IETF Logo Mail Archive

[TLS] Re: [EXTERNAL] Working group last call for the deprecation experimental code points in ECDHE-ML-KEM

Eric Rescorla <ekr@rtfm.com> Tue, 04 November 2025 20:24 UTC

Return-Path: <ekr@rtfm.com>
X-Original-To: tls@mail2.ietf.org
Delivered-To: tls@mail2.ietf.org
Received: from localhost (localhost [127.0.0.1]) by mail2.ietf.org (Postfix) with ESMTP id 2D41982E39CF for <tls@mail2.ietf.org>; Tue, 4 Nov 2025 12:24:12 -0800 (PST)
X-Virus-Scanned: amavisd-new at ietf.org
X-Spam-Flag: NO
X-Spam-Score: -1.897
X-Spam-Level:
X-Spam-Status: No, score=-1.897 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_NONE=0.001] autolearn=ham autolearn_force=no
Authentication-Results: mail2.ietf.org (amavisd-new); dkim=pass (2048-bit key) header.d=rtfm-com.20230601.gappssmtp.com
Received: from mail2.ietf.org ([166.84.6.31]) by localhost (mail2.ietf.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id mujnP5RzNeIk for <tls@mail2.ietf.org>; Tue, 4 Nov 2025 12:24:11 -0800 (PST)
Received: from mail-yx1-xb132.google.com (mail-yx1-xb132.google.com [IPv6:2607:f8b0:4864:20::b132]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by mail2.ietf.org (Postfix) with ESMTPS id 9551582E39C3 for <tls@ietf.org>; Tue, 4 Nov 2025 12:24:11 -0800 (PST)
Received: by mail-yx1-xb132.google.com with SMTP id 956f58d0204a3-63e393c49f1so5476980d50.0 for <tls@ietf.org>; Tue, 04 Nov 2025 12:24:11 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=rtfm-com.20230601.gappssmtp.com; s=20230601; t=1762287851; x=1762892651; darn=ietf.org; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:from:to:cc:subject:date:message-id:reply-to; bh=JWFCrUDuRDh3+p8jLUD5YC9ff1+YFU9w2wwtrkWL4Dk=; b=bRxkgJXky3btH4us5puw/3ZROmx9HT1mbA/1Q4GuZX0S2VbVsgafIlrDNwHSiL9uNR nmYiw3SQ2J37csjEfoupjnrljoXQulh1zEyzV7m6UzM1uYZYN2Zzo1KJpCqe+NW3+uzO B5Qx1RFynJ17ZsUU/tExNk5L9S7enXMBW+yG9y+ofC35yOWRA2kDVVTpu49UKtcRFeOm gwV+e8Szq59M4CegRNjsBOsVdGnF6ouHF7zLn3o9i336KWEFkzO9+Ha7AwcqTsDrXjqW roC8OzHb9ao7ZFh0kSRMIyYxXoN3Zxl4DcJrR8bPdYdrpeYbQ8WrKOglUOVfOT7usRGG wrUw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1762287851; x=1762892651; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:x-gm-message-state:from:to:cc:subject:date:message-id :reply-to; bh=JWFCrUDuRDh3+p8jLUD5YC9ff1+YFU9w2wwtrkWL4Dk=; b=U/z2cmkuNU7DxP6XvTk6RhLrgoJXxoos7UpYk9s8ClYT3jo89yIVDKgH0/BWiEiZ18 Qpb9aNoNe+eRg/by/uB/DkIfTTdWu7urMH+Jeu1Tg5dKfpOh+Hul2QT0QVpllMwQayaY hq2WEibv5yJ7Tv5n4Xe5vilG47xBdYaA9eqcrTGD9I/t+oCOLKTuQ0g6zJFhiUxBVuu4 L6Oh64YOjB/g3Se9EuIIOHEqyROMTOVzHwGyzwZOAy5Yb0Aq4X55SbBo3S6VLGVpMqQ6 dGERa1DA3hQgdSAkgW2Cs6QMXhG3TH8CbGNouUQMEWkEChi/vYKoRJp2g90NGQneMlvY w0gg==
X-Forwarded-Encrypted: i=1; AJvYcCUUIh+53fYmOTLQ/GaqSWnwkPXrmpSf1tUoJLnv+zljuQYmSP2M41nrDeCHZE64V91P+N4=@ietf.org
X-Gm-Message-State: AOJu0YxRBr5Rkes4PynhCdmzgHcYT775zwm7dKW+vfmGvsLD5B2oZYd1 GLKNGbaAhXBTazhdCunSh9bzNe/y/lgexKF5NuxjPBD98lWaFWHr5pCzDAr0UfJQqzkUE2Am8u2 kMkAMV1pyHSj87Pd1SXKrbdjp+WpVa1qAxAlk6Vy8e9wT6c6cgSCN
X-Gm-Gg: ASbGncsJ3YpMVAkg3ftoSHqYwr7QxV72T6gH9cftL1UiFRfd92KWllNtAoduyCR6KiD 7h0Hw3AoaLupmxm8NgLE8d3HhfU8VsbJCTNa11G3Ds6bKFBxFwKYdYxcZ1dlWZMEMXrPvvsRCMQ 3jSd1gymGeW5froRMxt1Uknssb4S+LLmwZsWOifeQfPq13l1fIrDKND/6+Odysw/30eesSviBf4 hXoY+wadNMLS4AodHwguvx7nBQZrcvjggmSaTef/5ZrMn9R6U4zUw/LmBT9uBLzf09FL4FZRrjE F4Rp8YGU1yQ87ufsWV4RiW1tuo29gXxQtI0Mh7xHf7gqVTqxQiW3MuargbakCc9d+fzdeNdh2cs U/lueMZ5Q8Ta+4Pjbzl9vmv2oousq
X-Google-Smtp-Source: AGHT+IEZQ866tSmigEUJhlMceFZmhjONXduUiEUPeHex4BbJpLWHuHTQDpUkksGHbO8sLvw/Qe6D+5juAjnr/4HaL6E=
X-Received: by 2002:a05:690e:250f:20b0:63c:e3dc:c2c with SMTP id 956f58d0204a3-63fd34bda08mr623904d50.18.1762287851050; Tue, 04 Nov 2025 12:24:11 -0800 (PST)
MIME-Version: 1.0
References: <CAOgPGoDsX09SEUXr+Tq_m_5bs+erCLagSGMrAVohBRMqOkAtRQ@mail.gmail.com> <CH8PR21MB548480F5EE71FE3B75C9C84E8CC4A@CH8PR21MB5484.namprd21.prod.outlook.com>
In-Reply-To: <CH8PR21MB548480F5EE71FE3B75C9C84E8CC4A@CH8PR21MB5484.namprd21.prod.outlook.com>
From: Eric Rescorla <ekr@rtfm.com>
Date: Tue, 04 Nov 2025 12:23:33 -0800
X-Gm-Features: AWmQ_bk51DyW6Y9R28OMYUzoGBkbtdiDSWhbfeGQUV1vT0w8SjjP3cVWCh-0XME
Message-ID: <CABcZeBMELcGKt=+2V3tD4wzPFjapgVdT+Yi+ErMhgPNMbzkirQ@mail.gmail.com>
To: Andrei Popov <Andrei.Popov=40microsoft.com@dmarc.ietf.org>
Content-Type: multipart/alternative; boundary="0000000000005aa70f0642ca9d2c"
Message-ID-Hash: X4U426JU6AS7GKQVC5WH2RA2RVFOT4CB
X-Message-ID-Hash: X4U426JU6AS7GKQVC5WH2RA2RVFOT4CB
X-MailFrom: ekr@rtfm.com
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-tls.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: "<tls@ietf.org>" <tls@ietf.org>
X-Mailman-Version: 3.3.9rc6
Precedence: list
Subject: [TLS] Re: [EXTERNAL] Working group last call for the deprecation experimental code points in ECDHE-ML-KEM
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls/-VXqX0yWczpODPA8bkBaK1ixxZ8>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Owner: <mailto:tls-owner@ietf.org>
List-Post: <mailto:tls@ietf.org>
List-Subscribe: <mailto:tls-join@ietf.org>
List-Unsubscribe: <mailto:tls-leave@ietf.org>

I was in favor of making it PS before so I'm in favor now, even though this
is kind of a silly reason to have to do it.

-Ekr


On Tue, Nov 4, 2025 at 12:18 PM Andrei Popov <Andrei.Popov=
40microsoft.com@dmarc.ietf.org> wrote:

> I support changing this document to standards track and the proposed
> change.
>
>
>
> Cheers,
>
>
>
> Andrei
>
>
>
> *From:* Joseph Salowey <joe@salowey.net>
> *Sent:* Tuesday, November 4, 2025 2:59 PM
> *To:* <tls@ietf.org> <tls@ietf.org>
> *Subject:* [EXTERNAL] [TLS] Working group last call for the deprecation
> experimental code points in ECDHE-ML-KEM
>
>
>
> Chair review of ECDHE-ML-KEM uncovered the following issue.  The document
> has a section obsoleting the following experimental code points assigned to
> pre-standard versions of ML-KEM (Kyber): X25519Kyber768Draft00 (25497) and
> SecP256r1Kyber768Draft00 (25498).  This requires assigning a 'D' to the
> recommended column which requires standards or IESG action.  At the Monday
> afternoon TLS meeting there was strong consensus that the best and quickest
> way forward  to change the document to standards track and make the
> following change to section 6.4 (Obsoleted Supported Groups):
>
>
>
> Experimental code points for previous versions of this specification were
> added to the TLS registry as X25519Kyber768Draft00 (25497) and
> SecP256r1Kyber768Draft00 (25498). This document obsoletes these entries.
> IANA is instructed to modify the recommended field to 'D' and update the
> reference to this [ this RFC ].  The comment fields for 25497 and 25498 are
> updated to "obsoleted by [ this RFC ]"
>
>
> No other registrations are to be modified by this change.
>
> This is a consensus call for this change only as the last call has
> completed for the rest of the document.. Please respond to this thread
> indicating if you support this action by November 14 2025.
>
>
>
> Thanks,
>
>
>
> Joe, Sean, and Deirdre
> _______________________________________________
> TLS mailing list -- tls@ietf.org
> To unsubscribe send an email to tls-leave@ietf.org
>

v2.35.0 | Report a Bug | By Email | System Status