IETF Logo Mail Archive

[TLS] Re: ML-KEM IANA and draft-connolly-tls-mlkem-key-agreement codepoint and inconsistencies

Daniel Van Geest <daniel.vangeest@cryptonext-security.com> Thu, 06 March 2025 14:42 UTC

Return-Path: <daniel.vangeest@cryptonext-security.com>
X-Original-To: tls@mail2.ietf.org
Delivered-To: tls@mail2.ietf.org
Received: from localhost (localhost [127.0.0.1]) by mail2.ietf.org (Postfix) with ESMTP id 975628436F7 for <tls@mail2.ietf.org>; Thu, 6 Mar 2025 06:42:21 -0800 (PST)
X-Virus-Scanned: amavisd-new at ietf.org
X-Spam-Flag: NO
X-Spam-Score: -2.096
X-Spam-Level:
X-Spam-Status: No, score=-2.096 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_BLOCKED=0.001, RCVD_IN_MSPIKE_H2=0.001, RCVD_IN_VALIDITY_RPBL_BLOCKED=0.001, RCVD_IN_VALIDITY_SAFE_BLOCKED=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: mail2.ietf.org (amavisd-new); dkim=pass (2048-bit key) header.d=cryptonext-security.com
Received: from mail2.ietf.org ([166.84.6.31]) by localhost (mail2.ietf.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id t2bxdpEbz77i for <tls@mail2.ietf.org>; Thu, 6 Mar 2025 06:42:20 -0800 (PST)
Received: from PAUP264CU001.outbound.protection.outlook.com (mail-francecentralazon11021113.outbound.protection.outlook.com [40.107.160.113]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange ECDHE (P-384) server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by mail2.ietf.org (Postfix) with ESMTPS id 3C7EF8436D4 for <tls@ietf.org>; Thu, 6 Mar 2025 06:42:20 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector10001; d=microsoft.com; cv=none; b=JF9uSd2YAn9iwjwAFEwZB37cBctiRcprgQjiWV7pPd+npsPZeqmtrSJl8QMCm2fs/UkaqC/gjT3cUTa2MdCfaRVNRvS5o1uaEWQWFKFAB6ko/SXgnDr0c1ve/5vqFZ4RI5aFgJdktUBcIIu32VuoTkWnhz/4MlhPmYq5CqNdjMGMCpU4kuVw4HuGlw96m1usMmnZRZdJHg3SoNiJnSp6RdrCxZSBFgUQuxOYbKtxnJYctz9Y6oVNu1euC5Zh4lDWKpStBV9t0G+jsEoRjg+1NsYajOfoKgj8vngIR56JA2vALHezZTGTsSsqsaecGmUZoL8xR7jt1GB9XR+p41HJlw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector10001; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=aCBCuM9k6O95YBPPlQk0tu2vvOH1xwhavoRhY7CVEfk=; b=KiOwUEuCILKC3dQdpuFcz4cQqhnE9ZyfvAHznpeIQGsFVaV2x8VuSpBLYlDM6CH2E0n3l+JUfqiwJD6t5DDpDgY1YI4m5vWoEklTDdSXz/dGv03aoeLjQ+ZBngaQRZBznsb6IoHurcofg9CEo1PT2hibKBz/eRC4fWaUzOUGc1DTsNhRDnfsI5bs+byN8icMSCi4g5+O8lB3e6doLc/P/Cghv1O90aRPAdM5efYwU9Xmvkx60zSOxkVaZBG9CmK/XGDY7vY05HDP1FcwHe/RYRsGL3vAykgI+3545cADwwM9xEQRwnbG+zdd35FmUGgFDjiasmEUSfNWLvHQiHtT3g==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cryptonext-security.com; dmarc=pass action=none header.from=cryptonext-security.com; dkim=pass header.d=cryptonext-security.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cryptonext-security.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=aCBCuM9k6O95YBPPlQk0tu2vvOH1xwhavoRhY7CVEfk=; b=Lo+1+Dr/8xVzh5LQ8M/7O3fGagLSsiVia9N0MuFpUsjQupx+fvRmy5vf/5GksDcBbZJf5GyE05rje/C2zW4KB3IrIIsGMam1GYj9oNd26fK9nnZvwicPGJQfInPKqXO2HxTWA0ehhleoljVHU8vN8dndUOL7esGLqyChzyDi933Fp9r8xXMHepQSIKOIQmatg7U+LAiwrabUx8is6oQVLG+lztJuY2WRJdHkv2YprlF+5Y0IN9SKYF73MRJtN3qg30eoCvYNdJRE2Yv0D4ud/gutgGjWj1+hGpEloA4/zXHjDtC3Kit9Rkqkkl2z+Dx4NTLxY5EdYe02IVvugSA62g==
Received: from MR2P264MB0484.FRAP264.PROD.OUTLOOK.COM (2603:10a6:500:7::11) by PR0P264MB2389.FRAP264.PROD.OUTLOOK.COM (2603:10a6:102:1e0::15) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.8511.19; Thu, 6 Mar 2025 14:42:17 +0000
Received: from MR2P264MB0484.FRAP264.PROD.OUTLOOK.COM ([fe80::ba77:3351:6b26:d845]) by MR2P264MB0484.FRAP264.PROD.OUTLOOK.COM ([fe80::ba77:3351:6b26:d845%6]) with mapi id 15.20.8511.017; Thu, 6 Mar 2025 14:42:17 +0000
From: Daniel Van Geest <daniel.vangeest@cryptonext-security.com>
To: "tls@ietf.org" <tls@ietf.org>
Thread-Topic: [TLS] Re: ML-KEM IANA and draft-connolly-tls-mlkem-key-agreement codepoint and inconsistencies
Thread-Index: AQHbjor+/jYCAw82h0K4skyZ/Mhgm7NmE7EAgAAbI4A=
Date: Thu, 06 Mar 2025 14:42:17 +0000
Message-ID: <13df40ee-8907-4088-9183-23bfce1f015b@cryptonext-security.com>
References: <ecbe460a-578e-4c2b-a58b-adecbe63abdf@cryptonext-security.com> <Z8mdhmuunvsHEhkZ@chardros.imrryr.org>
In-Reply-To: <Z8mdhmuunvsHEhkZ@chardros.imrryr.org>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=cryptonext-security.com;
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: MR2P264MB0484:EE_|PR0P264MB2389:EE_
x-ms-office365-filtering-correlation-id: 17097f66-5cbf-447e-0490-08dd5cbd17f1
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;ARA:13230040|366016|1800799024|376014|38070700018|8096899003;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255;CTRY:;LANG:en;SCL:1;SRV:;IPV:NLI;SFV:NSPM;H:MR2P264MB0484.FRAP264.PROD.OUTLOOK.COM;PTR:;CAT:NONE;SFS:(13230040)(366016)(1800799024)(376014)(38070700018)(8096899003);DIR:OUT;SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: multipart/alternative; boundary="_000_13df40ee89074088918323bfce1f015bcryptonextsecuritycom_"
MIME-Version: 1.0
X-OriginatorOrg: cryptonext-security.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: MR2P264MB0484.FRAP264.PROD.OUTLOOK.COM
X-MS-Exchange-CrossTenant-Network-Message-Id: 17097f66-5cbf-447e-0490-08dd5cbd17f1
X-MS-Exchange-CrossTenant-originalarrivaltime: 06 Mar 2025 14:42:17.6418 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: da4a2df1-4b1b-489d-a7f4-224b58fd4200
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: 5iLlR4wutX65In1qg1XpfwigLT70PFlzb7PCaKha+NFChUjw5RwVIis/UgTpVuvsQvILLp69dvHPHM8iEhUqkSrOMqNjjqQ0SvpxlIC3D/UNzS0IUnFGnynPxIu8HFPt
X-MS-Exchange-Transport-CrossTenantHeadersStamped: PR0P264MB2389
Message-ID-Hash: UEMIK2GAJ3K2BSSPGLXGLSBTZQOC3LDM
X-Message-ID-Hash: UEMIK2GAJ3K2BSSPGLXGLSBTZQOC3LDM
X-MailFrom: daniel.vangeest@cryptonext-security.com
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-tls.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
X-Mailman-Version: 3.3.9rc6
Precedence: list
Subject: [TLS] Re: ML-KEM IANA and draft-connolly-tls-mlkem-key-agreement codepoint and inconsistencies
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls/-bAKK9OjHW2EYktXp9DE8yB0ejk>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Owner: <mailto:tls-owner@ietf.org>
List-Post: <mailto:tls@ietf.org>
List-Subscribe: <mailto:tls-join@ietf.org>
List-Unsubscribe: <mailto:tls-leave@ietf.org>

On 2025-03-06 1:05 p.m., Viktor Dukhovni wrote:

On Thu, Mar 06, 2025 at 11:29:16AM +0000, Daniel Van Geest wrote:



IANA went with the uppercase naming, while OpenSSL went with lower.



That is not the case, OpenSSL uses the IANA names, but the matching is
now case-insensitive.  Perhaps you were testing with the oqsprovider?

    $ openssl list -tls1_3 -tls-groups | tr ':' '\n' | tail -n6
    MLKEM512
    MLKEM768
    MLKEM1024
    SecP256r1MLKEM768
    X25519MLKEM768
    SecP384r1MLKEM1024


Apologies, I was scanning the code and came across the TLS_SIGALG_ENTRY for ML-DSA, which is lowercase, and too quickly added the case concern to my reference concern for ML-KEM.




Lowercase is generally more consistent with the other IANA codepoints,
with some exceptions including the recent hybrids. For what it's
worth, the slightly different bikeshed shade that I prefer is
lowercase.



We'll likely shortly change the group name lookup code to be
case-insensitive, just in case, and a convenience for the users.

v2.30.2 | Report a Bug | By Email | System Status