IETF Logo Mail Archive

[TLS] Re: Working Group Last Call for Post-quantum Hybrid ECDHE-MLKEM Key Agreement for TLSv1.3

Stephen Farrell <stephen.farrell@cs.tcd.ie> Mon, 13 October 2025 18:48 UTC

Return-Path: <stephen.farrell@cs.tcd.ie>
X-Original-To: tls@mail2.ietf.org
Delivered-To: tls@mail2.ietf.org
Received: from localhost (localhost [127.0.0.1]) by mail2.ietf.org (Postfix) with ESMTP id 6D16F72A4082 for <tls@mail2.ietf.org>; Mon, 13 Oct 2025 11:48:54 -0700 (PDT)
X-Virus-Scanned: amavisd-new at ietf.org
X-Spam-Flag: NO
X-Spam-Score: -1.998
X-Spam-Level:
X-Spam-Status: No, score=-1.998 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_MSPIKE_H2=0.001, RCVD_IN_VALIDITY_RPBL_BLOCKED=0.001, RCVD_IN_VALIDITY_SAFE_BLOCKED=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: mail2.ietf.org (amavisd-new); dkim=pass (2048-bit key) header.d=cs.tcd.ie
Received: from mail2.ietf.org ([166.84.6.31]) by localhost (mail2.ietf.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id NQCQuNg_Y6sS for <tls@mail2.ietf.org>; Mon, 13 Oct 2025 11:48:53 -0700 (PDT)
Received: from PA4PR04CU001.outbound.protection.outlook.com (mail-francecentralazon11023079.outbound.protection.outlook.com [40.107.162.79]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange ECDHE (P-384) server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by mail2.ietf.org (Postfix) with ESMTPS id 0AD0B72A407A for <tls@ietf.org>; Mon, 13 Oct 2025 11:48:52 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector10001; d=microsoft.com; cv=none; b=OQz3RpQzTZ1my2clZxbld2IUn/pCZ/PfKOG9pa1KxJDQtFyAcxe0mS0SyqUC3zeFT/X3JqjcPUfdX/q46QPEKpEaCM6VuotvXfKXclWq7PlV7ONtNiUcTUeFIpJtKkNyFdDJtYEeF7vRdxESCIdZhk+WyOiyg4jo0UQRVV3Q4o61USrgmqJ5/rjM2zbou2XQCmtvefv6s0CadgYSnOkx+rGEU5G979KM1pKy4l7a3L0T+RXMBtGurMQDRr+Eymdsd3gi5a0IwEwCq0eXGMb8kSr1WudYiaf5fUjKEWCtLsSnHbKD+gxxK04zVPQuUHAVVn1KohDufsPGCFltO2TJJQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector10001; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=eHlCKSNfw89DKxRAaE1AMbUPPKnG6AdhLwyNmrk68hI=; b=BbAdgYdxmKnxXFYHcRloblI6zEZt7GC4ZWK51gQxFBGTFoKRalfE3c9nVjDusiGuWqlIpk+vLq3nZKou1WvUbbZMiG0X0aTjNOhJ8413KHAEUglCKaDiRp6qLkTqc5KvJpDUavPxAp+sx6wo73rLC0d6VKotREGgge5aWv6tBajFrMH5kAaf2gN48tVPUJpm3FLK3qcU8xx+F1+PIwZHFb1TaY1s3mDgD/loFhaMqgN7aEeW51z1JCT2mnA5FmqwT245BFUVqPkJdWKzJCMFws2cxVPvvMJNJy7LNPnEK3jcb9I2+keamlLMRrLkoTqN6xIWBQ01p1KKXNNwBmFPCQ==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cs.tcd.ie; dmarc=pass action=none header.from=cs.tcd.ie; dkim=pass header.d=cs.tcd.ie; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cs.tcd.ie; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=eHlCKSNfw89DKxRAaE1AMbUPPKnG6AdhLwyNmrk68hI=; b=iqSJM8ejaBu6bSnWQqnFZ/5uKAv6E3joJGCSC1TtQpwG3GXcxTolR1+qQD6xm3OqSe5BPdJkAxq9N9TtO8P1ZFkgnPEtxxCc9D7uc3eFFTiX5d7mMcK3Kg6jMg8IBOvcXvoLLuhQSdbtRgr887wG/kYj2yQqyk513nSOUHp7zEBcSUxSPkUWk1ae2xzXC9HaChkXoCDG4RBGSqf+oT9tCzto/EdcQq2u9vvHMmBqdnTXHryoDuMEezUPa5cVzTOw06T/XfUc6pFLPKPlmzuxGIm3xxTDe7bwOhBwdIinFcqCg2+Qbi3X0HhIdIcSIL9Bfx7b/Fibu12O+JxJ0D+thw==
Authentication-Results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=cs.tcd.ie;
Received: from PA3PR02MB11163.eurprd02.prod.outlook.com (2603:10a6:102:4b4::19) by VI1PR02MB6127.eurprd02.prod.outlook.com (2603:10a6:800:178::20) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.9160.15; Mon, 13 Oct 2025 18:48:43 +0000
Received: from PA3PR02MB11163.eurprd02.prod.outlook.com ([fe80::d308:cb8d:9d3d:31b1]) by PA3PR02MB11163.eurprd02.prod.outlook.com ([fe80::d308:cb8d:9d3d:31b1%5]) with mapi id 15.20.9203.009; Mon, 13 Oct 2025 18:48:43 +0000
Message-ID: <727c2997-ff1d-4c83-b11c-164c86100d0b@cs.tcd.ie>
Date: Mon, 13 Oct 2025 19:48:40 +0100
User-Agent: Mozilla Thunderbird
To: tls@ietf.org
References: <CAOgPGoA+c8kXDizwsvFG5tLz9+Kxk0HqiN1skKp5jMvvpxeu0Q@mail.gmail.com> <aO09OHfxq02kKx71@netmeister.org>
Content-Language: en-US
From: Stephen Farrell <stephen.farrell@cs.tcd.ie>
Autocrypt: addr=stephen.farrell@cs.tcd.ie; keydata= xjMEY9GzphYJKwYBBAHaRw8BAQdAo6JvjmSbxHdQWPZdvciQYsHhM1NxQBU398Mmimoy4p7N M1N0ZXBoZW4gRmFycmVsbCAoMjU1MTkpIDxzdGVwaGVuLmZhcnJlbGxAY3MudGNkLmllPsKQ BBMWCAA4FiEEMG54R8tZDyZFrDOn5Njp+ZeoM90FAmPRs6YCGwMFCwkIBwIGFQoJCAsCBBYC AwECHgECF4AACgkQ5Njp+ZeoM93bogEA25ElRyX0wwg+kGEN1AoL60MoZfvQZ/VtmXY6IC5j +csBAIBpkL5ySuzJK2zLNZn9qQGht8IaUcA7cvDcLvS2uHUEzjgEY9GzphIKKwYBBAGXVQEF AQEHQILCPWOwW36e8D3pY8GmvvtItIT+A5uV80ist+WokVsQAwEIB8J4BBgWCAAgFiEEMG54 R8tZDyZFrDOn5Njp+ZeoM90FAmPRs6YCGwwACgkQ5Njp+ZeoM92bcAEA8R+8cpqRUIS+SoAN iO05xE6O/wEx8/e88BqzAYki3SoBAOQdwiPX+MQrAxkWD8xxOsdMOAtxYKpkD1n8aPJUw6QJ
In-Reply-To: <aO09OHfxq02kKx71@netmeister.org>
Content-Type: multipart/signed; micalg="pgp-sha256"; protocol="application/pgp-signature"; boundary="------------VY8R7SNALfDzAcNhmNrPoNE0"
X-ClientProxiedBy: DU7PR01CA0020.eurprd01.prod.exchangelabs.com (2603:10a6:10:50f::25) To PA3PR02MB11163.eurprd02.prod.outlook.com (2603:10a6:102:4b4::19)
MIME-Version: 1.0
X-MS-Exchange-MessageSentRepresentingType: 1
X-MS-PublicTrafficType: Email
X-MS-TrafficTypeDiagnostic: PA3PR02MB11163:EE_|VI1PR02MB6127:EE_
X-MS-Office365-Filtering-Correlation-Id: 64924444-1d3b-468e-1238-08de0a89217e
X-MS-Exchange-SharedMailbox-RoutingAgent-Processed: True
X-TCD-Routed-via-EOP: Routed via EOP
X-TCD-ROUTED: Passed-Transport-Routing-Rules
X-MS-Exchange-SenderADCheck: 1
X-MS-Exchange-AntiSpam-Relay: 0
X-Microsoft-Antispam: BCL:0;ARA:13230040|1800799024|366016|19092799006|10070799003|376014;
X-Microsoft-Antispam-Message-Info: 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
X-Forefront-Antispam-Report: CIP:255.255.255.255;CTRY:;LANG:en;SCL:1;SRV:;IPV:NLI;SFV:NSPM;H:PA3PR02MB11163.eurprd02.prod.outlook.com;PTR:;CAT:NONE;SFS:(13230040)(1800799024)(366016)(19092799006)(10070799003)(376014);DIR:OUT;SFP:1102;
X-MS-Exchange-AntiSpam-MessageData-ChunkCount: 1
X-MS-Exchange-AntiSpam-MessageData-0: 5vFj0Z0lGKC+HyVRs1NgzJqBvZRbUwGAfOywE0UxAZMWMmkIPps3Qx7S49TSkqcMX8jtv346TkgmShAWbR5CBlJxuwFiUkXTlxssPb6lbwOLCw7ak3ocawU6V8i79atlAAO9WyoQU/08TlGOYRISlakNPObbwLvUQWfjsPnc3+S5f/V/xKFR4SFurrkotd3cB848/Gq3bW9meyh+qWVmYA0ZHT6suKo+NDOGPMihV0HoNFYYLnkQyzaFuukf9RuQn1vJmUtU9k/aUpta7XoOKAKhLB0wBO++jdWJOy924YJ+c6KAvB1bDtKaUenLFB0f98THeulUciwQ0A0NvXY7BFzuGyvaKv5FrXBZ0VJrO5Tgtnw66i6KOVWilensOazbSEXJo7jvZ1wjWbFjkw7kaJeJXgStsSueP63HqWQAiLpk2hwF9kExv+vCcjsr8zSMzgh4e8WWt7fr1+0ePmya5LqZHXbquR4IJk4ursNZL2yhSbZ/d4cQ4qh3EBsLPw4RMOIIZNbB/GZ9vIKuT/jFVu13mnymEoVQkqawdXxq0+Fk9vbk4748UZAlK4NSi2nBrNmIUPoLdniK3EnXVNwmJWKxT87eGBDKV051sa0Al2cKupfEBjx3d5fe5rNKKz+qjTbboxY3wCiQWrVrbPF86ss51a1WTbL16qCBLdwYeJUqSxHJzCNJkdrMeol16i0cW1JLHXG1i02pGc2y2RrElIAWPBO1KPP22CBu9mHPmFErBJyhR2JGyiO5nnZ3LF9AQW8ZydNNHmhDXxjzO84F9Ov+adDrKkoCAxcPrV3jhdxS44KdR8Bk2ImLf+j+S8/7o3TDY2WlZgHXbIXaq8Zny70vYvMm8YIx095MiOe8gWZNZpnWI6VYM217BFThyh3Cj1k4udarLElaxZCdq/p/y30SmLg2GKktyREDFo8jq/wAbV/3NfbgBM6kb7hQPovgH1PzoQWycTei1KPlpyO/niqqcowmjr+tix0YgNTdSIFvpKR7zifeYdy5bDHq3aMw0vEok5eLA1ufNCX7iiW/eTWmfRAMxpKsw+Qv/CXQzebPfN3NGOeir4OVhQWqT83px2xhGJyEwgAbdD7rsjJxeyVcIHhKZ01EZQ7XNrx7LK1cgCuOqMRU810KobYt//PVoE1n3B+wq5UzytwGtmMUrrRkW4/QzbXAzLxhO59Ht0e5KVRqbJhLKEI7wNJCfOXpAOK58lUXcf2vMqbQXrCy/SL7Rbi2+ljfLmL5TtdBjAIuTcca6+QOqcv1RIqG7+uDx00Ml9wBtAmrxOOe1Zv0yNFyb7Of1znExnkVU2VuUL6Tr3lVdKFVwjmWDHT/6EJqwLB5qJ+f4xACniJrxxvNmWfmpMFWDX61E7s0kupTjXRKJg9jjk0b9TZvqouhOWRjXQDvUMW3/w/GHCiitXmzwej4lTGWgn5cMCXNYlfePRv67qDXN9zAhtvzJ9HV/Fdqox7SU9WfsF8vnBnsNe5gKNxtrFshVM3ghQhjDJfhVVkMtNr+q6q6fL3KdMirpJXYNw9rOY0/xljl5QyidH+WhVxYm8Ft3Dwdoda091NRrInhr/7pw9UOAP+AOVOPHpAPqFZE27+sYQpm0ikCJ7x5YMZunnAHnZuJev6HtXHx7phPj0/Ay/05wW0Px4cHaI9T
X-OriginatorOrg: cs.tcd.ie
X-MS-Exchange-CrossTenant-Network-Message-Id: 64924444-1d3b-468e-1238-08de0a89217e
X-MS-Exchange-CrossTenant-AuthSource: PA3PR02MB11163.eurprd02.prod.outlook.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 13 Oct 2025 18:48:42.9798 (UTC)
X-MS-Exchange-CrossTenant-FromEntityHeader: Hosted
X-MS-Exchange-CrossTenant-Id: d595be8d-b306-45f4-8064-9e5b82fbe52b
X-MS-Exchange-CrossTenant-MailboxType: HOSTED
X-MS-Exchange-CrossTenant-UserPrincipalName: dc6g3mwX+RjFZPtc2+9uZ01NhfPPuhNl8CRu8sU/djVO91hhBvY956pFyBtGukf8
X-MS-Exchange-Transport-CrossTenantHeadersStamped: VI1PR02MB6127
Message-ID-Hash: AH5SEZLSGAWSKUQIYUEXYUDU57RLIAEB
X-Message-ID-Hash: AH5SEZLSGAWSKUQIYUEXYUDU57RLIAEB
X-MailFrom: stephen.farrell@cs.tcd.ie
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-tls.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
X-Mailman-Version: 3.3.9rc6
Precedence: list
Subject: [TLS] Re: Working Group Last Call for Post-quantum Hybrid ECDHE-MLKEM Key Agreement for TLSv1.3
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls/ANmen13WwoILwL5bLABNypWO6I8>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Owner: <mailto:tls-owner@ietf.org>
List-Post: <mailto:tls@ietf.org>
List-Subscribe: <mailto:tls-join@ietf.org>
List-Unsubscribe: <mailto:tls-leave@ietf.org>

My position on this is:

- I'd prefer X25519MLKEM768 with recommended = Y as that
reflects current reality and will likely provide good
guidance for implementers for the medium term
- I don't care about the others either way - people who
write implementations that are forced to use NIST curves
already know that.

If the WG consensus is for something else, I'm ok with
being in the rough.

Cheers,
S.

v2.35.0 | Report a Bug | By Email | System Status