IETF Logo Mail Archive

[TLS] Re: [EXT] Re: WG Adoption Call for ML-KEM Post-Quantum Key Agreement for TLS 1.3

"Blumenthal, Uri - 0553 - MITLL" <uri@ll.mit.edu> Thu, 17 April 2025 18:03 UTC

Return-Path: <prvs=820212e46d=uri@ll.mit.edu>
X-Original-To: tls@mail2.ietf.org
Delivered-To: tls@mail2.ietf.org
Received: from localhost (localhost [127.0.0.1]) by mail2.ietf.org (Postfix) with ESMTP id 427EA1DBEBC3 for <tls@mail2.ietf.org>; Thu, 17 Apr 2025 11:03:07 -0700 (PDT)
X-Virus-Scanned: amavisd-new at ietf.org
X-Spam-Flag: NO
X-Spam-Score: -4.198
X-Spam-Level:
X-Spam-Status: No, score=-4.198 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3, RCVD_IN_VALIDITY_RPBL_BLOCKED=0.001, RCVD_IN_VALIDITY_SAFE_BLOCKED=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail2.ietf.org ([166.84.6.31]) by localhost (mail2.ietf.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id POUryLwoR0g9 for <tls@mail2.ietf.org>; Thu, 17 Apr 2025 11:03:06 -0700 (PDT)
Received: from MX2.LL.MIT.EDU (mx2.ll.mit.edu [129.55.12.51]) by mail2.ietf.org (Postfix) with ESMTP id CB6DA1DBEBBB for <tls@ietf.org>; Thu, 17 Apr 2025 11:03:06 -0700 (PDT)
Received: from LLEX2019-02.mitll.ad.local (llex2019-02.mitll.ad.local [172.25.4.98] (may be forged)) by MX2.LL.MIT.EDU (8.18.1.2/8.18.1.2) with ESMTPS id 53HI06te009473 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=FAIL); Thu, 17 Apr 2025 14:00:06 -0400
ARC-Seal: i=1; a=rsa-sha256; s=arcselector5401; d=microsoft.com; cv=none; b=heNIJ7K4N/wCIF598J9R2JYa2ZF/NDleD0fTco/uVhDDjfs7HtlgekpPQINm8qinyPriVmzfP6uqLXfcCcu0vy3Y42nHJhMnmgxn1FtRswxp8m5DdR+MEjBMeVykznaHvV0TscroV7Jzzap+tWultrifp2ShwX1N36WJ/R6xPuEMTvTthIKPEnzZkmM1jkKOKo98JXvkD0xypOSLQh8GtzSVW4Qh/ziBX4rsfgg6r9A9omBDdVz/en+kwGA8JkiIWDhqMi3JSG4xx5V8D7SZGhDMn38Tcvwp+y+uxioeSvbECC+UxZqsm00g3YwhZECvqmf+hVRrAF1kp6Wu9RlyVg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector5401; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=bReqTI7d65r/DvOU/v3vJEtE6R41Bz/M41N8uIr7PIA=; b=OTEOaO5/4PICITdHr46PIiwNAHKLKnUuqa3fj32hqhTPcs4aDUfh9YDw4GfqIWcVO61Aip69U5cpsoMvLS4U2K2mwxu6Mx0FuD8shXgzaiJHbKKfPzB8Sx+DshoiZKsm9Dr0SIBQ6yd/nS9l/UivJhkOoawUqPAeMomUOrBp3cdTBDs/Few0NukjicL3VCvlIIwvegYPT2SQ9z1hAkeaYbAgKXmNYZT+/TnrDEbByJ0fy187bCe3WB0nmSPJ7+m4Svjmuuek05TuaJcCTny23mJGBxbV+fLvLacQvw8rd8eLfznp8qOZveTHGQMZxHpFwDcgIXfaI0IhxmKp9eeDBg==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=ll.mit.edu; dmarc=pass action=none header.from=ll.mit.edu; dkim=pass header.d=ll.mit.edu; arc=none
From: "Blumenthal, Uri - 0553 - MITLL" <uri@ll.mit.edu>
To: Stephen Farrell <stephen.farrell@cs.tcd.ie>
Thread-Topic: [TLS] Re: [EXT] Re: WG Adoption Call for ML-KEM Post-Quantum Key Agreement for TLS 1.3
Thread-Index: AQHbr78kz+gnQ0/CEkqRjOPdL3LwtbOoJKuAgAABroA=
Date: Thu, 17 Apr 2025 18:02:57 +0000
Message-ID: <A19CCC0F-1AC5-46EB-9D01-547E3ED74BBB@ll.mit.edu>
References: <CC953DB0-3051-4231-AA65-475638FEAE45@ll.mit.edu>
In-Reply-To: <CC953DB0-3051-4231-AA65-475638FEAE45@ll.mit.edu>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach: yes
X-MS-TNEF-Correlator:
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: BN0P110MB1419:EE_|BN0P110MB1922:EE_
x-ms-office365-filtering-correlation-id: 7b97e9a8-0cec-4659-2a37-08dd7dda1561
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;ARA:13230040|366016|4022899009|10070799003|1800799024|4053099003|38070700018;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255;CTRY:;LANG:en;SCL:1;SRV:;IPV:NLI;SFV:NSPM;H:BN0P110MB1419.NAMP110.PROD.OUTLOOK.COM;PTR:;CAT:NONE;SFS:(13230040)(366016)(4022899009)(10070799003)(1800799024)(4053099003)(38070700018);DIR:OUT;SFP:1101;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: multipart/signed; boundary="Apple-Mail-9EF74921-AEC2-4415-B365-45A20A3FACD3"; protocol="application/pkcs7-signature"; micalg="sha-256"
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: BN0P110MB1419.NAMP110.PROD.OUTLOOK.COM
X-MS-Exchange-CrossTenant-Network-Message-Id: 7b97e9a8-0cec-4659-2a37-08dd7dda1561
X-MS-Exchange-CrossTenant-originalarrivaltime: 17 Apr 2025 18:02:57.1311 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 83d1efe3-698e-4819-911b-0a8fbe79d01c
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BN0P110MB1922
X-Proofpoint-ORIG-GUID: b9_RZf28KoDx4UYyU6paNJ5c5OLkq6Mq
X-Proofpoint-GUID: b9_RZf28KoDx4UYyU6paNJ5c5OLkq6Mq
X-Proofpoint-Virus-Version: vendor=baseguard engine=ICAP:2.0.293,Aquarius:18.0.1095,Hydra:6.0.680,FMLib:17.12.68.34 definitions=2025-04-17_06,2025-04-17_01,2024-11-22_01
X-Proofpoint-Spam-Details: rule=outbound_notspam policy=outbound score=0 adultscore=0 mlxscore=0 bulkscore=0 phishscore=0 malwarescore=0 mlxlogscore=999 suspectscore=0 spamscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.12.0-2502280000 definitions=main-2504170131
Message-ID-Hash: 2THRDDTILJ7SVI5GHKSJF6PUN2ZQ3OK3
X-Message-ID-Hash: 2THRDDTILJ7SVI5GHKSJF6PUN2ZQ3OK3
X-MailFrom: prvs=820212e46d=uri@ll.mit.edu
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-tls.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: Thomas Bellebaum <thomas.bellebaum@aisec.fraunhofer.de>, "paul.wouters@aiven.io" <paul.wouters@aiven.io>, "tls@ietf.org" <tls@ietf.org>
X-Mailman-Version: 3.3.9rc6
Precedence: list
Subject: [TLS] Re: [EXT] Re: WG Adoption Call for ML-KEM Post-Quantum Key Agreement for TLS 1.3
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls/e5zD8V_gPyKzaEGEBRkRF5uuc5Y>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Owner: <mailto:tls-owner@ietf.org>
List-Post: <mailto:tls@ietf.org>
List-Subscribe: <mailto:tls-join@ietf.org>
List-Unsubscribe: <mailto:tls-leave@ietf.org>

Thanks to the spell-checker, some choicy words got changed. 

In the text below in the order of appearance:

in -> I’m
cheat -> clear (particularly nice one! AI must be reading mind instead of keyboard 😂)

—
Regards,
Uri

Secure Resilient Systems and Technologies
MIT Lincoln Laboratory

> On Apr 17, 2025, at 13:58, Blumenthal, Uri - 0553 - MITLL <uri@ll.mit.edu> wrote:
> 
> “Needlessly” - well, I guess in getting tired and irritated by the incessant attempts of a cheat minority to override the choice the overwhelming majority (which is what I call 75%-25% split) made.
> 
> This group has been trying to reach consensus on “comparative riskiness” for considerable time - and failed, so far. I see no reason to expect such consensus miraculously appearing out of <where?>. Do you? If so, please enlighten me.
> 
> One reason hybrids add risks is the practical implementation/deployment/processes/management/maintenance part, as opposed to treating the issue as a pure mathematical formula - which deployed software apparently is not (some might argue that it should be, I let the reality speak for itself).
> 
> Since It looks like 3/4 of the audience holds position similar to mine - frankly, I don’t see why 3/4 must convince 1/4 that their position is valid (usually, it’s the other way around).
> —
> Regards,
> Uri
> 
> Secure Resilient Systems and Technologies
> MIT Lincoln Laboratory
> 
>> On Apr 17, 2025, at 13:35, Stephen Farrell <stephen.farrell@cs.tcd.ie> wrote:
>> 
>> 
>> 
>>>> On 17/04/2025 18:23, Blumenthal, Uri - 0553 - MITLL wrote:
>>> Don’t try to stuff your perception of risks and correctness into
>>> everybody else’s throat.
>> 
>> Aside from the needlessly accusatory phrasing above, seeking to
>> reach consensus on the comparative riskiness of these seems like
>> a good plan to me, and entirely doable, so I disagree with you.
>> 
>> I also note that you earlier declined to get into the gory
>> detail of why you consider hybrids more risky. Arguing for
>> inclusion of text reflecting the details (gory or otherwise)
>> that have been aired in public seems entirely reasonable to
>> me, so if people who prefer one position over another aren't
>> willing to say why, they should IMO expect their positions
>> to be less well reflected in draft/RFC text.
>> 
>> Cheers,
>> S.
>> 
>> <OpenPGP_signature.asc>
> _______________________________________________
> TLS mailing list -- tls@ietf.org
> To unsubscribe send an email to tls-leave@ietf.org

v2.30.2 | Report a Bug | By Email | System Status