[TLS] Re: PQ Cipher Suite I-Ds: adopt or not?
"Scott Fluhrer (sfluhrer)" <sfluhrer@cisco.com> Tue, 24 December 2024 17:47 UTC
Return-Path: <sfluhrer@cisco.com>
X-Original-To: tls@ietfa.amsl.com
Delivered-To: tls@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 92D92C14F6FA for <tls@ietfa.amsl.com>; Tue, 24 Dec 2024 09:47:34 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -9.641
X-Spam-Level:
X-Spam-Status: No, score=-9.641 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.148, DKIMWL_WL_MED=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, HTTPS_HTTP_MISMATCH=0.1, RCVD_IN_DNSWL_BLOCKED=0.001, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_VALIDITY_RPBL_BLOCKED=0.001, RCVD_IN_VALIDITY_SAFE_BLOCKED=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_NONE=0.001, T_SCC_BODY_TEXT_LINE=-0.01, T_SPF_HELO_PERMERROR=0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id T8jRfYTfjdCu for <tls@ietfa.amsl.com>; Tue, 24 Dec 2024 09:47:30 -0800 (PST)
Received: from alln-iport-3.cisco.com (alln-iport-3.cisco.com [173.37.142.90]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E7071C14F614 for <tls@ietf.org>; Tue, 24 Dec 2024 09:47:29 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cisco.com; i=@cisco.com; l=30282; q=dns/txt; s=iport; t=1735062450; x=1736272050; h=from:to:subject:date:message-id:references:in-reply-to: mime-version; bh=H23YZ6Ak8W4b+nV1kWjs1A6ZFcv/cZe2AcWke6PyC0k=; b=P8UiCCjxtPEvGldlB5/vvYLNYSIf4RgVsoYMDyq0RUFV8xg9nFzmP7iP coSGpF0Opi70UEfV9NUUByZRRFZVLHMBFhn3rgc/HGPZvJV+IJR+SZK5I me4R5fotTigmro+pZgvO6BVjTjmoTx8NDjuSrfMFa5ZohpHRmpZGwPaPj c=;
X-CSE-ConnectionGUID: ka5MTh6tTei4nMIJOD/KiQ==
X-CSE-MsgGUID: 5F7v8BfZQTms+dXWomNbqQ==
X-IPAS-Result: A0A5AABa8mpn/5QQJK1aHAEBAQEBAQcBARIBAQQEAQFlgRoHAQELAYFAMSooB3aBHEiEVYNMA4ROX4ZRgiEDi2OSNRSBEQNWDwEBAQ0COQsEAQGFBwIWilcCJjQJDgECBAEBAQEDAgMBAQEBAQEBAQEBAQsBAQUBAQECAQcFgQ4ThXsNhloBAQEBAxILBgohIBsCAQgRAwEBAQEnAwICAh4QARQJCAIECAsIFQQBgmCCHBQDMQMBEKJsAYFAAooreoEygQGDWgIGAQkDDy/ZDQ2CUwaBSAGILx4BKoEyAg6BdoIkhFwnG4FJRIEVQoJoPoIfQgEBAQEBgSgBEgEjFQkWgyU6gi8EggUCAhIbHYEYOHovAYETAgICAgICAgICAgICAgKBDYEMggOBe2ECDQOBaViBB4FcgQyCIgYphB2CXYMdhmlSdSIDJjMsAVUTFwsHBYEpHysDgRWCBYFbBTZHOQGCEGlJNwINAjaCIHyCTYJbgj6EYYRVhhmCF4FrAwMWE4IGHUADC209NxQbBQSBNQWbWAE9RgFGgwYLgR8nA1ECIoE1BwYHHSoLCQIvkmQdg1iLS6J5cQqEGowYjzeGLReEBI0FmGNmmHuOAoQFkVIEhSQCBAIEBQIPAQEGgWc8DVxwcBU7gmdSGQ+Nfy4WgQwBAgEEBIdUgkGuMngCATkCBwEKAQEDCZEsAQE
IronPort-PHdr: A9a23:E6GRsxeIzvGvu0lsX2/3xb4ClGM/gIqcDmcuAtIPkblCdOGk55v9e ReZ7vR2h1iPVoLeuLpIiOvT5rjpQndIoY2Av3YLbIFWWlcbhN8XkQ0tDI/NCUDyIPPwKS1vN M9DT1RiuXq8NCBo
IronPort-Data: A9a23:pA+FOKJD4hlj4xTzFE+RlZQlxSXFcZb7ZxGr2PjKsXjdYENS0mRSy mAbXG7QPPeLMDCjKYsjboW190pUvMWAydUwT1Yd+CA2RRqmiyZq6fd1j6vUF3nPRiEWZBs/t 63yUvGZcoZsCCea/kr1WlTYhSEU/bmSQbbhA/LzNCl0RAt1IA8skhsLd9QR2uaEuvDnRVrX0 T/Oi5eHYgP8gWQoajh8B5+r8XuDgtyj4Fv0gXRmDRx7lAe2v2UYCpsZOZawIxPQKqFIHvS3T vr017qw+GXU5X8FUrtJRZ6iLyXm6paLVeS/oiI+t5qK23CulQRuukoPD8fwXG8M49m/c3+d/ /0W3XC4YV9B0qQhA43xWTEAe811FfUuFLMqvRFTvOTLp3AqfUcAzN1tBRwTAY1G5tp6AD1I0 N06DxxKTRG60rfeLLKTEoGAh+wqKM3teYdasXZ6wHSAVLAtQIvIROPB4towMDUY358VW62AI ZNHL2MzPHwsYDUXUrsTIIkwmPqonHTlWzZZs1mS46Ew5gA/ySQtiei9aoSMJYDiqcN9w2jHu DLs8VbAPhQBd9Cv9j2A1Hi1v7qa9c/8cMdIfFGizdZ2hEa7x2EPBlsRT1TTnBWioke6X9QaL wkf/TAj6PFrskeqVdL6GRa/pRZooyIhZjaZKMVjgCmlwavP6AHfDW8BJgOtovR/3CPqbVTGD mO0ou4=
IronPort-HdrOrdr: A9a23:IATUQqGOakfFQZ5PpLqFupLXdLJyesId70hD6qkvc203TiXIra CTdaogtCMc0AxhJ03I+ertBEDyewKjyXcV2/hdAV7MZnichILFFvAH0WKm+UydJ8SczJ8Q6U 4DSdkFNDSYNzET5qiKgnjcLz9j+qj7zEnCv5a5854Zd3ATV0gW1XYBNu/0KDwQeCB2QbACON 634M1BqzC8eXIRQPiaKxA+NdTrlpngrr6jRQQJKSIGxWC14A9A7oSULzGomjMlFx9fy7Yr9m bI1ybj4L+4jv29whjAk0fO8pV/grLau5V+Lf3JrvJQBiTniw6uaogkcaaFpioJrOam70tvuM XQoi0nI9945xrqDyCISFrWqkndOQQVmj3fIGyj8D7eSAvCNXYH4v969MFkm93img0dVZ9Hoe R2Nimixutq5Fv77VTADp7zJl5Xfo7emwt7rQbV5EYvCLc2eftfq5cS81hSF4pFFCXm6Jo/GO 0rF83E4u1KGGnqJ0wxk1MftuBEZE5DVyuuUwwHoIiYwjJWlHd2ww8Rw9EehG4J8NY4R4Nf7+ rJP6x0nPUWJ/VmJ55VFaMEW4+6G2bNSRXDPCabJknmDrgOPzbIp4Ts6Ls46em2cNgDzYc0mp 7GTFRE3FRCMH7GGImLxtlG4xrNSGKyUXDkzdxf/YFwvvnmSL/iIUS4OScTegub0oEi6+HgKo OO0chtcozexEPVaPR04zE=
X-Talos-CUID: 9a23:EUt/vGPrlybwXO5DWyA60XIURNwZf3yBylLxAWiUTkVocejA
X-Talos-MUID: 9a23:V/24BQupQXzWE/PNHc2n2R89KpdC7ZaXNEUW0pk2hM6BEyZpAmLI
X-IronPort-Anti-Spam-Filtered: true
Received: from alln-l-core-11.cisco.com ([173.36.16.148]) by alln-iport-3.cisco.com with ESMTP/TLS/TLS_AES_256_GCM_SHA384; 24 Dec 2024 17:47:28 +0000
Received: from rcdn-opgw-3.cisco.com (rcdn-opgw-3.cisco.com [72.163.7.164]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by alln-l-core-11.cisco.com (Postfix) with ESMTPS id DDD25180001EE for <tls@ietf.org>; Tue, 24 Dec 2024 17:47:28 +0000 (GMT)
X-CSE-ConnectionGUID: c+f4foo/RYu4PRaqZn7T3g==
X-CSE-MsgGUID: 96UMGE4BSjWP6tpgUyhPqg==
Authentication-Results: rcdn-opgw-3.cisco.com; dkim=pass (signature verified) header.i=@cisco.com
X-IronPort-AV: E=Sophos;i="6.12,260,1728950400"; d="scan'208,217";a="30873109"
Received: from mail-dm6nam12lp2176.outbound.protection.outlook.com (HELO NAM12-DM6-obe.outbound.protection.outlook.com) ([104.47.59.176]) by rcdn-opgw-3.cisco.com with ESMTP/TLS/TLS_AES_256_GCM_SHA384; 24 Dec 2024 17:47:28 +0000
ARC-Seal: i=1; a=rsa-sha256; s=arcselector10001; d=microsoft.com; cv=none; b=inAZm0EVzY4bDIb2vkWM9TKG8w6FdnFQc9W/ruGHzodrUoJcxPYXEyNilTNJPB5dJ1/PsSaqWH6/5BrYk2NdSZQTQxotdMb/oS4RvVvDsOC/qzGWtcN96iyp+fxZmOY4h+BKdhJ3XHEhf82KIyAO63Yh3OWjGGmuRjpHUKZIP1XtyXMj12pAV49jk0CY0+O/EULx/E5oRSJcbnnnJccBfjaWdBQi3sHZJelYMgQqWXBzGnuSqtpskub1js9pBIlGE9DSoOVuLJ7KBURcAbM2GUH5tm+3D54aFthEM4jZaeP7/IvsoN2UhK58oJFPSrxOxvsuB5uT/a90j4J8GgW12Q==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector10001; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=H23YZ6Ak8W4b+nV1kWjs1A6ZFcv/cZe2AcWke6PyC0k=; b=ntWTpXDVR5FIXJFQMvSFPHYSTNkyngtnbDunhksL5I6Kb3KPjdzNISc4AX7wb538wftzmC5NGn9h7FjXlVSd9M/PAvphW3GC9Br9nxt2HCMhEj8mDXEhIB6ThTqV3Qx6868qKrExRO+891/8bmoEcOphIeB7aY0XIzSpHQ+eMba54HDetCvv9Pjv1Dwx8fY0heCt+21FZcfZgtEIfQlm+dE6eCUVNX/Yx7BdQBaDxftVcL14bN5ZtXNnMMjeXu3ULnnKNTpBApSnShRsyRruQ8hIJBAER5HcAwfGMYhNRaGB+CwW5fXsxlcUzjjJTODGZJhEQz6DwXg+qKFbdVFiLQ==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cisco.com; dmarc=pass action=none header.from=cisco.com; dkim=pass header.d=cisco.com; arc=none
Received: from CH0PR11MB5444.namprd11.prod.outlook.com (2603:10b6:610:d3::13) by CH3PR11MB8517.namprd11.prod.outlook.com (2603:10b6:610:1ad::10) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.8293.14; Tue, 24 Dec 2024 17:47:23 +0000
Received: from CH0PR11MB5444.namprd11.prod.outlook.com ([fe80::5f89:ba81:ff70:bace]) by CH0PR11MB5444.namprd11.prod.outlook.com ([fe80::5f89:ba81:ff70:bace%6]) with mapi id 15.20.8272.013; Tue, 24 Dec 2024 17:47:22 +0000
From: "Scott Fluhrer (sfluhrer)" <sfluhrer@cisco.com>
To: TLS List <tls@ietf.org>
Thread-Topic: [TLS] Re: PQ Cipher Suite I-Ds: adopt or not?
Thread-Index: AQHbUAjo8qTX2r56Ak6DdyxeGQ87urLpeheAgAmhBQCAAMsogIAAUM+wgAArfICAAVNiIA==
Date: Tue, 24 Dec 2024 17:47:22 +0000
Message-ID: <CH0PR11MB5444A0C519D77403AEAE4C21C1032@CH0PR11MB5444.namprd11.prod.outlook.com>
References: <10A06A24-8126-47B9-B187-55F4288DBBF2@sn3rd.com> <ea32ebd6-e57d-4da6-9250-a3e4d75d11a0@betaapp.fastmail.com> <CAChr6SzmGOpKws0L=BQAiNXvx3wv7OOoWTi6A30BQ0mXd+kjrg@mail.gmail.com> <CAOp4FwTdWxGkLLnYq8f6a6wzoa4_9F9_su=LTFYSpMXVKBdbuw@mail.gmail.com> <GVXPR07MB96781324AB7FBB6C7C5D4BB989022@GVXPR07MB9678.eurprd07.prod.outlook.com> <CH0PR11MB544478E32D038952CBDA98C9C1022@CH0PR11MB5444.namprd11.prod.outlook.com> <CAChr6SxxDv-4Zoh5NVawrUt8eQ4mVmMUSWmZQJ_Mpj3wncsYqA@mail.gmail.com>
In-Reply-To: <CAChr6SxxDv-4Zoh5NVawrUt8eQ4mVmMUSWmZQJ_Mpj3wncsYqA@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: CH0PR11MB5444:EE_|CH3PR11MB8517:EE_
x-ms-office365-filtering-correlation-id: c3aee572-7666-46ff-6fd7-08dd24430575
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;ARA:13230040|4022899009|1800799024|376014|366016|10070799003|7053199007|8096899003|38070700018;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255;CTRY:;LANG:en;SCL:1;SRV:;IPV:NLI;SFV:NSPM;H:CH0PR11MB5444.namprd11.prod.outlook.com;PTR:;CAT:NONE;SFS:(13230040)(4022899009)(1800799024)(376014)(366016)(10070799003)(7053199007)(8096899003)(38070700018);DIR:OUT;SFP:1101;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: N0zx/1djCWfFMVqKq/w+C4NhbiOSBeiGJDIGPKLJsfasT7qdfaz28qyRR5i/ngLVMJuqCllZjnXuMf+eSRymTrFzJOsBrc+y8RjZ3Ct9rsw5A2U3bH6HjsjJlzzM2cdcHXXBTZNocGuJmByyj1ru9KOmiJDrsLMkT9w2M0CmLKPDNMsoYOWA3hr4Mmqnqwb/TuPgfar4V1Bf7/zVnGW8YDrrTFtOaw16pMaaidoW/7QA8Dnu9TQnJsIRnZW5AP2580kNZO8ZgKRtGiGEG9SockDWMsEhtLeQjnXGLyPVgtHZmpxGBReOLydSbQYJEYmoBg98QQn+GeJhykv3xJpBp5SmH+m8Ec3pDzz0gkGvGppwHCS5ZC+5VtkdFjYjpVgICEqDQqyzfeEceXuaehk6FQPpHOpuq518YLj/oeQqp5ZdGUDb/yKHCRSCGIFney8OcjAaEihJmyP3OpSyPm+NaDca5FDB4K1mt5oDkfgsa9bfz18poHKp1MzVDxWGBnqShdVyKq0Tzl0rIj5DlCzGeCzpQNQtesxQam7FcBAxZBFHRPhpp8B5XJA4fBtIB9fIh8pk507CKSYX8TYoA8FKPk+DqFe2PxC3ctk+Cr3gMzZjwDCMS2jb9AxoI2zve14b+HI9KpBxufpGAniDKJ2xR+AhQKp91x29un8TKtlinWPOpL7h+IqhdcwCPpQ4wNQeV93InToAiHmC56zAGS7ZBdvtTp8WPNy2Q4/92lgdYuOfUsy41U56Niro33Ywk7BWW7+mgqcXTDb+cC8KlruBNeGfgwGz8LmMUyQlsPU6FkwTDzo+mh+e5EPOPkI4Nj6msSXkdtZbQa4GYr1Y+VdvM73KUu968VgOUfpz+9HYwsm9dmDZgnsFiWuUKyDRpFy0v6nlsjX6YzFkJTRInt8F+f3A/cp8Rl9k9FjxbgwoNODFc+PUtzV/WVPhy8DPb7H+svSEveIgEHxN4vL0zyyrn8cu756NKNDEgM/qUqG6KEtkGNTNRbb+qbIYG5fik9e8jbW65luEkxAwXBgUhIBXrTVCGVeDtDbNRZCQKUn0lzEmj8rTpomez42qALpU5pmpARpl2HQM1pdFlqQFjmzq3TMPuSaQ4l9WBT5A6ZIaVtjE6XiTSpVLYHItQ2oE5WPfl32GOEu/POThwGLOHrtGxKeZe5TN+tlX80jOA8Zr6Au+dtL3ALcjMGZVgqHkjakr6cwIP+pjE6ddfxAicKiTzb2LE0TlDBM90JmC/kx1Ywb36IaNqiN83BMy0/eemlnrCgE9BOoDHZ/+OEjg70Q/UHMJj96ADYo/1K35Fhh9jiebYcHWe3qlatl0r65UEpwYSVCsAzY/g0XAlccEeLbdckUWtXrRzd+23CSoMXwoDbxezqyCOI2CkVnlEp2Y+eg5s/4tqcivLIHVUP1zD+XfMtxLo3rPszKc7VA2i9mrR9qoEoCjEDzcxn+xJ1hBka+dlHeAxPveQHCfngSbxGxdKz6njhBeEw0u3FuTRWKPUWbbXd38tEN6Ve3/c9G/P3ELYecoYq3S+gatXkLjGeKtfaY/b4ohwou8nY4kJV2uOUXHfzT51VHN+cG0Fh3KYqmLr+/gphHXbjuYNng3p+RTEKbp/N9hjW/l2yEKVQsCPnJabBu50bHsAaYY699Ky8CE
Content-Type: multipart/alternative; boundary="_000_CH0PR11MB5444A0C519D77403AEAE4C21C1032CH0PR11MB5444namp_"
MIME-Version: 1.0
X-OriginatorOrg: cisco.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: CH0PR11MB5444.namprd11.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: c3aee572-7666-46ff-6fd7-08dd24430575
X-MS-Exchange-CrossTenant-originalarrivaltime: 24 Dec 2024 17:47:22.9291 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 5ae1af62-9505-4097-a69a-c1553ef7840e
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: Fje6Hi4kRf68PXTKu0Wx3UXdClkYYYmDEFejT4YI99MrVzYCU80FOczmzajBzuj8P36rlreyPQQ7NO1Hsg40Gw==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: CH3PR11MB8517
X-Outbound-SMTP-Client: 72.163.7.164, rcdn-opgw-3.cisco.com
X-Outbound-Node: alln-l-core-11.cisco.com
Message-ID-Hash: XSZ5WLGKAOLZSOOQSGV4NCA7JBCL3TWO
X-Message-ID-Hash: XSZ5WLGKAOLZSOOQSGV4NCA7JBCL3TWO
X-MailFrom: sfluhrer@cisco.com
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-tls.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
X-Mailman-Version: 3.3.9rc6
Precedence: list
Subject: [TLS] Re: PQ Cipher Suite I-Ds: adopt or not?
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls/P2dTv_sYhraZRq5kcNmRGs9r9u0>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Owner: <mailto:tls-owner@ietf.org>
List-Post: <mailto:tls@ietf.org>
List-Subscribe: <mailto:tls-join@ietf.org>
List-Unsubscribe: <mailto:tls-leave@ietf.org>
I would humbly disagree. I believe this working group has enough bandwidth to handle a couple of postquantum drafts (along with all the other drafts the WG is working on). I believe that this is especially true because we pretty much agree on the contents – what we have disagreements about is whether or not to endorse those contents. That said, if the working group decided to delay the hybrid signature drafts, I wouldn’t complain too loudly – those would also depend on the work in the LAMPS working group, and so they’re less likely to be immediately useful. From: Rob Sayre <sayrer@gmail.com> Sent: Monday, December 23, 2024 4:26 PM To: Scott Fluhrer (sfluhrer) <sfluhrer@cisco.com> Cc: John Mattsson <john.mattsson=40ericsson.com@dmarc.ietf.org>; Loganaden Velvindron <loganaden@gmail.com>; TLS List <tls@ietf.org> Subject: Re: [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? Hi all, since I am still on the CC list, I took the question to be about how to organize the work. If everything is a priority, there are no priorities. That's why I want to do this one (and only this one), first: https://datatracker.ietf.org/doc/draft-kwiatkowski-tls-ecdhe-mlkem/ Some of the other ones look like they could benefit from waiting, in the sense that contentious points might resolve themselves over time. thanks, Rob On Mon, Dec 23, 2024 at 11:00 AM Scott Fluhrer (sfluhrer) <sfluhrer@cisco.com<mailto:sfluhrer@cisco.com>> wrote: TL;DR: Historical notes: not important for the current discussion. To be clear about whether Cisco (or actually, me – I don’t actually speak for Cisco, but I like to think they listen to my advice) preferred NTRU or NTRU Prime – I actually didn’t have a strong opinion. I advocated NTRU because it made it to round 3 (rather than stopping at round 2 as NTRUPrime did), and so it appeared to be a bit more mature (that is, having more cryptanalysis). If there was a general consensus towards NTRU Prime, we would have happily gone along. Other than that, John summarized the situation well – Cisco (or actually, Cisco’s lawyers) are happy with how the IPR issues around ML-KEM were resolved and are going forward with that (with both pure and hybrid). From: John Mattsson <john.mattsson=40ericsson.com@dmarc.ietf.org<mailto:40ericsson.com@dmarc.ietf.org>> Sent: Monday, December 23, 2024 9:02 AM To: Loganaden Velvindron <loganaden@gmail.com<mailto:loganaden@gmail.com>>; Rob Sayre <sayrer@gmail.com<mailto:sayrer@gmail.com>> Cc: TLS List <tls@ietf.org<mailto:tls@ietf.org>> Subject: [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? The thread starts with “Due to this, Cisco has preliminarily considered Kyber unusable” This is obviously not true anymore as Scott very clearly stated that Cisco wants to see both hybrid and non-hybrid ML-KEM standardized, and that they want to implement and ship both. I agree with Scott. Also, I think Cisco was quite clear on that if the IPR uncertainties regarding ML-KEM was not addresses, which they were, they wanted NTRU, not NTRU Prime https://datatracker.ietf.org/doc/html/draft-fluhrer-cfrg-ntru-01 Mozilla is obviously shipping ML-KEM in Firefox. I am an avid user of Firefox, and I am happy to see X25519MLKEM768 on more and more webpages. Cheers, John From: Loganaden Velvindron <loganaden@gmail.com<mailto:loganaden@gmail.com>> Date: Monday, 23 December 2024 at 02:56 To: Rob Sayre <sayrer@gmail.com<mailto:sayrer@gmail.com>> Cc: TLS List <tls@ietf.org<mailto:tls@ietf.org>> Subject: [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? If there are some patent concerns regarding ML-KEM going forward, Would considering NTRU-Prime as a less risky option for TLS Kex? (Please see this thread: https://eur02.safelinks.protection.outlook.com/?url=https%3A%2F%2Fdiscourse.mozilla.org%2Ft%2Fpatent-license-for-kyber%2F128114&data=05%7C02%7Cjohn.mattsson%40ericsson.com%7Cb49fe1a69fb24e159b5808dd22f5004a%7C92e84cebfbfd47abbe52080c6b87953f%7C0%7C0%7C638705157893766686%7CUnknown%7CTWFpbGZsb3d8eyJFbXB0eU1hcGkiOnRydWUsIlYiOiIwLjAuMDAwMCIsIlAiOiJXaW4zMiIsIkFOIjoiTWFpbCIsIldUIjoyfQ%3D%3D%7C0%7C%7C%7C&sdata=Fi1LM1Q49lgZfAwBOQf5HhvEXZccY%2Bjk9VXHg6yHEaU%3D&reserved=0)<https://discourse.mozilla.org/t/patent-license-for-kyber/128114> There is a section about patents here: https://eur02.safelinks.protection.outlook.com/?url=https%3A%2F%2Fntruprime.cr.yp.to%2Fwarnings.html&data=05%7C02%7Cjohn.mattsson%40ericsson.com%7Cb49fe1a69fb24e159b5808dd22f5004a%7C92e84cebfbfd47abbe52080c6b87953f%7C0%7C0%7C638705157893782148%7CUnknown%7CTWFpbGZsb3d8eyJFbXB0eU1hcGkiOnRydWUsIlYiOiIwLjAuMDAwMCIsIlAiOiJXaW4zMiIsIkFOIjoiTWFpbCIsIldUIjoyfQ%3D%3D%7C0%7C%7C%7C&sdata=T%2B2Ggx2ZxAV%2BCwqSvtrUlptlGHO9iYCFpCYf4Cq3xlA%3D&reserved=0<https://ntruprime.cr.yp.to/warnings.html> On Tue, 17 Dec 2024 at 02:53, Rob Sayre <sayrer@gmail.com<mailto:sayrer@gmail.com>> wrote: > > Hi, > > I only support an adoption call for this one: > > https://eur02.safelinks.protection.outlook.com/?url=https%3A%2F%2Fdatatracker.ietf.org%2Fdoc%2Fdraft-kwiatkowski-tls-ecdhe-mlkem%2F&data=05%7C02%7Cjohn.mattsson%40ericsson.com%7Cb49fe1a69fb24e159b5808dd22f5004a%7C92e84cebfbfd47abbe52080c6b87953f%7C0%7C0%7C638705157893792936%7CUnknown%7CTWFpbGZsb3d8eyJFbXB0eU1hcGkiOnRydWUsIlYiOiIwLjAuMDAwMCIsIlAiOiJXaW4zMiIsIkFOIjoiTWFpbCIsIldUIjoyfQ%3D%3D%7C0%7C%7C%7C&sdata=D3lsZ10f5cHom9RHdadaPqHt0bSWb6Q6Cz53MBbq1PM%3D&reserved=0<https://datatracker.ietf.org/doc/draft-kwiatkowski-tls-ecdhe-mlkem/> > > The other ones seem like they could wait, carefully noting that postponement is not a "no" vote. > > thanks, > Rob > > > > > On Mon, Dec 16, 2024 at 2:21 PM Martin Thomson <mt@lowentropy.net<mailto:mt@lowentropy.net>> wrote: >> >> On Tue, Dec 17, 2024, at 08:59, Sean Turner wrote: >> > Is the WG consensus to run four separate adoption calls for the >> > individual I-Ds in question? >> >> I would like to see adoption calls for the key exchange modes and not the signature modes. The key exchange documents are both more ready and more urgent. >> >> The question of whether to set Recommended = Y for any particular choice is separable and can wait. Keep things as Recommended = N for now. >> >> _______________________________________________ >> TLS mailing list -- tls@ietf.org<mailto:tls@ietf.org> >> To unsubscribe send an email to tls-leave@ietf.org<mailto:tls-leave@ietf.org> > > _______________________________________________ > TLS mailing list -- tls@ietf.org<mailto:tls@ietf.org> > To unsubscribe send an email to tls-leave@ietf.org<mailto:tls-leave@ietf.org> _______________________________________________ TLS mailing list -- tls@ietf.org<mailto:tls@ietf.org> To unsubscribe send an email to tls-leave@ietf.org<mailto:tls-leave@ietf.org>
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? Salz, Rich
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? Kampanakis, Panos
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? Martin Thomson
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? Rob Sayre
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? Stephen Farrell
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? Kris Kwiatkowski
- [TLS] Re: [EXT] PQ Cipher Suite I-Ds: adopt or no… Blumenthal, Uri - 0553 - MITLL
- [TLS] Re: [EXTERNAL] PQ Cipher Suite I-Ds: adopt … Andrei Popov
- [TLS] PQ Cipher Suite I-Ds: adopt or not? Sean Turner
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? Russ Housley
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? John Mattsson
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? Watson Ladd
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? Sean Turner
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? D. J. Bernstein
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? Bas Westerbaan
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? Alicja Kario
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? Sean Turner
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? Sean Turner
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? D. J. Bernstein
- [TLS] Re: [EXTERNAL] Re: PQ Cipher Suite I-Ds: ad… Andrei Popov
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? John Mattsson
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? D. J. Bernstein
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? Salz, Rich
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? D. J. Bernstein
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? D. J. Bernstein
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? Salz, Rich
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? Watson Ladd
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? Watson Ladd
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? Loganaden Velvindron
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? tirumal reddy
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? Kris Kwiatkowski
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? Loganaden Velvindron
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? Bas Westerbaan
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? Eric Rescorla
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? S Moonesamy
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? S Moonesamy
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? John Mattsson
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? Scott Fluhrer (sfluhrer)
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? Rob Sayre
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? Dan Harkins
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? Sean Turner
- [TLS] Re: [EXT] Re: PQ Cipher Suite I-Ds: adopt o… Blumenthal, Uri - 0553 - MITLL
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? Scott Fluhrer (sfluhrer)
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? Eric Rescorla
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? Eric Rescorla
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? Alicja Kario
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? Bas Westerbaan
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? D. J. Bernstein
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? Salz, Rich
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? Dan Harkins
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? Bas Westerbaan
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? Sean Turner