IETF Logo Mail Archive

[TLS] Re: WG Adoption Call for Use of ML-DSA in TLS 1.3

John Mattsson <john.mattsson@ericsson.com> Wed, 16 April 2025 16:21 UTC

Return-Path: <john.mattsson@ericsson.com>
X-Original-To: tls@mail2.ietf.org
Delivered-To: tls@mail2.ietf.org
Received: from localhost (localhost [127.0.0.1]) by mail2.ietf.org (Postfix) with ESMTP id 40EBB1D1CFDC for <tls@mail2.ietf.org>; Wed, 16 Apr 2025 09:21:40 -0700 (PDT)
X-Virus-Scanned: amavisd-new at ietf.org
X-Spam-Flag: NO
X-Spam-Score: -2.096
X-Spam-Level:
X-Spam-Status: No, score=-2.096 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=0.001, RCVD_IN_VALIDITY_RPBL_BLOCKED=0.001, RCVD_IN_VALIDITY_SAFE_BLOCKED=0.001, SPF_NONE=0.001] autolearn=ham autolearn_force=no
Authentication-Results: mail2.ietf.org (amavisd-new); dkim=pass (2048-bit key) header.d=ericsson.com
Received: from mail2.ietf.org ([166.84.6.31]) by localhost (mail2.ietf.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id vGyVqP4b_FvR for <tls@mail2.ietf.org>; Wed, 16 Apr 2025 09:21:39 -0700 (PDT)
Received: from EUR05-DB8-obe.outbound.protection.outlook.com (mail-db8eur05on2043.outbound.protection.outlook.com [40.107.20.43]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange ECDHE (P-384) server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by mail2.ietf.org (Postfix) with ESMTPS id 6C2AE1D1CFC9 for <tls@ietf.org>; Wed, 16 Apr 2025 09:21:39 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector10001; d=microsoft.com; cv=none; b=ftxsOC0Ky9nTBT0yostmP3YyF8mLOaMcRuKjkE2IrmMJjDdNE0nlSBaa5hzk+cdC3tAN27SaIyWsI9uK6nflPNcOMM2hYXWO795kMZl8AyhBfbt4zTqHtAo8gQ2Wfmxtia4lzB6VuM7KT6dMM9s5sO1V5o1sVJsaWRVntkBgiUXxO142FcXM8hw7qE6yPez+jXfWsW9w5Ws9YB5rtEL250nQlu55++HDipsTXfIbgZdTQyy+ykl86eeFJBVWXRup3+Y7D2pfcgTV5oWtarM9RoCerqQlyL5tj/zpHjd6qsHwbl03NVfj2iyd9VHK3Vm1sEakV7266L7eMqfWolvj9w==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector10001; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=gKm5pgeizOXOD+nUH0bczucizgFu9Sa3aXtgu3xxBt0=; b=lJXHI0A6bmeocl0/kLq4YxrNQSpWQQncA0G3x23mIYgQt0zJIob2WUBWHfqLZwzuctW+3b9yMh+4gH5N8ueWM6Rxcq9NuLOmMQwB27E0qSa/TFVGRmex0Kaqs9V2vZ3DbGq6zTJlSns2MSK1VhfAiHbb61tvGmfVyTJr+LR6seDe5QNlHx23csRx4EfDHSTWEY2Xep3VcBr/ANteHGcd5iW1TwRpU6L0hquo4ft09biqwq/zasqOdOCd/wQHk78S5+nitNpRfwIOYjzNdD39lsJkQng2IqDZobaYWsogjQXpyH9Iw6fkcUvZ84EfMMBLNtngcXYJl4PkYvNRNsVaew==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=ericsson.com; dmarc=pass action=none header.from=ericsson.com; dkim=pass header.d=ericsson.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ericsson.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=gKm5pgeizOXOD+nUH0bczucizgFu9Sa3aXtgu3xxBt0=; b=xi7/B/MUnOflVeHFqqYN/5ZbQKcC/b1vfCxrScBDLJUrAhwFR2WouKyEVfelq6Hw7WMgYVi0n3EJFq6PcCit/l4eyYP2uZUjUuI2ZESYxXS/oMzf++AQc2+qatU+lx0q8am1NRK1tYZoBU/B07+t7Q8BcSw0GzNu9zCoMNxQlK9V0Xwvovmim0DDlWAd9T02m0SAL8/DcQoAqu8K85zzkS7xlcB8GNDihRzkHg2BFno71vwM/tWgWmpahOuCrHvLASZBlfGw6NTnBzDHcb2x5mqL7JiM1zqearE507T8HzE4GrrEuxhHh4Rme8rdLBStlX8LoayyxUrNtWqzDpi/2g==
Received: from GVXPR07MB9678.eurprd07.prod.outlook.com (2603:10a6:150:114::10) by AS4PR07MB8531.eurprd07.prod.outlook.com (2603:10a6:20b:4ea::14) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.8632.34; Wed, 16 Apr 2025 16:21:36 +0000
Received: from GVXPR07MB9678.eurprd07.prod.outlook.com ([fe80::bcf3:3f45:888e:a4b8]) by GVXPR07MB9678.eurprd07.prod.outlook.com ([fe80::bcf3:3f45:888e:a4b8%7]) with mapi id 15.20.8632.030; Wed, 16 Apr 2025 16:21:34 +0000
From: John Mattsson <john.mattsson@ericsson.com>
To: TLS List <tls@ietf.org>
Thread-Topic: WG Adoption Call for Use of ML-DSA in TLS 1.3
Thread-Index: AQHbruueL3GKlYhSgUqPMZiDiEORfA==
Date: Wed, 16 Apr 2025 16:21:34 +0000
Message-ID: <GVXPR07MB9678A3C894DE92AE2AF015E189BD2@GVXPR07MB9678.eurprd07.prod.outlook.com>
References: <07CB46EC-758E-4204-901A-CC8812B33A5F@sn3rd.com> <CAFpG3geHEXw6qF+A6-NRwSLNcqQKgkeOdN_PE2KL+mhKz=Tg=Q@mail.gmail.com> <BN0P110MB1419E401CC44A38EA5722A5A90BDA@BN0P110MB1419.NAMP110.PROD.OUTLOOK.COM>
In-Reply-To: <BN0P110MB1419E401CC44A38EA5722A5A90BDA@BN0P110MB1419.NAMP110.PROD.OUTLOOK.COM>
Accept-Language: en-US
Content-Language: en-GB
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-ms-reactions: allow
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=ericsson.com;
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: GVXPR07MB9678:EE_|AS4PR07MB8531:EE_
x-ms-office365-filtering-correlation-id: 8b8d4e5a-6b79-4ca3-d05f-08dd7d02c14d
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;ARA:13230040|366016|376014|1800799024|38070700018|8096899003;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255;CTRY:;LANG:en;SCL:1;SRV:;IPV:NLI;SFV:NSPM;H:GVXPR07MB9678.eurprd07.prod.outlook.com;PTR:;CAT:NONE;SFS:(13230040)(366016)(376014)(1800799024)(38070700018)(8096899003);DIR:OUT;SFP:1101;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: multipart/alternative; boundary="_000_GVXPR07MB9678A3C894DE92AE2AF015E189BD2GVXPR07MB9678eurp_"
MIME-Version: 1.0
X-OriginatorOrg: ericsson.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: GVXPR07MB9678.eurprd07.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 8b8d4e5a-6b79-4ca3-d05f-08dd7d02c14d
X-MS-Exchange-CrossTenant-originalarrivaltime: 16 Apr 2025 16:21:34.2755 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 92e84ceb-fbfd-47ab-be52-080c6b87953f
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: 10P6yXEo0b9tXMBp2ZBjIURpfe32rwLmaniWCSDKgrNUHW0sYu+JJBu4lqEAqp6dAJJhKnZItnvu9c5XRgFydQYXE7GxyFnbDgPmAf9eeJo=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: AS4PR07MB8531
Message-ID-Hash: LY62PLTP2GELEUU7AVQKOYK6YZ2WOYK2
X-Message-ID-Hash: LY62PLTP2GELEUU7AVQKOYK6YZ2WOYK2
X-MailFrom: john.mattsson@ericsson.com
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-tls.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
X-Mailman-Version: 3.3.9rc6
Precedence: list
Subject: [TLS] Re: WG Adoption Call for Use of ML-DSA in TLS 1.3
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls/hxvzzrkwpGx4kTXlropYGGewa68>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Owner: <mailto:tls-owner@ietf.org>
List-Post: <mailto:tls@ietf.org>
List-Subscribe: <mailto:tls-join@ietf.org>
List-Unsubscribe: <mailto:tls-leave@ietf.org>

What I would like even more than WG adoption is code point registration in the TLS SignatureScheme registry of ML-DSA and SLH-DSA. OpenSSL 3.5 Long-Term Support (LTS) which shipped a week ago already implement all the algorithms below. What are we waiting for?

Thank to the OpenSSL team for acting so fast on this important topic!

John

       +-----------------+-------------+-------------+----------------+
       | 0x0904 (please) | mldsa44     | N           | This document. |
       +-----------------+-------------+-------------+----------------+
       | 0x0905 (please) | mldsa65     | N           | This document. |
       +-----------------+-------------+-------------+----------------+
       | 0x0906 (please) | mldsa87     | N           | This document. |
       +-----------------+-------------+-------------+----------------+

       +--------+-------------------+-------------+----------------+
       | 0x0911 | slhdsa_sha2_128s  | N           | This document. |
       +--------+-------------------+-------------+----------------+
       | 0x0912 | slhdsa_sha2_128f  | N           | This document. |
       +--------+-------------------+-------------+----------------+
       | 0x0913 | slhdsa_sha2_192s  | N           | This document. |
       +--------+-------------------+-------------+----------------+
       | 0x0914 | slhdsa_sha2_192f  | N           | This document. |
       +--------+-------------------+-------------+----------------+
       | 0x0915 | slhdsa_sha2_256s  | N           | This document. |
       +--------+-------------------+-------------+----------------+
       | 0x0916 | slhdsa_sha2_256f  | N           | This document. |
       +--------+-------------------+-------------+----------------+
       | 0x0917 | slhdsa_shake_128s | N           | This document. |
       +--------+-------------------+-------------+----------------+
       | 0x0918 | slhdsa_shake_128f | N           | This document. |
       +--------+-------------------+-------------+----------------+
       | 0x0919 | slhdsa_shake_192s | N           | This document. |
       +--------+-------------------+-------------+----------------+
       | 0x091A | slhdsa_shake_192f | N           | This document. |
       +--------+-------------------+-------------+----------------+
       | 0x091B | slhdsa_shake_256s | N           | This document. |
       +--------+-------------------+-------------+----------------+
       | 0x091C | slhdsa_shake_256f | N           | This document. |
       +--------+-------------------+-------------+----------------+

v2.30.2 | Report a Bug | By Email | System Status