IETF Logo Mail Archive

[TLS] Re: NIST Requests Comments on SP 800-52 Rev. 2 | Selection, Configuration, and Use of TLS Implementations.

John Mattsson <john.mattsson@ericsson.com> Mon, 01 June 2026 22:34 UTC

Return-Path: <john.mattsson@ericsson.com>
X-Original-To: tls@mail2.ietf.org
Delivered-To: tls@mail2.ietf.org
Received: from localhost (localhost [127.0.0.1]) by mail2.ietf.org (Postfix) with ESMTP id 3D9E8F8EDA9D for <tls@mail2.ietf.org>; Mon, 1 Jun 2026 15:34:24 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=ietf.org; s=ietf1; t=1780353264; bh=gBqjy3ZCVcSY9IW7ThFg8ffLmqT+fiStsThNbjXOzt4=; h=From:To:Subject:Date; b=CzS8AN3wmWFakdpRs1N4TLFCLVfUHnVPO8wrKtVTczqt7xJOT/Z9fMHbaBqFMqxJ5 dv2YjyzJNMK0uVTWU+tosyeqbh7aQErQ6bqoeKtjc1QYIo1uf/GaFVqiO9Sx+akP5f uhAIEJs2mt9AXh2v1nho0UX6IuJk0rGGcaohgHwg=
X-Virus-Scanned: amavisd-new at ietf.org
X-Spam-Flag: NO
X-Spam-Score: -2.096
X-Spam-Level:
X-Spam-Status: No, score=-2.096 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_MSPIKE_H2=0.001, RCVD_IN_VALIDITY_CERTIFIED_BLOCKED=0.001, RCVD_IN_VALIDITY_RPBL_BLOCKED=0.001, SPF_NONE=0.001] autolearn=ham autolearn_force=no
Authentication-Results: mail2.ietf.org (amavisd-new); dkim=pass (2048-bit key) header.d=ericsson.com
Received: from mail2.ietf.org ([166.84.6.31]) by localhost (mail2.ietf.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 9d6KaicW9c7F for <tls@mail2.ietf.org>; Mon, 1 Jun 2026 15:34:23 -0700 (PDT)
Received: from DB3PR0202CU003.outbound.protection.outlook.com (mail-northeuropeazon11010016.outbound.protection.outlook.com [52.101.84.16]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange ECDHE (P-384) server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by mail2.ietf.org (Postfix) with ESMTPS id 488B2F8EDA94 for <tls@ietf.org>; Mon, 1 Jun 2026 15:34:23 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector10001; d=microsoft.com; cv=none; b=HABXZsUhA72jJ1+T9n2uTl4wmxEOlK3oqrkz4HGhhPpKF25bD/eiSBefZhRvGMSJJXASU4e63bR0+KNSgBmt6620+dlA8UKX6Ir+cgUsaOdseuGEeB0taSkDI/hUAPP18/bOY5g0Fx5JYSrlMxyVzuDnai+0G1PqencJlASXv05aGsYetcwEubfyj4abXNTEREvcNDvUUF/jA6/sYtaN7UPxey7TzgoV9zSh62UaOXXmSFI6Ctk9IGAcWJPIJ5U7KWklIgctzVf3ay+AzX4dX60VPoCXbocrxOjbLOZCDGvlaNNsgkjkH3RrZ/u/PuI9y7hlVGuYBEzyRSHaK2Sf4w==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector10001; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=gBqjy3ZCVcSY9IW7ThFg8ffLmqT+fiStsThNbjXOzt4=; b=u5mHTghenoSw1AHFl+tunzZxtJfVhs2yl6bYcs7v3REWapYGzobeTzpALhVH1SFPB+fKuv4CsjZu01jc1wFzPg1w4LXKf5hUHxVS0gBdfhrhtDrw3cqe9TdejnBBlWG96nC8J8sDSncjBI3U+mf7f7afutZpzZIaap/VOo0yOZdFDQ4T+/7ZEivPVYoX0PBuf0K8u0USj+d3YGV3x5pQ4GQjz6Rxy1lnJLU0GnlSgsLrt6/SaEB0dNt41dysGfW8eo2zbKo/VjR1fT6ng/8972U4xhss2sFRmzHjUfGEDiXwdjm9wls9xqc3ZoWDQVx3mOKc5LmVJlZcfK6DaGhl2A==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=ericsson.com; dmarc=pass action=none header.from=ericsson.com; dkim=pass header.d=ericsson.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ericsson.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=gBqjy3ZCVcSY9IW7ThFg8ffLmqT+fiStsThNbjXOzt4=; b=BULRh9U0HGiUX73nuNXIznnao80iVwaBfcX0EPhtu2kcDzKp+4FPOyCnZ5m3dB/UuF2Ref4+gvab9SLJhyCGG9SuATu143a91PPs8Zs2QTaM5gzdBsg7Tx7anovaaie8DiHkTEU2NmegUA3Lunel4RdHUu9tJEd+qAGGQr0vmlolb1gjO1SwBYJVUMjavSLL8MLmTO4QylAfiCuoMk86TDJcB89T8vjhr17psoYMdgeH4uixW5XLEDxnQMLad5qugnI3yn6Ir7EKQafjXXOVTONJ2EcDuHgwUeOPxRxO0RJR+TWl8S5yqRrV1/OsA2Tt+wxYMaL0IoJ6wj8/0WGGYA==
Received: from AS4PR07MB8825.eurprd07.prod.outlook.com (2603:10a6:20b:4f3::15) by AS1PR07MB9596.eurprd07.prod.outlook.com (2603:10a6:20b:47c::18) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.21.71.16; Mon, 1 Jun 2026 22:34:15 +0000
Received: from AS4PR07MB8825.eurprd07.prod.outlook.com ([fe80::11a4:5f37:fa92:f174]) by AS4PR07MB8825.eurprd07.prod.outlook.com ([fe80::11a4:5f37:fa92:f174%6]) with mapi id 15.21.0071.015; Mon, 1 Jun 2026 22:34:15 +0000
From: John Mattsson <john.mattsson@ericsson.com>
To: "Dang, Quynh H. (Fed)" <quynh.dang@nist.gov>, TLS List <tls@ietf.org>
Thread-Topic: [TLS] NIST Requests Comments on SP 800-52 Rev. 2 | Selection, Configuration, and Use of TLS Implementations.
Thread-Index: AQHc8hTgN6az95OSdkqdbZTF/fcM7Q==
Date: Mon, 01 Jun 2026 22:34:15 +0000
Message-ID: <AS4PR07MB88258C6F47B326A1C97D6F7689152@AS4PR07MB8825.eurprd07.prod.outlook.com>
Accept-Language: en-US
Content-Language: en-GB
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-ms-reactions: allow
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=ericsson.com;
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: AS4PR07MB8825:EE_|AS1PR07MB9596:EE_
x-ms-office365-filtering-correlation-id: c3c914a8-1b9a-49bd-27cd-08dec02de95f
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;ARA:13230040|366016|376014|1800799024|18002099003|6133799003|11063799006|56012099006|8096899003|38070700021|13003099007;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255;CTRY:;LANG:en;SCL:1;SRV:;IPV:NLI;SFV:NSPM;H:AS4PR07MB8825.eurprd07.prod.outlook.com;PTR:;CAT:NONE;SFS:(13230040)(366016)(376014)(1800799024)(18002099003)(6133799003)(11063799006)(56012099006)(8096899003)(38070700021)(13003099007);DIR:OUT;SFP:1101;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: multipart/alternative; boundary="_000_AS4PR07MB88258C6F47B326A1C97D6F7689152AS4PR07MB8825eurp_"
MIME-Version: 1.0
X-OriginatorOrg: ericsson.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: AS4PR07MB8825.eurprd07.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: c3c914a8-1b9a-49bd-27cd-08dec02de95f
X-MS-Exchange-CrossTenant-originalarrivaltime: 01 Jun 2026 22:34:15.4483 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 92e84ceb-fbfd-47ab-be52-080c6b87953f
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: YxSRHRMHIzAM1kHoopQUwB4NSkSKmgAwAEZbhnxPJHcLI3mQ/YYnyy97dAafEz5dJNNgBfql5eqyO8xlNCG127LjZCCfxUISsi+Ngn6PYaU=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: AS1PR07MB9596
Message-ID-Hash: 6OK3YJSEAMEE5QUF6Z4ECYPCDNSFV344
X-Message-ID-Hash: 6OK3YJSEAMEE5QUF6Z4ECYPCDNSFV344
X-MailFrom: john.mattsson@ericsson.com
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-tls.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
X-Mailman-Version: 3.3.9rc6
Precedence: list
Subject: [TLS] Re: NIST Requests Comments on SP 800-52 Rev. 2 | Selection, Configuration, and Use of TLS Implementations.
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls/A4RVaBwv75KrNtxJacdbGNc-V-Q>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Owner: <mailto:tls-owner@ietf.org>
List-Post: <mailto:tls@ietf.org>
List-Subscribe: <mailto:tls-join@ietf.org>
List-Unsubscribe: <mailto:tls-leave@ietf.org>

Thanks for the notice, Quynh.

We provided the following high-level comments.
https://emanjon.github.io/NIST-comments/2026%20SP%20800-52.pdf

It is difficult to provide detailed feedback because the document is significantly outdated and remains heavily focused on TLS 1.0, TLS 1.1, and TLS 1.2. We recommend that the next revision be refocused on TLS 1.3 and that all guidance specific to TLS 1.2 be removed.

Cheers,
John Preuß Mattsson

From: Dang, Quynh H. (Fed) <quynh.dang@nist.gov>
Date: Thursday, 7 May 2026 at 19:49
To: TLS List <tls@ietf.org>
Subject: [TLS] NIST Requests Comments on SP 800-52 Rev. 2 | Selection, Configuration, and Use of TLS Implementations.

Hi TLS members,
We have posted a request of comments on SP 800-52 Rev. 2 | Selection, Configuration, and Use of TLS Implementations at https://csrc.nist.gov/news/2026/tls-comment-on-sp-800-52-rev-2 .
The comment period is open through July 10th, 2026.
Regards,
Quynh Dang.

v2.46.0 | Report a Bug | By Email | System Status