IETF Logo Mail Archive

[TLS] Re: WG Adoption Call for Post-Quantum Hybrid ECDHE-MLKEM Key Agreement for TLSv1.3

Loganaden Velvindron <loganaden@gmail.com> Thu, 13 March 2025 05:56 UTC

Return-Path: <loganaden@gmail.com>
X-Original-To: tls@mail2.ietf.org
Delivered-To: tls@mail2.ietf.org
Received: from localhost (localhost [127.0.0.1]) by mail2.ietf.org (Postfix) with ESMTP id 134D5AB38F4 for <tls@mail2.ietf.org>; Wed, 12 Mar 2025 22:56:06 -0700 (PDT)
X-Virus-Scanned: amavisd-new at ietf.org
X-Spam-Flag: NO
X-Spam-Score: -2.099
X-Spam-Level:
X-Spam-Status: No, score=-2.099 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: mail2.ietf.org (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail2.ietf.org ([166.84.6.31]) by localhost (mail2.ietf.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id BCiEHtOluCJy for <tls@mail2.ietf.org>; Wed, 12 Mar 2025 22:56:02 -0700 (PDT)
Received: from mail-pj1-x1029.google.com (mail-pj1-x1029.google.com [IPv6:2607:f8b0:4864:20::1029]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by mail2.ietf.org (Postfix) with ESMTPS id 67CCBAB38EB for <tls@ietf.org>; Wed, 12 Mar 2025 22:56:02 -0700 (PDT)
Received: by mail-pj1-x1029.google.com with SMTP id 98e67ed59e1d1-300f92661fcso1035360a91.3 for <tls@ietf.org>; Wed, 12 Mar 2025 22:56:02 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20230601; t=1741845361; x=1742450161; darn=ietf.org; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:from:to:cc:subject:date:message-id:reply-to; bh=UMr0Vyf02ETS3MyEmXOxFxhZ+xYHamtxPvtA+Mo5EgY=; b=EvkrsVlFnR8rFJ0wQkwRV28pvn0Y7M9oZvL7eWPdyg4ABe5pVyoyNJGej5YZgcWRGu /YdYEigkmjc0kMo/qMpEFafqT7gE/r0O+EjVn1YLYH/Xef4tdF57vAg/ZggRlREP6E1r Zk17fnhjDapSwUwcTDxO0RB1zw9tWh9YIPg8bleIf2mPbg82ytyn/MG1aa35SVRZIeOV pjXSdCB2s8G417F3mEF+aB4AGUG9tWqMSffrg/6x246C0rkqfi8X/qV54lB2KHzisyRi V0WBaYWTeJMch6ifPTPEdHZ76w8ERMcQADPc+FZuw/DpBeZWFbNkaUsxC9Wce71yu/Yj vPQw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1741845361; x=1742450161; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:x-gm-message-state:from:to:cc:subject:date:message-id :reply-to; bh=UMr0Vyf02ETS3MyEmXOxFxhZ+xYHamtxPvtA+Mo5EgY=; b=K4X8hFYYBbvcDHf6SGHJKEdC5KJnGxucUU84zZVKZFW4XKy1m7o2IlRGkrujc4z9G9 TDVPUwVbEtU4nkqkrQmAgpMDYKMx93Ag8ylZEVRPYlNwBMm/Puas7HLfecyVYHqJ2oU3 vJNnaxGagLsg9KVHT0ahqEXCKT0/dzvmWY4wcXLIVRVu3V1gx9JkJjFCInffVgjF693Y ciOYWB7vq6Qog6exLW9yDw9ZuoxX17Vx7DK2ukHCRburlQJom3l8lX7YfwkiMgoW651X 8qSHOcaQ0/tb564Feg5kR35h2yP3mwgEvlR+PaXdrpBdDhxy14GwXYt3Ok0yC+sKemhJ 9ruA==
X-Forwarded-Encrypted: i=1; AJvYcCXhdlk/+WFFZV1c7xsHUUbJU2yqUVK5uXZkaMkoUL7yWi2dsK9brbMUZPjhdsYcVXqVU28=@ietf.org
X-Gm-Message-State: AOJu0YyACJ5U2ii0ozRGtIMArkV69ADevt8UbLrlzS6/qW35zN63MJNk Lh+XcRNSRPbihFzgB4x1YqqbDnUTjZiQhG1WdRtZGD5GVIcoj62s40e7vGW/25ogYuNwZSWJGPG NDLPTTvR6HgWJtt/qzVxqR+gLwpc=
X-Gm-Gg: ASbGnctDr+QKZ93UZPzx17vsXOh8+pVSV/anrRpDP/fZo+14RaEjJB3sB4YSWbvika5 iimeRf3Ig1KHHG+bnsvjs+In3EdcnnSz0h+4F5w4YNCuJ5Le7InjZrixRRHpHVUzEY9gajKM3ir YujZvLSZANm+qv60w4LkUCq9JCvUzsfODM7aytdzlFvkTw1d7LLX8ihxgjVQ4=
X-Google-Smtp-Source: AGHT+IFcQvUrTX4+Jv1oNyTbWZ9tNd6cIQ8ciesIcJnIlBDbI0ywkBQQPlwZEGfz1LnbX1FFWBLbOT7xY6TZKGiyMqg=
X-Received: by 2002:a05:6a21:6b0d:b0:1f5:95a7:8159 with SMTP id adf61e73a8af0-1f595a78277mr11540081637.10.1741845361209; Wed, 12 Mar 2025 22:56:01 -0700 (PDT)
MIME-Version: 1.0
References: <68EDF12D-1C97-4823-AFFE-19BF261D7034@sn3rd.com> <8B632BD4-A604-4EE7-BC32-DEE8F7472338@sn3rd.com> <d2be6dc4-c566-4506-b400-1ddeaff73258@cs.tcd.ie>
In-Reply-To: <d2be6dc4-c566-4506-b400-1ddeaff73258@cs.tcd.ie>
From: Loganaden Velvindron <loganaden@gmail.com>
Date: Thu, 13 Mar 2025 09:55:48 +0400
X-Gm-Features: AQ5f1Jo6sjjojPmCYznGzwHO0Rzna7ANoZxOdk8hQEWkp0Ot1rE6vejfsmo6DHQ
Message-ID: <CAOp4FwQSAdbaZB_Az=Z3ZSoOwB+agCE8OwATUSm7vYMBnN3xdw@mail.gmail.com>
To: Stephen Farrell <stephen.farrell@cs.tcd.ie>
Content-Type: text/plain; charset="UTF-8"
Message-ID-Hash: 4GYT7BWUNS5X7EOBUQIOOHBXU65FHQ4U
X-Message-ID-Hash: 4GYT7BWUNS5X7EOBUQIOOHBXU65FHQ4U
X-MailFrom: loganaden@gmail.com
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-tls.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: TLS List <tls@ietf.org>
X-Mailman-Version: 3.3.9rc6
Precedence: list
Subject: [TLS] Re: WG Adoption Call for Post-Quantum Hybrid ECDHE-MLKEM Key Agreement for TLSv1.3
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls/2WmjKlvzdbVbC2E2BmPGGPG29eE>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Owner: <mailto:tls-owner@ietf.org>
List-Post: <mailto:tls@ietf.org>
List-Subscribe: <mailto:tls-join@ietf.org>
List-Unsubscribe: <mailto:tls-leave@ietf.org>

On Sat, 1 Mar 2025 at 00:22, Stephen Farrell <stephen.farrell@cs.tcd.ie> wrote:
>
>
> Hiya,
>
> On 28/02/2025 18:56, Sean Turner wrote:
> > In response to the WG adoption call, Dan Bernstein pointed out some
> > potential IPR (see [0]), but no IPR disclosure has been made in
> > accordance with BCP 79.
>
> While I don't think the lack of an IPR declaration is fatal
> here, I do think it'd be great if that uncertainty could be
> reduced. I think I saw that Russ tried to reach out to one
> of the possible patent holders to ask if they'd be willing
> to make a declaration. I've no idea where that's at, but I'd
> encourage the TLS chairs and SEC ADs to see if they can help
> get that to happen as reducing uncertainty would be good and
> if we can't, then this topic will just keep cropping up and
> Dan is not the only person I've heard express concerns in
> this regard.
>

I agree with Dr Stephen on this one. It would help if we can get
declarations from
patent holders early.

For example, OpenSSH implemented DSA as there was less risk of patents:

"
The second major variety of SSH is the SSH 2 protocol. SSH 2 was
invented to avoid the patent issues regarding RSA (patent issues which
no longer apply, since the patent has expired), to fix the CRC data
integrity problem that SSH1 has, and for a number of other technical
reasons. By requiring only the asymmetric DSA and DH algorithms,
protocol 2 avoids all patents.
"

If there is any risk of a patent, can we look at a backup choice for
ML-KEM in TLS,
especially for implementers who are very patent averse ?

Should I start a new thread ?






> Cheers,
> S.
>
> PS: I do realise we can't force someone to make an IPR
> declaration.
>
> _______________________________________________
> TLS mailing list -- tls@ietf.org
> To unsubscribe send an email to tls-leave@ietf.org

v2.29.0 | Report a Bug | By Email | System Status