IETF Logo Mail Archive

[TLS] Re: WG Last Call: draft-ietf-tls-mlkem-05 (Ends 2025-11-26)

Flo D <Flo.D@ncsc.gov.uk> Thu, 13 November 2025 15:19 UTC

Return-Path: <Flo.D@ncsc.gov.uk>
X-Original-To: tls@mail2.ietf.org
Delivered-To: tls@mail2.ietf.org
Received: from localhost (localhost [127.0.0.1]) by mail2.ietf.org (Postfix) with ESMTP id 6B43888CB178; Thu, 13 Nov 2025 07:19:51 -0800 (PST)
X-Virus-Scanned: amavisd-new at ietf.org
X-Spam-Flag: NO
X-Spam-Score: -2.791
X-Spam-Level:
X-Spam-Status: No, score=-2.791 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FROM_GOV_DKIM_AU=-0.692, RCVD_IN_MSPIKE_H2=0.001, RCVD_IN_VALIDITY_RPBL_BLOCKED=0.001, RCVD_IN_VALIDITY_SAFE_BLOCKED=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: mail2.ietf.org (amavisd-new); dkim=pass (2048-bit key) header.d=ncsc.gov.uk
Received: from mail2.ietf.org ([166.84.6.31]) by localhost (mail2.ietf.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id r4wYQzFbQ2Xh; Thu, 13 Nov 2025 07:19:50 -0800 (PST)
Received: from LO2P265CU024.outbound.protection.outlook.com (mail-uksouthazon11011047.outbound.protection.outlook.com [52.101.95.47]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange ECDHE (P-384) server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by mail2.ietf.org (Postfix) with ESMTPS id AF08C88CB16E; Thu, 13 Nov 2025 07:19:50 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector10001; d=microsoft.com; cv=none; b=yEOxl99YiPD4PZchKFR1AOSlC9lsZG26oE5kMTTcRlVjZc8EanW8XkNUiSZxOLHtjnXdWzdXUsH8iTV0yKuLcbqBtNw19SBs0AYr+pisry6JWoF7Pzjh0CIIy9Gu6fibzQrmc8F3UAUBGc6HjRt6tikQz50k7sIU1g38+7chqpZF7YFUOIyvlYa6CkpM1Y0n25Wydt76wzVlixdj6xYMJ+9dC1cWNdntAiclxy2eiDxbA5ozUQpKafr08U7aZem4fQmQJjEx3/g/XjzmG7Rq27qdrNsaZAtkD8cbwAGTPB0fZUUL/aCwEyXylHCmrzJPw9KoVImCeLvpyzw7pTF5Mg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector10001; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=mRcuvxOdWQ5tvy8pVGsVFUM6u506MntvIhUkCJCG5og=; b=K0V2kLNwgmzlGHi7nEKQCRMXxDpbm2mhQDR4VP/coKg+N7oheEIwsLYLuftw+EISimqzvFogBW4wVyalL0Mcfv+oRyRduszya8SL9F5F01Imj76OzrLHrN2JE+VBWEHvglP0M5nr3k0uCrhrMpvykFO/rJzx2b4cNpqb153zYFK2Qrg8SIQtBuVQMqLnwpbqBhUO/cZF3Igr4RU/qQpK2z+lZTEHTZ9yznk2JZsANPeOTWYWGgaSLxGxNcXpOJfxITnpT9HO9VkowymlIoYxHzz/Movuu1LskeO7HHxo/mfMDrY4gJg1Nxj02FU4KPV+i40FP7nWj+VjzIHDJ4X+Tw==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=ncsc.gov.uk; dmarc=pass action=none header.from=ncsc.gov.uk; dkim=pass header.d=ncsc.gov.uk; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ncsc.gov.uk; s=selector2; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=mRcuvxOdWQ5tvy8pVGsVFUM6u506MntvIhUkCJCG5og=; b=Cgu1x1lIwpJ/sd7Qj+/viNHdGLUod/+/Wba5pwoZboc0tAHN8WqDBf9CZ0101CfMohdV7zH2BfgZnzqG+vAVCC7jE8nu8yZ1vtKXc9LFdzb7ldIR8N9fGfR+wFQWaUa5vz93uv9Wyjaj0TbhBBG6mC9QQ0WrMOKfeMVtQCsg/HSNzVb83i283cwU2ZE/mGuRza5jUQAiTt+tDmO2o5hkJOyHn+kiGPkdw/1ohIhRhZZc90kNwbPd8fHI1Via9ZBRPIWcN90Fr+C6pQn/Me9+6qmObTbZUH3G2rz3GUzaBDAfdy2Kp/qgish7Q9LNN12ufsbGITyBHoOftS7rXvFLIg==
Received: from LO2P123MB5158.GBRP123.PROD.OUTLOOK.COM (2603:10a6:600:1d7::13) by LO9P123MB7499.GBRP123.PROD.OUTLOOK.COM (2603:10a6:600:3a5::14) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.9320.17; Thu, 13 Nov 2025 15:19:42 +0000
Received: from LO2P123MB5158.GBRP123.PROD.OUTLOOK.COM ([fe80::f864:3bac:4e:4f20]) by LO2P123MB5158.GBRP123.PROD.OUTLOOK.COM ([fe80::f864:3bac:4e:4f20%4]) with mapi id 15.20.9320.013; Thu, 13 Nov 2025 15:19:42 +0000
From: Flo D <Flo.D@ncsc.gov.uk>
To: Sean Turner <sean@sn3rd.com>, "draft-ietf-tls-mlkem@ietf.org" <draft-ietf-tls-mlkem@ietf.org>, "tls-chairs@ietf.org" <tls-chairs@ietf.org>, "tls@ietf.org" <tls@ietf.org>
Thread-Topic: [TLS] WG Last Call: draft-ietf-tls-mlkem-05 (Ends 2025-11-26)
Thread-Index: AQHcToVunsNDUwyngUqU4D3FHLwXdrTwxBhQ
Date: Thu, 13 Nov 2025 15:19:42 +0000
Message-ID: <LO2P123MB5158D29DE1DEFABF3C6DDAC9A8CDA@LO2P123MB5158.GBRP123.PROD.OUTLOOK.COM>
References: <176236867319.904123.10146982018394612684@dt-datatracker-5df8666cb-7l4w5>
In-Reply-To: <176236867319.904123.10146982018394612684@dt-datatracker-5df8666cb-7l4w5>
Accept-Language: en-US, en-GB
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
msip_labels: MSIP_Label_d51697e2-b69a-493f-9635-378990918eab_Enabled=True;MSIP_Label_d51697e2-b69a-493f-9635-378990918eab_SiteId=14aa5744-ece1-474e-a2d7-34f46dda64a1;MSIP_Label_d51697e2-b69a-493f-9635-378990918eab_SetDate=2025-11-13T15:17:05.0000000Z;MSIP_Label_d51697e2-b69a-493f-9635-378990918eab_Name=OFFICIAL (No Handling Instructions);MSIP_Label_d51697e2-b69a-493f-9635-378990918eab_ContentBits=3;MSIP_Label_d51697e2-b69a-493f-9635-378990918eab_Method=Standard
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=ncsc.gov.uk;
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: LO2P123MB5158:EE_|LO9P123MB7499:EE_
x-ms-office365-filtering-correlation-id: 2e1b93ba-0dc3-4b3c-a05e-08de22c811ea
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;ARA:13230040|42112799006|366016|4022899009|376014|19092799006|1800799024|38070700021;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255;CTRY:;LANG:en;SCL:1;SRV:;IPV:NLI;SFV:NSPM;H:LO2P123MB5158.GBRP123.PROD.OUTLOOK.COM;PTR:;CAT:NONE;SFS:(13230040)(42112799006)(366016)(4022899009)(376014)(19092799006)(1800799024)(38070700021);DIR:OUT;SFP:1101;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: text/plain; charset="utf-7"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-OriginatorOrg: ncsc.gov.uk
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: LO2P123MB5158.GBRP123.PROD.OUTLOOK.COM
X-MS-Exchange-CrossTenant-Network-Message-Id: 2e1b93ba-0dc3-4b3c-a05e-08de22c811ea
X-MS-Exchange-CrossTenant-originalarrivaltime: 13 Nov 2025 15:19:42.2365 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 14aa5744-ece1-474e-a2d7-34f46dda64a1
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: pdryrwV7qlrArs0gZ8GomtvgBGEg90i4EiA6VVMJoBXA1ISq/Q+KC5vpJKIdhBAdVk4NxeR9TnoTWjoXvUSLw4OCq7BKQbra5Qbz+AE5KAw=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: LO9P123MB7499
Message-ID-Hash: 7W3XN2FU2DDOISM3YXHIIPD3UFNGGOJW
X-Message-ID-Hash: 7W3XN2FU2DDOISM3YXHIIPD3UFNGGOJW
X-MailFrom: Flo.D@ncsc.gov.uk
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-tls.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
X-Mailman-Version: 3.3.9rc6
Precedence: list
Subject: [TLS] Re: WG Last Call: draft-ietf-tls-mlkem-05 (Ends 2025-11-26)
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls/BzwwGlmaCoAIoB2sYkm7yAksfvw>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Owner: <mailto:tls-owner@ietf.org>
List-Post: <mailto:tls@ietf.org>
List-Subscribe: <mailto:tls-join@ietf.org>
List-Unsubscribe: <mailto:tls-leave@ietf.org>

OFFICIAL

Hi,

I support publication of this document.  I have a few nits, which aren't blockers but may be useful to tweak for clarity:

4.3 - "The shared secret output from the ML-KEM Encaps and Decaps algorithms over the appropriate keypair and ciphertext results in the same shared secret shared_secret as its honest peer,"
This was a little unclear to me because the beginning is talking about both peers and the end seems to be focused on one.  I think something like the following would be clearer "Using the pk, sk pair generated from a KeyGen algorithm, the shared secret output, shared_secret, from the ML-KEM Encaps algorithm is the same as the output, shared_secret, of the ML-KEM Decaps algorithm".

5.1 - Other IETF drafts on this topic use IND-CCA2 rather than IND-CCA.  I don't think it really matters, but I mention it here for consistency's case. Perhaps you could add a note that IND-CCA means IND-CCA2 here?

5.2 - There's an extra "the" in the first line.  Also this section doesn't make sense to me - too many "ares" in one sentence.  Could this be rephrased?

Thanks,
Flo

Flo D - UK NCSC


OFFICIAL
-----Original Message-----
From: Sean Turner via Datatracker <noreply@ietf.org>
Sent: 05 November 2025 18:51
To: draft-ietf-tls-mlkem@ietf.org; tls-chairs@ietf.org; tls@ietf.org
Subject: [TLS] WG Last Call: draft-ietf-tls-mlkem-05 (Ends 2025-11-26)


Subject: WG Last Call: draft-ietf-tls-mlkem-05 (Ends 2025-11-26)

This message starts a 3-week WG Last Call for this document.

Abstract:
   This memo defines ML-KEM-512, ML-KEM-768, and ML-KEM-1024 as
   NamedGroups and and registers IANA values in the TLS Supported Groups
   registry for use in TLS 1.3 to achieve post-quantum (PQ) key
   establishment.

File can be retrieved from:
https://datatracker.ietf.org/doc/draft-ietf-tls-mlkem/

Please review and indicate your support or objection to proceed with the publication of this document by replying to this email keeping tls@ietf.org in copy. Objections should be motivated and suggestions to resolve them are highly appreciated.

Authors, and WG participants in general, are reminded again of the Intellectual Property Rights (IPR) disclosure obligations described in BCP 79 [1]. Appropriate IPR disclosures required for full conformance with the provisions of BCP 78 [1] and BCP 79 [2] must be filed, if you are aware of any. Sanctions available for application to violators of IETF IPR Policy can be found at [3].

Thank you.

[1] https://datatracker.ietf.org/doc/bcp78/
[2] https://datatracker.ietf.org/doc/bcp79/
[3] https://datatracker.ietf.org/doc/rfc6701/



_______________________________________________
TLS mailing list -- tls@ietf.org
To unsubscribe send an email to tls-leave@ietf.org

v2.35.0 | Report a Bug | By Email | System Status