IETF Logo Mail Archive

[TLS] Re: WG Last Call: draft-ietf-tls-mlkem-05 (Ends 2025-11-26)

Wang Guilin <Wang.Guilin@huawei.com> Wed, 26 November 2025 01:37 UTC

Return-Path: <Wang.Guilin@huawei.com>
X-Original-To: tls@mail2.ietf.org
Delivered-To: tls@mail2.ietf.org
Received: from localhost (localhost [127.0.0.1]) by mail2.ietf.org (Postfix) with ESMTP id 65CBD90B1FF8; Tue, 25 Nov 2025 17:37:27 -0800 (PST)
X-Virus-Scanned: amavisd-new at ietf.org
X-Spam-Flag: NO
X-Spam-Score: -3.627
X-Spam-Level:
X-Spam-Status: No, score=-3.627 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, INVALID_MSGID=0.568, RCVD_IN_DNSWL_MED=-2.3, RCVD_IN_MSPIKE_H4=0.001, RCVD_IN_MSPIKE_WL=0.001, RCVD_IN_VALIDITY_RPBL_BLOCKED=0.001, RCVD_IN_VALIDITY_SAFE_BLOCKED=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail2.ietf.org ([166.84.6.31]) by localhost (mail2.ietf.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id lsnJ1UQ4--yF; Tue, 25 Nov 2025 17:37:26 -0800 (PST)
Received: from frasgout.his.huawei.com (frasgout.his.huawei.com [185.176.79.56]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by mail2.ietf.org (Postfix) with ESMTPS id 2D28590B1EDF; Tue, 25 Nov 2025 17:37:10 -0800 (PST)
Received: from mail.maildlp.com (unknown [172.18.186.31]) by frasgout.his.huawei.com (SkyGuard) with ESMTPS id 4dGMbW2rNTzHnGkQ; Wed, 26 Nov 2025 09:36:23 +0800 (CST)
Received: from kwepemh500011.china.huawei.com (unknown [7.202.181.142]) by mail.maildlp.com (Postfix) with ESMTPS id CFBAA1402ED; Wed, 26 Nov 2025 09:37:08 +0800 (CST)
Received: from sinpeml500011.china.huawei.com (7.188.194.65) by kwepemh500011.china.huawei.com (7.202.181.142) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.2.1544.11; Wed, 26 Nov 2025 09:37:06 +0800
Received: from sinpeml500009.china.huawei.com (7.188.194.209) by sinpeml500011.china.huawei.com (7.188.194.65) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.2.1544.11; Wed, 26 Nov 2025 09:37:05 +0800
Received: from sinpeml500009.china.huawei.com ([7.188.194.209]) by sinpeml500009.china.huawei.com ([7.188.194.209]) with mapi id 15.02.1544.011; Wed, 26 Nov 2025 09:37:05 +0800
From: Wang Guilin <Wang.Guilin@huawei.com>
To: Stephen Farrell <stephen.farrell@cs.tcd.ie>, Sean Turner <sean@sn3rd.com>, "draft-ietf-tls-mlkem@ietf.org" <draft-ietf-tls-mlkem@ietf.org>, "tls-chairs@ietf.org" <tls-chairs@ietf.org>, "tls@ietf.org" <tls@ietf.org>
Thread-Topic: [TLS] Re: WG Last Call: draft-ietf-tls-mlkem-05 (Ends 2025-11-26)
Thread-Index: AQHcToaSmmvFV1bCDUmP4ciylYrHtrUETUqt
Date: Wed, 26 Nov 2025 01:37:05 +0000
Message-ID: BFD3A6BD-241A-4825-9DDF-502514E3C43D
References: <176236867319.904123.10146982018394612684@dt-datatracker-5df8666cb-7l4w5>,<bc79d0a8-ff81-4b02-aca0-4221ad6a8fd0@cs.tcd.ie>
In-Reply-To: <bc79d0a8-ff81-4b02-aca0-4221ad6a8fd0@cs.tcd.ie>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
Content-Type: multipart/alternative; boundary="_000_BFD3A6BD241A48259DDF502514E3C43D_"
MIME-Version: 1.0
Message-ID-Hash: AXSU5STUGKHHLRTCVDJM4ULWF6ICXMUN
X-Message-ID-Hash: AXSU5STUGKHHLRTCVDJM4ULWF6ICXMUN
X-MailFrom: Wang.Guilin@huawei.com
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-tls.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: Wang Guilin <Wang.Guilin@huawei.com>
X-Mailman-Version: 3.3.9rc6
Precedence: list
Subject: [TLS] Re: WG Last Call: draft-ietf-tls-mlkem-05 (Ends 2025-11-26)
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls/ZkQWiPGn54lY3-QdgvLnMy5DL14>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Owner: <mailto:tls-owner@ietf.org>
List-Post: <mailto:tls@ietf.org>
List-Subscribe: <mailto:tls-join@ietf.org>
List-Unsubscribe: <mailto:tls-leave@ietf.org>

+1

Stephen's idea is nice, I think. Giving some explanations on hybrid vs pure PQ is neccesary. TLS IANA registration does show the recommendation from the WG, but not all RFC readers know this well.

Personaly, I like hybrid solutions but can live for pure PQ ones for limited cases.

Guilin


发件人:Stephen Farrell <stephen.farrell@cs.tcd.ie<mailto:stephen.farrell@cs.tcd.ie>>
收件人:Sean Turner <sean@sn3rd.com<mailto:sean@sn3rd.com>>;draft-ietf-tls-mlkem@ietf.org <draft-ietf-tls-mlkem@ietf.org<mailto:draft-ietf-tls-mlkem@ietf.org>>;tls-chairs@ietf.org <tls-chairs@ietf.org<mailto:tls-chairs@ietf.org>>;tls@ietf.org <tls@ietf.org<mailto:tls@ietf.org>>
时 间:2025-11-06 03:01:20
主 题:[TLS] Re: WG Last Call: draft-ietf-tls-mlkem-05 (Ends 2025-11-26)


I re-read the document. It has zero commentary on the issues about
hybrids vs. pure PQ. It may be hard to reach rough consensus on what
to say about that, but it is a topic where people have significantly
different opinions, so I think we ought say something, for example,
along the lines of, "At the time of writing a significant number of
knowledgeable people consider it better to deploy hybrid KEMS, while
some do dispute that. Opinions may change over time." I'd be happy
but surprised if the WG had consensus to add such text, but we
should. Absent that, I think producing an RFC based on this draft
provides a misleading signal to the community.

Also - what happened to the adopt-but-park plan? Did that get lost
in the fog of appeals?

Cheers,
S.

On 05/11/2025 18:51, Sean Turner via Datatracker wrote:
>
> Subject: WG Last Call: draft-ietf-tls-mlkem-05 (Ends 2025-11-26)
>
> This message starts a 3-week WG Last Call for this document.
>
> Abstract:
>     This memo defines ML-KEM-512, ML-KEM-768, and ML-KEM-1024 as
>     NamedGroups and and registers IANA values in the TLS Supported Groups
>     registry for use in TLS 1.3 to achieve post-quantum (PQ) key
>     establishment.
>
> File can be retrieved from:
> https://datatracker.ietf.org/doc/draft-ietf-tls-mlkem/
>
> Please review and indicate your support or objection to proceed with the
> publication of this document by replying to this email keeping tls@ietf.org
> in copy. Objections should be motivated and suggestions to resolve them are
> highly appreciated.
>
> Authors, and WG participants in general, are reminded again of the
> Intellectual Property Rights (IPR) disclosure obligations described in BCP 79
> [1]. Appropriate IPR disclosures required for full conformance with the
> provisions of BCP 78 [1] and BCP 79 [2] must be filed, if you are aware of
> any. Sanctions available for application to violators of IETF IPR Policy can
> be found at [3].
>
> Thank you.
>
> [1] https://datatracker.ietf.org/doc/bcp78/
> [2] https://datatracker.ietf.org/doc/bcp79/
> [3] https://datatracker.ietf.org/doc/rfc6701/
>
>
>
> _______________________________________________
> TLS mailing list -- tls@ietf.org
> To unsubscribe send an email to tls-leave@ietf.org

v2.37.1 | Report a Bug | By Email | System Status