IETF Logo Mail Archive

[TLS] Re: Working group last call for the deprecation experimental code points in ECDHE-ML-KEM

Yaroslav Rosomakho <yrosomakho@zscaler.com> Tue, 04 November 2025 21:09 UTC

Return-Path: <yrosomakho@zscaler.com>
X-Original-To: tls@mail2.ietf.org
Delivered-To: tls@mail2.ietf.org
Received: from localhost (localhost [127.0.0.1]) by mail2.ietf.org (Postfix) with ESMTP id 9A08C82ED5A0 for <tls@mail2.ietf.org>; Tue, 4 Nov 2025 13:09:22 -0800 (PST)
X-Virus-Scanned: amavisd-new at ietf.org
X-Spam-Flag: NO
X-Spam-Score: -2.097
X-Spam-Level:
X-Spam-Status: No, score=-2.097 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_NONE=0.001] autolearn=ham autolearn_force=no
Authentication-Results: mail2.ietf.org (amavisd-new); dkim=pass (1024-bit key) header.d=zscaler.com
Received: from mail2.ietf.org ([166.84.6.31]) by localhost (mail2.ietf.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id lzQZGkrEM9KI for <tls@mail2.ietf.org>; Tue, 4 Nov 2025 13:09:22 -0800 (PST)
Received: from mail-lf1-x133.google.com (mail-lf1-x133.google.com [IPv6:2a00:1450:4864:20::133]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by mail2.ietf.org (Postfix) with ESMTPS id 43F1582ED599 for <tls@ietf.org>; Tue, 4 Nov 2025 13:09:22 -0800 (PST)
Received: by mail-lf1-x133.google.com with SMTP id 2adb3069b0e04-5941567218eso6103740e87.1 for <tls@ietf.org>; Tue, 04 Nov 2025 13:09:22 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=zscaler.com; s=google; t=1762290554; x=1762895354; darn=ietf.org; h=to:subject:message-id:date:from:in-reply-to:references:mime-version :from:to:cc:subject:date:message-id:reply-to; bh=lThRU+UaFlLf+xJUA5Y3GDthgDREbXnSdVQFwoyhYXU=; b=cR/p1SlbEhA4eObOPe9cMwVdP+Rao56NGDdPF61WZiv86hzxmUYq/Vrhck4UWf2WbB SxI+KmrjLM4SSxN5P4L1qahyAmfrQDDVohAXQgN+gYtfqyV34XyfVleR+XeHTH8iR9IP 7PK4K4XeYxnrvH4CguK0t62l4+OBuOiOns1Uc=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1762290554; x=1762895354; h=to:subject:message-id:date:from:in-reply-to:references:mime-version :x-gm-message-state:from:to:cc:subject:date:message-id:reply-to; bh=lThRU+UaFlLf+xJUA5Y3GDthgDREbXnSdVQFwoyhYXU=; b=J9Pw+lkt/Ikg1KxzjKyHw3ZTBhbVUSXUAgh8/KSGYGb1PKo+2nAi7hoxT4o03aVkmj 8uqz+mFIQIB/5CVSM0Q9XjiRd1CB01XbvVkc1jWqriOJUWT6MFYuhhxF6YakupUO2oD5 3pgg6qXdZF9k8kCZGk75AZlo86c71t5UmxH3Zkvr7vFiZTnZ43cpNdTrCsgZjrldE6YK OkG0uID0UvEgk7TTUHTuFCy3mgj4xSEXsSx6vLLQJYpXVCvIGAoMkULkrEm5D57uGkXq AuBZs087a03DAXzALhcFRakC1vGEx9nSEXmBhsq0utxKi2leIXL0mE/KPK+UQQl7KUTx ihRg==
X-Gm-Message-State: AOJu0YxfqQdLPzUXweK9Wjdf/b38n8EcU4omJg66wPjVKVcIoF3m6kTs PWQPfD8vBAQU6FyJMiO/xTQZmyh6jzLinbfnlJHU8ibYzqg9/ttstlCYEG+0vxKp49Y98qJ+lEH uqIRd3aS59/Fj0tJP9O0uL2YR2BY1REbKpyWlFoyWVSqIzCFJ/jP7YwisifeL4sFdHuwOz2554V hExDTlLJcv/Z79V37YTuravrbY4u4=
X-Gm-Gg: ASbGnctJkFfyPqKowdMO7GzA4nuI0dlY8R+EYsral1CaOf3MnMf2eGnPUymcuxd+Vx4 wCvdPIRb1G2a9oNrxUjNnR1cT8noPlBf5+xeYhc4ZrfixmzN6CABgCGi6lcANXX2G6qbsKvCu34 87v9BpqOfO5wblIMvwkGVh13NlUIwnmPPxRB/f7HpPaE8z+4+sjzxskxGUejnvBfAuHnd3ei+3B xxO7QFIqZ8c0VWekgV/4NaA2K1lmQxlIK89Off7ekYMDUZDJ/Bisj3YKt0/ZTFHGsQRheRq94/Q XRk4NN9vaiWuSBpBHiK3OzQJk1o=
X-Google-Smtp-Source: AGHT+IF+XrnQZENfQBQRlRJqANtNqffi6XEx4NCgr8Avqkg4d9pnR/Lo+bP9cV48VOX76SZCTrPZNHhB35AM7q0kFZM=
X-Received: by 2002:a05:6512:3192:b0:594:3156:da23 with SMTP id 2adb3069b0e04-5943d804553mr160889e87.54.1762290554184; Tue, 04 Nov 2025 13:09:14 -0800 (PST)
MIME-Version: 1.0
References: <CAOgPGoDsX09SEUXr+Tq_m_5bs+erCLagSGMrAVohBRMqOkAtRQ@mail.gmail.com>
In-Reply-To: <CAOgPGoDsX09SEUXr+Tq_m_5bs+erCLagSGMrAVohBRMqOkAtRQ@mail.gmail.com>
From: Yaroslav Rosomakho <yrosomakho@zscaler.com>
Date: Tue, 04 Nov 2025 16:09:01 -0500
X-Gm-Features: AWmQ_blIK2_2hijb0iHC-bgdeWqB1wOasWaGFZznfDuO_65xMhz99Zlr63zAs_s
Message-ID: <CAMtubr2GbcTMYso_JJo74fYiDdAM+Kd8x-QD+DCRAXwrZbD_bA@mail.gmail.com>
To: "<tls@ietf.org>" <tls@ietf.org>
Content-Type: multipart/alternative; boundary="0000000000007939440642cb3e3f"
Message-ID-Hash: 26TIOMIMRVBJMXGTDV6VTXXMM7XXDLOH
X-Message-ID-Hash: 26TIOMIMRVBJMXGTDV6VTXXMM7XXDLOH
X-MailFrom: yrosomakho@zscaler.com
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-tls.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
X-Mailman-Version: 3.3.9rc6
Precedence: list
Subject: [TLS] Re: Working group last call for the deprecation experimental code points in ECDHE-ML-KEM
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls/0WCNPY5YnC0Zvy9yEGjI_Cl80qQ>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Owner: <mailto:tls-owner@ietf.org>
List-Post: <mailto:tls@ietf.org>
List-Subscribe: <mailto:tls-join@ietf.org>
List-Unsubscribe: <mailto:tls-leave@ietf.org>

I support this action.

-yaroslav

On Tue, Nov 4, 2025 at 3:00 PM Joseph Salowey <joe@salowey.net> wrote:

> Chair review of ECDHE-ML-KEM uncovered the following issue.  The document
> has a section obsoleting the following experimental code points assigned to
> pre-standard versions of ML-KEM (Kyber): X25519Kyber768Draft00 (25497) and
> SecP256r1Kyber768Draft00 (25498).  This requires assigning a 'D' to the
> recommended column which requires standards or IESG action.  At the Monday
> afternoon TLS meeting there was strong consensus that the best and quickest
> way forward  to change the document to standards track and make the
> following change to section 6.4 (Obsoleted Supported Groups):
>
> Experimental code points for previous versions of this specification were
>> added to the TLS registry as X25519Kyber768Draft00 (25497) and
>> SecP256r1Kyber768Draft00 (25498). This document obsoletes these entries.
>> IANA is instructed to modify the recommended field to 'D' and update the
>> reference to this [ this RFC ].  The comment fields for 25497 and 25498 are
>> updated to "obsoleted by [ this RFC ]"
>
>
> No other registrations are to be modified by this change.
>
> This is a consensus call for this change only as the last call has
> completed for the rest of the document.. Please respond to this thread
> indicating if you support this action by November 14 2025.
>
> Thanks,
>
> Joe, Sean, and Deirdre
> _______________________________________________
> TLS mailing list -- tls@ietf.org
> To unsubscribe send an email to tls-leave@ietf.org
>

-- 


This communication (including any attachments) is intended for the sole 
use of the intended recipient and may contain confidential, non-public, 
and/or privileged material. Use, distribution, or reproduction of this 
communication by unintended recipients is not authorized. If you received 
this communication in error, please immediately notify the sender and then 
delete all copies of this communication from your system.

v2.35.0 | Report a Bug | By Email | System Status