[TLS] Re: [EXT] Re: Complaint to chairs regarding false claim of consensus to issue an RFC for draft-ietf-tls-mldsa
Ryan Appel <ryan.appel.333@gmail.com> Wed, 06 May 2026 12:59 UTC
Return-Path: <ryan.appel.333@gmail.com>
X-Original-To: tls@mail2.ietf.org
Delivered-To: tls@mail2.ietf.org
Received: from localhost (localhost [127.0.0.1]) by mail2.ietf.org (Postfix) with ESMTP id 21EE8E9DB4B9 for <tls@mail2.ietf.org>; Wed, 6 May 2026 05:59:22 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=ietf.org; s=ietf1; t=1778072362; bh=1ccysb4fUkORKsTc0u+UmKapH0gjJ7VXaAmPC/Jubn0=; h=From:Subject:Date:References:Cc:In-Reply-To; b=WnU5Jivif3Z8TzoSt9OCcH6dVCku1I1i1wAZpa64gr2ipjQIOmm+sOA/8BMJdFwsJ ngmtBxmbI62Hk2g3/VrtPG7KpWSlfrsgv72+Anyams+zg2M2YSDPUf3EqK8c4lW2Yy ZGyRnS9OBJGAbtjizC24Ds76xcqtCUFmrTXmfAcA=
X-Virus-Scanned: amavisd-new at ietf.org
X-Spam-Flag: NO
X-Spam-Score: -0.828
X-Spam-Level:
X-Spam-Status: No, score=-0.828 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_ENVFROM_END_DIGIT=0.25, FREEMAIL_FROM=0.001, MISSING_HEADERS=1.021, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=no autolearn_force=no
Authentication-Results: mail2.ietf.org (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail2.ietf.org ([166.84.6.31]) by localhost (mail2.ietf.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id yrb5HBIxAkgn for <tls@mail2.ietf.org>; Wed, 6 May 2026 05:59:21 -0700 (PDT)
Received: from mail-oa1-x2d.google.com (mail-oa1-x2d.google.com [IPv6:2001:4860:4864:20::2d]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by mail2.ietf.org (Postfix) with ESMTPS id DB174E9DB4B6 for <tls@ietf.org>; Wed, 6 May 2026 05:59:21 -0700 (PDT)
Received: by mail-oa1-x2d.google.com with SMTP id 586e51a60fabf-4243bf9be36so2435568fac.3 for <tls@ietf.org>; Wed, 06 May 2026 05:59:21 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20251104; t=1778072354; x=1778677154; darn=ietf.org; h=in-reply-to:cc:references:message-id:date:subject:mime-version:from :content-transfer-encoding:from:to:cc:subject:date:message-id :reply-to; bh=f1cKTqwBumDwpHr1EnAEl2NduvmYJbDzE0e42ZrIwJk=; b=dx0mVq6hepBjD/4Bd0DIgPrhLWEB/z9zuCbDXT7JssYpa/QaYJlhN8sl+M4IpQ38VE uSE8tQAbxIVgSpd/nG2TdaAr1f0kW8OGTjLi70alwK1GzE6yO+032MSWqRJBZy6/DfWv OdCI6csjzvHv82EKzPKqaKC923PIh6+P7tj6xFGp21lKjQrbI7xXXpSlIQec/a5cUu1s vKvUZyk2l2g7R92iIv3y46mtdCQFe4lWB7gk1oY1wyiQdbyyOSFsEutbZQgrPJ1haPq8 r3NtGIoK3EWr22iogW3TY8o+VzPOW3Rc/xoQuhGZzkH5aIA1zih3AiJhox8Bda8MZu15 A5fA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20251104; t=1778072354; x=1778677154; h=in-reply-to:cc:references:message-id:date:subject:mime-version:from :content-transfer-encoding:x-gm-gg:x-gm-message-state:from:to:cc :subject:date:message-id:reply-to; bh=f1cKTqwBumDwpHr1EnAEl2NduvmYJbDzE0e42ZrIwJk=; b=Ds4jguNmU3lnemY5yKiSU3Vnae7bV3+Xeduk8BZG5TKMWyuz71DWZPjnu48Qh1WwcS TVgMy/wCpIpRPqFoJtRPQD4XYbuHsy9TgUfaS2elq8ZS10f1QkuAx6blmT7sH1Ah8XyG SPxSadKHyefzWZefamWzdIx19ByhIN0cLGSKdEVLdW7a+IZ/xaDnGmGH5/Mf7UDS6FDP 8jqc7gmnrytE30N07oFoaf1TYCapBOkA5mGPxk8k2jPH6huDAPJ+901UutIGW2x81baZ KF1G+Bo1TCe3SUjs+U8rKXIITicIjliL16O16oTzGyz3aPlXaNVXtoH07JSssAC9Uz39 5U0A==
X-Gm-Message-State: AOJu0YwhruV9rRkdItC3FPIBNer3exrP676HnCAzRFh7BOlxEtCoWu0h oX8hAZsh5IeV3h45C3iYYJct/xQSqTp0vX8oDPZrkhgRgeidYOW3VSu/6uhGWA==
X-Gm-Gg: AeBDietL0egNkfvUyD3YllImTKUEM6i40uvUf3rBuYj/t0YhDt3PgjWUAkqy0Q4JkSk bE9mQu1C3x2Y8fPTKbN7ISicJfY6mbpeEgAxrA2FI6rHWC1lrtihXaEkADwtS9SfXbADDaVN/Vc 2a9eIxFK+oVKiC53DHybIlLfZ2FKUiz4jKjoAb9iHMQjsYjvTdfHy5YDjKd6kzr0idsP47+GbQC 9giS/2bItRoRr0Z02DlqR+e3rVRDvtg1qp592JQU5jz/ZNkDiybdFQNk0xiTiGWalW/fqh5sDrw GqD9hCDxmYCLKcVMvVYtV+r/gmcgpi6GXbCZyWj2B8o05LoizvI6psdpl/0P0B4E12AbIX8yIOq glLylQlGz0aavHwHCovqvQvU5hk53Ky5oaXXY7+5SICc7tZMSK8uQ3fxrKGmkuDNmub5gzy9vh2 P10m+YZIC/VJXSHpYla9JSJOjGXmaRdqUG1iNygbZsRPFB8YaknHn7mSxLIoQG+/PGlI1p09V1
X-Received: by 2002:a05:6870:3508:b0:424:dd0:f49e with SMTP id 586e51a60fabf-434f6633fe9mr2096254fac.27.1778072354294; Wed, 06 May 2026 05:59:14 -0700 (PDT)
Received: from smtpclient.apple ([2600:1702:5238:9080:c074:17cb:5f99:b92e]) by smtp.gmail.com with ESMTPSA id 586e51a60fabf-43454942dc1sm15254669fac.5.2026.05.06.05.59.13 for <tls@ietf.org> (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Wed, 06 May 2026 05:59:13 -0700 (PDT)
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: quoted-printable
From: Ryan Appel <ryan.appel.333@gmail.com>
Mime-Version: 1.0 (1.0)
Date: Wed, 06 May 2026 07:59:03 -0500
Message-Id: <748C1CE7-BAAF-4D80-8CE2-EE943931E0EA@gmail.com>
References: <027ad516-56fe-4555-bce4-40be8ce97f93@cs.tcd.ie>
Cc: tls@ietf.org
In-Reply-To: <027ad516-56fe-4555-bce4-40be8ce97f93@cs.tcd.ie>
X-Mailer: iPhone Mail (23D8133)
Message-ID-Hash: 3G3QPP7L65P7IJ2Y7JSTB7MCKM2XA5AV
X-Message-ID-Hash: 3G3QPP7L65P7IJ2Y7JSTB7MCKM2XA5AV
X-MailFrom: ryan.appel.333@gmail.com
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-tls.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
X-Mailman-Version: 3.3.9rc6
Precedence: list
Subject: [TLS] Re: [EXT] Re: Complaint to chairs regarding false claim of consensus to issue an RFC for draft-ietf-tls-mldsa
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls/IOFNiog1KQX_ywnSrZR0csCXeJE>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Owner: <mailto:tls-owner@ietf.org>
List-Post: <mailto:tls@ietf.org>
List-Subscribe: <mailto:tls-join@ietf.org>
List-Unsubscribe: <mailto:tls-leave@ietf.org>
Usama (and all),
I am no chair, but an observer offering a perspective. I know the topic is hot now, but I’m hoping that this dwindles flame rather than increases it.
Your main technical complaint if I’m not mistaken is that a document that is intended for ml-dsa only should reference a hybrid approach.
I don’t know that this is an accurate approach none of the rest of the document references hybrids in any way. Just as when ECDSA was added to TLS (RFC 5246) there was no reference to any “hybrid” approach (I.e. no, let’s do ECDSA + RSA just in case).
I do think the point of this RFC is simply to register some new code points for the use of ml-dsa standalone (which if there’s no agreement that it can’t be standalone I don’t know how we could possibly agree on a hybrid).
Algorithms thus far have never had to be combined, except for worries which people have.
Let me paint a mental picture, if I need to have composite algorithm x, and algorithm x is comprised of algorithms y and z, then I first need standalone implementations of algorithms y and z before I can have algorithm x. So why in the world would we not have algorithms y and z both be a part of the protocol before having algorithm x added? It feels completely backwards.
Yes, have the ml-dsa standalone. Create an I-D with your suggestions on the signature schemes we would want to add to the registry. And there (hopefully) the lamps document can be finalized and rather than referencing an I-D you can reference both the standlone ml-dsa, and the lamps pq-composite RFC, and discuss why someone would want a composite rather than a standalone algorithm.
Thank you,
Ryan Appel
> On May 6, 2026, at 5:35 AM, Stephen Farrell <stephen.farrell@cs.tcd.ie> wrote:
>
>
> Hiya,
>
>> On 06/05/2026 11:31, Peter C wrote:
>> I don’t think you can point at an informative section motivating
>> the use of hybrid ML-DSA in one draft and claim that it blocks
>> the use of non-hybrid ML-DSA everywhere else, particularly
>> when there is already a published RFC for non-hybrid ML-DSA
>> from the same working group with the same use case [1].
>
> We (the IETF as a whole) are indeed all over the place
> when it comes to documenting PQ things;-(
>
> I feel sorry for people who have to try figure out what
> to implement and deploy.
>
> S.
>
> _______________________________________________
> TLS mailing list -- tls@ietf.org
> To unsubscribe send an email to tls-leave@ietf.org
> <OpenPGP_signature.asc>
- [TLS] Re: Complaint to chairs regarding false cla… Jacob Appelbaum
- [TLS] Re: Complaint to chairs regarding false cla… Paul Wouters
- [TLS] Re: Complaint to chairs regarding false cla… Jacob Appelbaum
- [TLS] Re: Complaint to chairs regarding false cla… Paul Wouters
- [TLS] Re: Complaint to chairs regarding false cla… Jacob Appelbaum
- [TLS] Re: [EXT] Re: Complaint to chairs regarding… Rob Sayre
- [TLS] Re: [EXT] Re: Complaint to chairs regarding… Blumenthal, Uri - 0553 - MITLL
- [TLS] Re: [EXT] Re: Complaint to chairs regarding… Rob Sayre
- [TLS] Re: [EXT] Re: Complaint to chairs regarding… Rob Sayre
- [TLS] Re: [EXT] Re: Complaint to chairs regarding… Blumenthal, Uri - 0553 - MITLL
- [TLS] Re: [EXT] Re: Complaint to chairs regarding… Peter C
- [TLS] Re: [EXT] Re: Complaint to chairs regarding… Stephen Farrell
- [TLS] Re: [EXT] Re: Complaint to chairs regarding… Ryan Appel
- [TLS] Re: [EXT] Re: Complaint to chairs regarding… Salz, Rich
- [TLS] Re: [EXT] Re: Complaint to chairs regarding… John Mattsson
- [TLS] Re: [EXT] Re: Complaint to chairs regarding… Blumenthal, Uri - 0553 - MITLL
- [TLS] Re: [EXT] Re: Complaint to chairs regarding… Rob Sayre
- [TLS] Re: [EXT] Re: Complaint to chairs regarding… Blumenthal, Uri - 0553 - MITLL
- [TLS] Re: [EXT] Re: Complaint to chairs regarding… Blumenthal, Uri - 0553 - MITLL
- [TLS] Re: [EXT] Re: Complaint to chairs regarding… Muhammad Usama Sardar
- [TLS] Re: [EXT] Re: Complaint to chairs regarding… Muhammad Usama Sardar