[TLS]Re: [EXTERNAL] Re: Working Group Last Call for "Hybrid key exchange in TLS 1.3"
"Salz, Rich" <rsalz@akamai.com> Wed, 14 August 2024 14:53 UTC
Return-Path: <rsalz@akamai.com>
X-Original-To: tls@ietfa.amsl.com
Delivered-To: tls@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7689CC1840D6 for <tls@ietfa.amsl.com>; Wed, 14 Aug 2024 07:53:18 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.251
X-Spam-Level:
X-Spam-Status: No, score=-2.251 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.148, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_FONT_LOW_CONTRAST=0.001, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_NONE=0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=akamai.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id iiKqp-IKJcBC for <tls@ietfa.amsl.com>; Wed, 14 Aug 2024 07:53:14 -0700 (PDT)
Received: from mx0a-00190b01.pphosted.com (mx0a-00190b01.pphosted.com [IPv6:2620:100:9001:583::1]) by ietfa.amsl.com (Postfix) with ESMTP id CF6F3C180B41 for <tls@ietf.org>; Wed, 14 Aug 2024 07:53:14 -0700 (PDT)
Received: from pps.filterd (m0050095.ppops.net [127.0.0.1]) by m0050095.ppops.net-00190b01. (8.18.1.2/8.18.1.2) with ESMTP id 47DGAkaX009345; Wed, 14 Aug 2024 15:07:32 +0100
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=akamai.com; h=cc :content-type:date:from:in-reply-to:message-id:mime-version :references:subject:to; s=jan2016.eng; bh=bCpI/oh1pEkFxaBJl+d4tR JofhHOTngiqXHFDk/jHL8=; b=RRB57AlFAVC0ZI17ZNCTuiFEj3wAvgGMEvsUSG 5Mu4obBhOBSH9rpFIWkiZEvLmal1OMn79erHltuatg8ePjh2c4E7acFWMLgIKbn5 OfWdI6OXQdeHGP8Wpm5oZo6+uNXkhpv+TsIK53DFAVDm3n6h6VJDAEb1VfEyAVJZ 9BNuVL4l7y196euar5pIEAuU38DqxFJSDVGKPnVay6dnX6y4jGKNKypePrZWLOQ1 jJWVR524ZnfPAtWzCIoHvdpEyaKhQbQ5I3pS+iMSuHDwy0nIDnYcEqJf1t+Q1vLv v1cnXcdjO4SHlzwnWkUSLT5/59kJmQVjmJ6Vwq0tgmtudEoA==
Received: from prod-mail-ppoint6 (prod-mail-ppoint6.akamai.com [184.51.33.61] (may be forged)) by m0050095.ppops.net-00190b01. (PPS) with ESMTPS id 40yrku0eew-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Wed, 14 Aug 2024 15:07:31 +0100 (BST)
Received: from pps.filterd (prod-mail-ppoint6.akamai.com [127.0.0.1]) by prod-mail-ppoint6.akamai.com (8.17.1.19/8.17.1.19) with ESMTP id 47EDE5kV011639; Wed, 14 Aug 2024 10:07:30 -0400
Received: from email.msg.corp.akamai.com ([172.27.50.207]) by prod-mail-ppoint6.akamai.com (PPS) with ESMTPS id 40x3hyeeea-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Wed, 14 Aug 2024 10:07:30 -0400
Received: from ustx2ex-dag4mb4.msg.corp.akamai.com (172.27.50.203) by ustx2ex-dag4mb8.msg.corp.akamai.com (172.27.50.207) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.2.1544.11; Wed, 14 Aug 2024 07:07:29 -0700
Received: from ustx2ex-dag4mb4.msg.corp.akamai.com ([172.27.50.203]) by ustx2ex-dag4mb4.msg.corp.akamai.com ([172.27.50.203]) with mapi id 15.02.1544.011; Wed, 14 Aug 2024 07:07:29 -0700
From: "Salz, Rich" <rsalz@akamai.com>
To: Andrei Popov <Andrei.Popov=40microsoft.com@dmarc.ietf.org>, Thom Wiggers <thom@thomwiggers.nl>, Deirdre Connolly <durumcrustulum@gmail.com>
Thread-Topic: [TLS]Re: [EXTERNAL] Re: Working Group Last Call for "Hybrid key exchange in TLS 1.3"
Thread-Index: AQHa7ckD0xz4pqEjI0uo2tGmGQFI0rIm/U8A
Date: Wed, 14 Aug 2024 14:07:29 +0000
Message-ID: <C815F645-D731-4836-A9F3-7387C2094C93@akamai.com>
References: <CAFR824wCMcyF1szc76P+4i8LKv2-d1ciHWRMFFmZ8hpi=1PHtA@mail.gmail.com> <9F2975D8-A5C8-4254-AB78-04FD9CBB8CF9@thomwiggers.nl> <DS7PR21MB3716066016F6D56FE3CD56328C862@DS7PR21MB3716.namprd21.prod.outlook.com>
In-Reply-To: <DS7PR21MB3716066016F6D56FE3CD56328C862@DS7PR21MB3716.namprd21.prod.outlook.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/16.87.24072822
msip_labels: MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_ActionId=8719c030-ab03-43d7-8d51-5bf35ab5b088; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_ContentBits=0; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Enabled=true; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Method=Standard; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Name=Internal; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_SetDate=2024-08-13T21:35:19Z; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_SiteId=72f988bf-86f1-41af-91ab-2d7cd011db47;
x-originating-ip: [172.27.118.139]
Content-Type: multipart/alternative; boundary="_000_C815F645D7314836A9F37387C2094C93akamaicom_"
MIME-Version: 1.0
X-Proofpoint-Virus-Version: vendor=baseguard engine=ICAP:2.0.293,Aquarius:18.0.1039,Hydra:6.0.680,FMLib:17.12.28.16 definitions=2024-08-14_10,2024-08-13_02,2024-05-17_01
X-Proofpoint-Spam-Details: rule=notspam policy=default score=0 phishscore=0 malwarescore=0 mlxlogscore=821 adultscore=0 spamscore=0 mlxscore=0 bulkscore=0 suspectscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.12.0-2407110000 definitions=main-2408140099
X-Proofpoint-GUID: vCVo-Xih0PyfjslXpivqTrNTFxVDowWd
X-Proofpoint-ORIG-GUID: vCVo-Xih0PyfjslXpivqTrNTFxVDowWd
X-Proofpoint-Virus-Version: vendor=baseguard engine=ICAP:2.0.293,Aquarius:18.0.1039,Hydra:6.0.680,FMLib:17.12.28.16 definitions=2024-08-14_10,2024-08-13_02,2024-05-17_01
X-Proofpoint-Spam-Details: rule=notspam policy=default score=0 mlxscore=0 mlxlogscore=651 suspectscore=0 phishscore=0 malwarescore=0 impostorscore=0 lowpriorityscore=0 bulkscore=0 adultscore=0 clxscore=1011 spamscore=0 priorityscore=1501 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.19.0-2407110000 definitions=main-2408140099
Message-ID-Hash: 6XFTTP4AXJCZ7G6EPWXE6335RSG3L5HE
X-Message-ID-Hash: 6XFTTP4AXJCZ7G6EPWXE6335RSG3L5HE
X-MailFrom: rsalz@akamai.com
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-tls.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: "<tls@ietf.org>" <tls@ietf.org>
X-Mailman-Version: 3.3.9rc4
Precedence: list
Subject: [TLS]Re: [EXTERNAL] Re: Working Group Last Call for "Hybrid key exchange in TLS 1.3"
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls/35tZ1uygd9eFTRl_3Ynb6LNkqDM>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Owner: <mailto:tls-owner@ietf.org>
List-Post: <mailto:tls@ietf.org>
List-Subscribe: <mailto:tls-join@ietf.org>
List-Unsubscribe: <mailto:tls-leave@ietf.org>
ZjQcmQRYFpfptBannerEnd I think it would make sense to get new code points for hybrids based on the final ML-KEM spec, so that implementers don’t need to use pre-standard Kyber. Has anyone read closely to see if the kybrid/kyber draft would need to change, other than the name? If not, then we can just change the name in the registry by posting an updated draft. If there are changes, then we need a new codepoint, also just by posting an updated draft.
- [TLS]Working Group Last Call for "Hybrid key exch… Deirdre Connolly
- [TLS]Re: Working Group Last Call for "Hybrid key … Thom Wiggers
- [TLS]Re: [EXTERNAL] Re: Working Group Last Call f… Andrei Popov
- [TLS]Re: Working Group Last Call for "Hybrid key … Douglas Stebila
- [TLS]Re: [EXTERNAL] Working Group Last Call for "… Douglas Stebila
- [TLS]Re: [EXTERNAL] Working Group Last Call for "… Kris Kwiatkowski
- [TLS]Re: [EXTERNAL] Re: Working Group Last Call f… Deirdre Connolly
- [TLS]Re: [EXTERNAL] Re: Working Group Last Call f… Salz, Rich
- [TLS] Re: [TLS]Working Group Last Call for "Hybri… Stephen Farrell
- [TLS] Re: [TLS]Working Group Last Call for "Hybri… Douglas Stebila
- [TLS] Re: [TLS]Working Group Last Call for "Hybri… Eric Rescorla
- [TLS] Re: [TLS]Working Group Last Call for "Hybri… Stephen Farrell
- [TLS] Re: [TLS]Working Group Last Call for "Hybri… Martin Thomson