSGfB9LbCHEWQB7n64ltWBZJoA8LGTINpvCiToieSRFOjCgeKnVT2/7xL/AKy3557MycPzjXqrcuQ915x6WP5fUHqU5W+HaNClWFjabt+eRDKs6D0B579U8CemDr3AEKrt3e9BZK1equ4nSAlWmkY49nHFp+Zh/nLjp8f7QGln8q5lwZUiSmEX7AQMhEXagAoMb8F89UED0W56pJilOdLe796WS5I9tVVSnQEoDQJaw69+JHCQkKpETwV53U2R5yPkzlZCVCVrDwpqrCGjZOvqBzAZ3DQltPS3HY4QIsLf6RNfAWMbJLmjkiF9fnt4yOVZEShEGJ+w2Ih9x2E+GeKsBc0sfVxcmSjE297hM7nUhV/5ntbPbFwJoYCLssi0pDnCCPrF9Z9tzJywT67OvWKtjMk4UQlP1PbdX9S4vJVWA7Hx4qLRCI8whNffgzGzMkoUlA2VrBIBqkjXYRSiGF8k3KKZJTJUz902x0LMSqboCa9hmGP4IeeDyXPIxvyf/URf01SmjoTlqQfRqbbAzxXsMJAngsQ5lXCqgWFHSTTES7j2aioyzj5BkBTtvHO0sVSzndgfGMYFHcxc6kYUlOqucF+HHoTAbuFMHuXsint11mPxv5wEhqoyoSk3BCesZ3DRo/CSNv1x2r2nJBK1F+EoYwuEtS+OF9pGbKC2YFg+ZyD0SaqcAfWzRAlTOiKwVqF4gNOwe1y5bhUTuH6VdrC9JP0mK/DVwSFfGmknuvR0eY9OP/wi+zzc4bTGwfmnh7rxTNxZ2ovmsBUGOOiY0tHIydc3f0WLeyPQrbaatqNKgrLrUpSsweyY49kxMSwM7aClXJH5yWN1KPrdZwWR4b4cjl480BAha6lSBDjRWNsXmhyAp/X5qStuQNZ0V3y3R1oGzCCRFyM0DO/AaSSqweFMgYKTqSHclX8Rxt76B5aiSR7AMjGHrJTZkoXozV/9Y/H9FoObF8cxPhTG/mcivJiNaD
x-forefront-antispam-report: CIP:255.255.255.255;CTRY:;LANG:en;SCL:1;SRV:;IPV:NLI;SFV:NSPM;H:DS2PR13MB7553.namprd13.prod.outlook.com;PTR:;CAT:NONE;SFS:(13230040)(376014)(10070799003)(366016)(1800799024)(4022899009)(38070700021)(7053199007)(8096899003)(13003099007);DIR:OUT;SFP:1101;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: multipart/alternative; boundary="_000_66549BD7E7FC4408B0D2086BDB6F93EDnpsedu_"
MIME-Version: 1.0
X-OriginatorOrg: nps.edu
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: DS2PR13MB7553.namprd13.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 6e869e9b-f544-4832-7ef0-08de1bce8e81
X-MS-Exchange-CrossTenant-originalarrivaltime: 04 Nov 2025 18:18:30.1033 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 6d936231-a517-40ea-9199-f7578963378e
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: 0U8/sRKlE+1dgKgPP8ZyM5qlQj/L1LFXObcZRqMo690iEp0E1lM8heyhw7gtF2tWebqxAQDsmUkc7AuS/qLwwA==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: CH2PR13MB3672
X-MS-Exchange-CrossPremises-AuthAs: Internal
X-MS-Exchange-CrossPremises-AuthMechanism: 04
X-MS-Exchange-CrossPremises-AuthSource: DS2PR13MB7553.namprd13.prod.outlook.com
X-MS-Exchange-CrossPremises-TransportTrafficType: Email
X-MS-Exchange-CrossPremises-SCL: 1
X-MS-Exchange-CrossPremises-messagesource: StoreDriver
X-MS-Exchange-CrossPremises-BCC:
X-MS-Exchange-CrossPremises-originalclientipaddress: 2601:647:c181:5780:dde:49f0:913e:d7fa
X-MS-Exchange-CrossPremises-transporttraffictype: Email
X-MS-Exchange-CrossPremises-antispam-scancontext: DIR:Originating;SFV:NSPM;SKIP:0;
X-MS-Exchange-CrossPremises-processed-by-journaling: Journal Agent
X-OrganizationHeadersPreserved: CH2PR13MB3672.namprd13.prod.outlook.com
Message-ID-Hash: XU5ZL3ZJO2CJD6WLCNETVJAJJ4FFOL6O
X-Message-ID-Hash: XU5ZL3ZJO2CJD6WLCNETVJAJJ4FFOL6O
X-MailFrom: britta.hale@nps.edu
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-mls.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: Rohan Mahy <rohan.ietf@gmail.com>, MLS List <mls@ietf.org>
X-Mailman-Version: 3.3.9rc6
Precedence: list
Subject: [MLS] Re: Fwd: New Version Notification for draft-ietf-mls-pq-ciphersuites-01.txt
List-Id: Messaging Layer Security <mls.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/mls/_eR2Zgu322Nsi6I_wmUOX3mdLm4>
List-Archive: <https://mailarchive.ietf.org/arch/browse/mls>
List-Help: <mailto:mls-request@ietf.org?subject=help>
List-Owner: <mailto:mls-owner@ietf.org>
List-Post: <mailto:mls@ietf.org>
List-Subscribe: <mailto:mls-join@ietf.org>
List-Unsubscribe: <mailto:mls-leave@ietf.org>
I would be very opposed to reverting the symmetric level to AES128 and discarding AES256. If people have uses for the 128 level we can add them. This does lead to an expansion of options, but I will note that such a result is self-inflicted in this WG. TLS efforts for PQC have largely separated out the handshake ciphers and symmetric ciphers in discussion, e.g., such as in the following drafts which do not define anything regarding AES. It may be worth considering if we want to keep having the key exchange and symmetric channel ciphers so explicitly tied. https://datatracker.ietf.org/doc/draft-ietf-tls-ecdhe-mlkem/ https://datatracker.ietf.org/doc/draft-ietf-tls-mldsa/ https://datatracker.ietf.org/doc/draft-ietf-tls-mlkem/ From: Deirdre Connolly <durumcrustulum@gmail.com> Date: Tuesday, November 4, 2025 at 9:55 AM To: Richard Barnes <rlb@ipv.sx> Cc: Rohan Mahy <rohan.ietf@gmail.com>, "mls@ietf.org" <mls@ietf.org> Subject: [MLS] Re: Fwd: New Version Notification for draft-ietf-mls-pq-ciphersuites-01.txt NPS WARNING: *external sender* verify before acting. I would be comfortable with this On Tue, Nov 4, 2025, 12:54 PM Richard Barnes <rlb@ipv.sx<mailto:rlb@ipv.sx>> wrote: I would like to discuss the symmetric parameters here. I had a feeling of vague unease at the meeting yesterday, which was confirmed by some of the meeting chat raising the question of whether we need AES-256 for the 128-bit security level. It seems like we should revert the 128-bit security level suites (MLKEM768+P256, MLKEM768+X2519, MLKEM768) to use AES128 and SHA256. Would people have concerns with this? --Richard On Tue, Nov 4, 2025 at 12:48 PM Rohan Mahy <rohan.ietf@gmail.com<mailto:rohan.ietf@gmail.com>> wrote: Hi, If you want something different from what is in this draft, please create an issue, explain your motivation in a few sentences, and send to this list. What I heard during the meeting yesterday. - One request to make the ciphersuite with MLKEM768X25519 use AES128 instead of AES256 - One request to add one more ciphersuite MLS_256_MLKEM1024_AES256GCM_SHA384_MLDSA87 Thanks, -rohan ---------- Forwarded message --------- From: <internet-drafts@ietf.org<mailto:internet-drafts@ietf.org>> Date: Tue, Nov 4, 2025 at 12:41 PM Subject: New Version Notification for draft-ietf-mls-pq-ciphersuites-01.txt To: Richard L. Barnes <rlb@ipv.sx<mailto:rlb@ipv.sx>>, Rohan Mahy <rohan.ietf@gmail.com<mailto:rohan.ietf@gmail.com>> A new version of Internet-Draft draft-ietf-mls-pq-ciphersuites-01.txt has been successfully submitted by Rohan Mahy and posted to the IETF repository. Name: draft-ietf-mls-pq-ciphersuites Revision: 01 Title: ML-KEM and Hybrid Cipher Suites for Messaging Layer Security Date: 2025-11-04 Group: mls Pages: 8 URL: https://www.ietf.org/archive/id/draft-ietf-mls-pq-ciphersuites-01.txt Status: https://datatracker.ietf.org/doc/draft-ietf-mls-pq-ciphersuites/ HTML: https://www.ietf.org/archive/id/draft-ietf-mls-pq-ciphersuites-01.html HTMLized: https://datatracker.ietf.org/doc/html/draft-ietf-mls-pq-ciphersuites Diff: https://author-tools.ietf.org/iddiff?url2=draft-ietf-mls-pq-ciphersuites-01 Abstract: This document registers new cipher suites for Messaging Layer Security (MLS) based on "post-quantum" algorithms, which are intended to be resilient to attack by quantum computers. These cipher suites are constructed using the new Module-Lattice Key Encapsulation Mechanism (ML-KEM), optionally in combination with traditional elliptic curve KEMs, together with appropriate authenticated encryption, hash, and signature algorithms. The IETF Secretariat _______________________________________________ MLS mailing list -- mls@ietf.org<mailto:mls@ietf.org> To unsubscribe send an email to mls-leave@ietf.org<mailto:mls-leave@ietf.org> _______________________________________________ MLS mailing list -- mls@ietf.org<mailto:mls@ietf.org> To unsubscribe send an email to mls-leave@ietf.org<mailto:mls-leave@ietf.org>
- [MLS] Fwd: New Version Notification for draft-iet… Rohan Mahy
- [MLS] Re: Fwd: New Version Notification for draft… Richard Barnes
- [MLS] Re: Fwd: New Version Notification for draft… Deirdre Connolly
- [MLS] Re: Fwd: New Version Notification for draft… Hale, Britta (CIV)