[TLS]Re: [EXTERNAL] Re: Working Group Last Call for "Hybrid key exchange in TLS 1.3"

Andrei Popov <Andrei.Popov@microsoft.com> Tue, 13 August 2024 21:37 UTC

Return-Path: <Andrei.Popov@microsoft.com>
X-Original-To: tls@ietfa.amsl.com
Delivered-To: tls@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 0337EC180B51 for <tls@ietfa.amsl.com>; Tue, 13 Aug 2024 14:37:26 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.254
X-Spam-Level:
X-Spam-Status: No, score=-2.254 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.148, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_NONE=0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=microsoft.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id KEc7JblC27F8 for <tls@ietfa.amsl.com>; Tue, 13 Aug 2024 14:37:22 -0700 (PDT)
Received: from BYAPR05CU005.outbound.protection.outlook.com (mail-westusazon11020100.outbound.protection.outlook.com [52.101.85.100]) (using TLSv1.2 with cipher ECDHE-ECDSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 27CBBC180B49 for <tls@ietf.org>; Tue, 13 Aug 2024 14:37:22 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector10001; d=microsoft.com; cv=none; b=K1F1j07+N/7r0RlPeHL3lhCv8qOnB1xa8TgoUTjH4Rh3FpBPCTfjwcEI2dl0TDN8yJnAxHSNImSYHSAoQkFn7aDTAKfrJLcY1yLNN1rqZ1AqfRMmJwQ42iaAbrjZSDQmA4qlD6AFRv1JkeCUKkyNL6etrhHRSOHDaqRlkvnlRgZ3JukngXYjaZK+PQPHaEDFF/SMZQo+arRy7VhjevLjQknkgf8/5PfIPGkFMQuSuZ6jGp/MYBXz7DIOe+m2uypuRuS55w5Vf6weTgW54ZFWGv3qvFOd6bbAp0to90WUL1PBbTfIunOzeYPPjhEymaosSFeTSjJGa34kAuw2EIoxzQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector10001; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=t6J+WMsvHrYaTYZWO87vT66d9KJ0nc+o3kpFj0ABuv8=; b=JBRChE1LM39/O0BPj3FaoMVKWmhKASw+7xaBESPns7hapA+s1tzbbwrRaTYOKOk5K1SKwPrc02S55yOFUqIoCZrw0Jbr2adI2dZ3zi7qARuUGJeG1aWQca2SCCOyENbi5ZU59y7iBsO5Px/RaufLjoJ5bZ50IQdcr/U2B68Cl3hZek+ps1uZe74MK2t2ZpT5C/ETUBtFZbZ3/q9sXytUnzw4oE/UkAainPJozAyb67soW36gzIg4Aw1LgoBYRDBKO+UHtkkJJ4hwb83bieAR+DhYUy7BI994Fp0hpzJ1q1WhcoE744AMbpdIqUAppHbWwg4+U4/hqzI8yxYuOtRnxA==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=microsoft.com; dmarc=pass action=none header.from=microsoft.com; dkim=pass header.d=microsoft.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=selector2; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=t6J+WMsvHrYaTYZWO87vT66d9KJ0nc+o3kpFj0ABuv8=; b=doFaCP0xM92UOegw6Ps/NUodmeiv4oSMTYnXisQQqFTX27yHWdHZ63icXCzvSRxMB5vvgX0WFrCYuiqaPi5naKEtOz74vVXTV2hSLvq8CT0mmaAPkM2JA/Np37cvm8CH1fMqGzN3IaqjYksE7Ee0i6dShtWFMEqeSX7qw5GfQtI=
Received: from DS7PR21MB3716.namprd21.prod.outlook.com (2603:10b6:8:92::21) by CY5PR21MB3759.namprd21.prod.outlook.com (2603:10b6:930:c::10) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.7897.4; Tue, 13 Aug 2024 21:37:20 +0000
Received: from DS7PR21MB3716.namprd21.prod.outlook.com ([fe80::4a60:3e47:4b24:914]) by DS7PR21MB3716.namprd21.prod.outlook.com ([fe80::4a60:3e47:4b24:914%4]) with mapi id 15.20.7897.006; Tue, 13 Aug 2024 21:37:20 +0000
From: Andrei Popov <Andrei.Popov@microsoft.com>
To: Thom Wiggers <thom@thomwiggers.nl>, Deirdre Connolly <durumcrustulum@gmail.com>
Thread-Topic: [EXTERNAL] [TLS]Re: Working Group Last Call for "Hybrid key exchange in TLS 1.3"
Thread-Index: AQHa7W0fv4bLPg4zLkO4ENlswCciUrIltoqQ
Date: Tue, 13 Aug 2024 21:37:20 +0000
Message-ID: <DS7PR21MB3716066016F6D56FE3CD56328C862@DS7PR21MB3716.namprd21.prod.outlook.com>
References: <CAFR824wCMcyF1szc76P+4i8LKv2-d1ciHWRMFFmZ8hpi=1PHtA@mail.gmail.com> <9F2975D8-A5C8-4254-AB78-04FD9CBB8CF9@thomwiggers.nl>
In-Reply-To: <9F2975D8-A5C8-4254-AB78-04FD9CBB8CF9@thomwiggers.nl>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
msip_labels: MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_ActionId=8719c030-ab03-43d7-8d51-5bf35ab5b088;MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_ContentBits=0;MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Enabled=true;MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Method=Standard;MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Name=Internal;MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_SetDate=2024-08-13T21:35:19Z;MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_SiteId=72f988bf-86f1-41af-91ab-2d7cd011db47;
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=microsoft.com;
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: DS7PR21MB3716:EE_|CY5PR21MB3759:EE_
x-ms-office365-filtering-correlation-id: 9abfeacf-ad4a-41bd-ff72-08dcbbe01c40
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;ARA:13230040|366016|1800799024|4022899009|376014|38070700018;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255;CTRY:;LANG:en;SCL:1;SRV:;IPV:NLI;SFV:NSPM;H:DS7PR21MB3716.namprd21.prod.outlook.com;PTR:;CAT:NONE;SFS:(13230040)(366016)(1800799024)(4022899009)(376014)(38070700018);DIR:OUT;SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 6zxyo2B1SewlEY+R6p3UCXbTaHV05V1SJkEvgvASvtrrEtmZST0QmJ+UFoGOmLhILorEB5k1UgWFRhCNFK1RFQ4HbfNflyxfekBGZtOJ9dNRblecwZ/Tx0+3VXeo3zQga57htgMu566NUZZodLPaiNaHUC/UHC3wTwqXhdvv5xqXb9ondW3pNo4OmU8sN+SEa0jKmI9hC6telAMi8luxd2fHV2XkidcNcz9UFOjdv5VoSFFQz26v1UAN2WXVmQb1IXAZMBeckeY0LZXVLOaUMZ1dt4HFkTCR+J54SNnx6ABobSI6Rh1NN1DlCPIB0ltVe90yNJ8BlN//dhTc/R/3JuMougfxeqV2QTs9PWP8Hm3ZMmXVMRCARYAyyEb3CF+26397Hvkci/GMozQgiVSdFxG/DpMfdOAtzSUJ5pRQV4/SHstoHvgV0ykxNlha8eyfIalnQG1NO9gtHgFGYP2XB9d7nk9OCzxokT2i/2Iu3cWYTZka53076aNYYp1r1Gs43mtfC/jFrIsK518En5UTPgEpSYk1OKE6soZiculPytvnhoxGQbN1PjnL5ELGRQkMWt/3qBbK0bYTUWp2N5sQK6KCM3nuUTDqgu6anCNVYC7Q2iyAIVJebWzJPxNjYwj3l2hFYfN7plF4LChFf/+VKbpwzA6HBApg27WdQoVK5THFKFcXn4IzC67dbIZXQvGbw8q0GNvtOgxAAVzZPMdV0V0QT9SYn5xdTIxOuh5VFrH1nucSOqBhTtveniQycdeJi/KFDBEe6N5C/vC1XjBGP9ijfxUJwk0kYmvnZO8srl+J4vNnVTVHwm3eS1TzrRKH2OT+SH7F2/6/ebeAFDe6RKu+l8Lcg4M+YgMk2nhlkqe9WyDdUz5PHXzOobWwg85RWEobdkKoAECXpd+gRnINnLWlJ3JVVle302U648tLBECvqbgAvpWfyu/SsH1sZojsgNyFzfCWSg8x4Frtncwpaam43GqxDuMKm1nZuv11zCMD9gIuVFBMiWMY5YCwAkQe4LBWM9e4+vEz09AkXq0KWZWgGQvlwmgmHKb54D2mAZ3kI+JPEKRkp+aS+sI/CYa6xGHarvft0vvNN32nYRNxDeVirLQb+n5acjlXCKG7vdt6BsBnKg3EpOy12Jge5aeNnWuJdl8VqJYEI2HvjSRw/7jWhK97O0MLs9L1YA+znbvDQtiu64YHRO6C4vOElitocmNY4mtqJvC+7f+oDHx0Eja3VFCsv50rIwhH8VQ4nfg3ciqKQOKs9hpxJgEUhj5N3/oVKnlJCk09zH4n8f4NpqmvlMT4AhqpK9oYgbjh53Qu4LiFfnjiZv4Ks77yYb5gBfvEJOrBYuz4MyMRFCYHSaB/YFoJMyV+4pM8y+maNmV+A18hGWmTpTTtwRDZ1YEpFHjDut++7I9SVeolzlOaNiT7U5/+6Lw7cm4GZiO0qnPS0CdOtoSXdrkhh5H3PHpVaxOd8cXCvy75XAhDFOMoIY4FQNZc001Y0kSzxh+kFRltpibQSZeitxTfNiO6ScUFwuMMv/FbugZkjHaOePueEYdqIGRU8RxFcdUrqyKdY+PUeJWDPkASnDf5T8p6/oIy
Content-Type: multipart/alternative; boundary="_000_DS7PR21MB3716066016F6D56FE3CD56328C862DS7PR21MB3716namp_"
MIME-Version: 1.0
X-OriginatorOrg: microsoft.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: DS7PR21MB3716.namprd21.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 9abfeacf-ad4a-41bd-ff72-08dcbbe01c40
X-MS-Exchange-CrossTenant-originalarrivaltime: 13 Aug 2024 21:37:20.0273 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 72f988bf-86f1-41af-91ab-2d7cd011db47
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: zp0B3GaIoTc78GUR49Dlmrrpygsni01YPr1rqMYTc97Vym3X82VIi+RxDxC5bRLsYEAoW5k4JiLazyN6oqxB0g==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: CY5PR21MB3759
Message-ID-Hash: H5NUOYOHHIL5TSJ22NVJDFVGCH7PXFTP
X-Message-ID-Hash: H5NUOYOHHIL5TSJ22NVJDFVGCH7PXFTP
X-MailFrom: Andrei.Popov@microsoft.com
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-tls.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: "<tls@ietf.org>" <tls@ietf.org>
X-Mailman-Version: 3.3.9rc4
Precedence: list
Subject: [TLS]Re: [EXTERNAL] Re: Working Group Last Call for "Hybrid key exchange in TLS 1.3"
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls/IoiuGFIDaEZPgcJpogQO_jRCPLM>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Owner: <mailto:tls-owner@ietf.org>
List-Post: <mailto:tls@ietf.org>
List-Subscribe: <mailto:tls-join@ietf.org>
List-Unsubscribe: <mailto:tls-leave@ietf.org>

I think it would make sense to get new code points for hybrids based on the final ML-KEM spec, so that implementers don't need to use pre-standard Kyber.

Cheers,

Andrei

From: Thom Wiggers <thom@thomwiggers.nl>
Sent: Tuesday, August 13, 2024 3:39 AM
To: Deirdre Connolly <durumcrustulum@gmail.com>
Cc: <tls@ietf.org> <tls@ietf.org>
Subject: [EXTERNAL] [TLS]Re: Working Group Last Call for "Hybrid key exchange in TLS 1.3"

You don't often get email from thom@thomwiggers.nl<mailto:thom@thomwiggers.nl>. Learn why this is important<https://aka.ms/LearnAboutSenderIdentification>
Hi,

I think this is great and what better time to do this than with the publication of FIPS 203 this week.

The one thing that remains is that there are many references to Kyber, e.g. commenting on its key sizes fitting in the KeyShareEntry limitations; should those be updated to be references to ML-KEM?

Cheers,

Thom


Op 12 aug 2024, om 21:50 heeft Deirdre Connolly <durumcrustulum@gmail.com<mailto:durumcrustulum@gmail.com>> het volgende geschreven:

This email starts the working group last call for the Internet-Draft "Hybrid key exchange in TLS 1.3", located here:

https://datatracker.ietf.org/doc/draft-ietf-tls-hybrid-design/

The WG last call will end 26th August 2024 @ 2359 UTC.

Please review the draft and submit issues and pull requests via the GitHub repository that can be found at:

https://github.com/dstebila/draft-ietf-tls-hybrid-design

You can also send comments and feedback to tls@ietf.org<mailto:tls@ietf.org>.

Cheers and thank you,
Deirdre

_______________________________________________
TLS mailing list -- tls@ietf.org<mailto:tls@ietf.org>
To unsubscribe send an email to tls-leave@ietf.org<mailto:tls-leave@ietf.org>