IETF Logo Mail Archive

[TLS] Re: Fwd: New Version Notification for draft-barnes-tls-this-could-have-been-an-email-00.txt

Viktor Dukhovni <ietf-dane@dukhovni.org> Wed, 25 February 2026 05:51 UTC

Return-Path: <ietf-dane@dukhovni.org>
X-Original-To: tls@mail2.ietf.org
Delivered-To: tls@mail2.ietf.org
Received: from localhost (localhost [127.0.0.1]) by mail2.ietf.org (Postfix) with ESMTP id C97A9BDA5065 for <tls@mail2.ietf.org>; Tue, 24 Feb 2026 21:51:24 -0800 (PST)
X-Virus-Scanned: amavisd-new at ietf.org
X-Spam-Flag: NO
X-Spam-Score: -4.398
X-Spam-Level:
X-Spam-Status: No, score=-4.398 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_MED=-2.3, RCVD_IN_VALIDITY_CERTIFIED_BLOCKED=0.001, RCVD_IN_VALIDITY_RPBL_BLOCKED=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: mail2.ietf.org (amavisd-new); dkim=pass (1024-bit key) header.d=dukhovni.org
Received: from mail2.ietf.org ([166.84.6.31]) by localhost (mail2.ietf.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id MyDcLl84IaFD for <tls@mail2.ietf.org>; Tue, 24 Feb 2026 21:51:24 -0800 (PST)
Received: from chardros.imrryr.org (chardros.imrryr.org [144.6.86.210]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by mail2.ietf.org (Postfix) with ESMTPS id E016EBDA5060 for <tls@ietf.org>; Tue, 24 Feb 2026 21:51:23 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=dukhovni.org; i=@dukhovni.org; q=dns/txt; s=f8320d6e; t=1771998680; h=date : from : to : subject : message-id : reply-to : references : mime-version : content-type : in-reply-to : content-transfer-encoding : from; bh=EHWD2srJhJoCob5dCadr624uGWrCXyTIkSiGrKn/5vs=; b=B79q2WW/p/b9a1YtvBpRa3FdeHcOwM+P3hj06EMRgkNi7e14+HV7o2HD212/vD5fvcelm h9kG/Ki6l049w5ow9vcKnPKzbk5D3OohnWDorB8pWeDZyFNYLLSaEn/Zq5eUof1DAxJO2ID Cph7Zghx9pidgKHTRfD8kVmtlOkuDTc=
Received: by chardros.imrryr.org (Postfix, from userid 1000) id D6507938E14; Wed, 25 Feb 2026 16:51:20 +1100 (AEDT)
Date: Wed, 25 Feb 2026 16:51:20 +1100
From: Viktor Dukhovni <ietf-dane@dukhovni.org>
To: tls@ietf.org
Message-ID: <aZ6N2LsudVF3ZMLe@chardros.imrryr.org>
References: <CABcZeBNHgKHqWmsT=0a=kBRbg++HiuG7t5CayLDCbw7QcyYuTA@mail.gmail.com> <02CC9B16-112B-4364-A8A5-C04A261553A5@symbolic.software> <e48c1ea8667a71a71a483d51b4d4835fe9b88f4e.camel@aisec.fraunhofer.de> <579c10bc-6569-48e8-9c2a-ae70a1e3aee5@cs.tcd.ie> <aZ4Ihix3kTWRzhMe@faui48e.informatik.uni-erlangen.de> <aZ5hHiFM60zaboSU@chardros.imrryr.org> <CABcZeBOhA2W9NRzmDPQ=j6mxdSnxa4PcZqmcm6kMU6XzvjzKgQ@mail.gmail.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Disposition: inline
In-Reply-To: <CABcZeBOhA2W9NRzmDPQ=j6mxdSnxa4PcZqmcm6kMU6XzvjzKgQ@mail.gmail.com>
Mail-Followup-To: <tls@ietf.org>
Content-Transfer-Encoding: quoted-printable
Message-ID-Hash: FAHWGGG3SG3MOLX7WIQWPX3MVAGEBWKS
X-Message-ID-Hash: FAHWGGG3SG3MOLX7WIQWPX3MVAGEBWKS
X-MailFrom: ietf-dane@dukhovni.org
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-tls.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
X-Mailman-Version: 3.3.9rc6
Precedence: list
Reply-To: tls@ietf.org
Subject: [TLS] Re: Fwd: New Version Notification for draft-barnes-tls-this-could-have-been-an-email-00.txt
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls/d7F-ME8bX6uxpiv_SEjhCv2Mifg>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Owner: <mailto:tls-owner@ietf.org>
List-Post: <mailto:tls@ietf.org>
List-Subscribe: <mailto:tls-join@ietf.org>
List-Unsubscribe: <mailto:tls-leave@ietf.org>

On Tue, Feb 24, 2026 at 07:02:45PM -0800, Eric Rescorla wrote:

> > Nevertheless, the ISE published RFC8998.  If for some reason, we
> > collectively decide that non-hybrid MLKEM is so unpalatable that
> > even standards-track + Recommended=N is unacceptable, then I see
> > no reason why the ISE route would not be an option.
> >
> 
> Standards track is not on the table. This document is up for Informational.

Well, in that case from a "consumer" perspective, there's no disadvatage
in an ISE RFC.  It is then only the "producers" (IETF or ISE) that
have to face the difference.  Ceding the document to the ISE means:

    - The IETF does not need to spend time debating its content.
    - The IETF has less say about its content.

Two sides of the same coin.  Which is more important?  Influencing how
the algorithm is presented to its consumers, or disclaiming all
responsibility for how and whether it is consumed?

The practical impact is of either choice is marginal, but if one truly
believes that caveats are important and the codepoints should only be
used by those duly cautioned, then perhaps the IETF route has value,
if even if agreeing on the requisite language may be hard.

My take is that if the authors trim the document's attempt at soft
advocacy for use of non-hybrid ML-KEM, and just specify it clearly, and
also reflect the various community concerns in the security
conciderations, then the specification can be published as a sound basis
for interoperability, without the appearance that the IETF *endorsing*
choosing non-hybrid key agreement at this point in time.

-- 
    Viktor.  🇺🇦 Слава Україні!

v2.45.0 | Report a Bug | By Email | System Status