[TLS] Re: WG Adoption Call for Use of ML-DSA in TLS 1.3

John Mattsson <john.mattsson@ericsson.com> Wed, 16 April 2025 09:00 UTC

From: John Mattsson <john.mattsson@ericsson.com>
To: Bas Westerbaan <bas=40cloudflare.com@dmarc.ietf.org>, Eric Rescorla <ekr@rtfm.com>
Thread-Topic: [TLS] Re: WG Adoption Call for Use of ML-DSA in TLS 1.3
Thread-Index: AQHbri1aZih/BbJQIUmdRYk9gIX73rOlFreAgADGY4CAACJkkg==
Date: Wed, 16 Apr 2025 09:00:32 +0000
Message-ID: <GVXPR07MB9678CFC5FB54B1171A30231689BD2@GVXPR07MB9678.eurprd07.prod.outlook.com>
References: <07CB46EC-758E-4204-901A-CC8812B33A5F@sn3rd.com> <CABcZeBMDKGQtMMaKASsV74U7p-vXQr8Fj+AbqAjHwpsQJY_B9Q@mail.gmail.com> <CAMjbhoViK19e6vYf1JwVJz9pJATCtKodgSPXMfQbC9yGaeVifg@mail.gmail.com> <CAMjbhoWxD-_N7dNhEMW8X4PAF8NvsT8Mt8fGYPu68=J1H6KRbw@mail.gmail.com>
In-Reply-To: <CAMjbhoWxD-_N7dNhEMW8X4PAF8NvsT8Mt8fGYPu68=J1H6KRbw@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-GB
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: multipart/alternative; boundary="_000_GVXPR07MB9678CFC5FB54B1171A30231689BD2GVXPR07MB9678eurp_"
MIME-Version: 1.0
X-OriginatorOrg: ericsson.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: GVXPR07MB9678.eurprd07.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: cbde41c2-84a0-43c1-e11b-08dd7cc52498
X-MS-Exchange-CrossTenant-originalarrivaltime: 16 Apr 2025 09:00:32.0254 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 92e84ceb-fbfd-47ab-be52-080c6b87953f
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: nxY9b66zAgo2NS7/l+z3d1HwkaxQ7v7QpNZvVbBkF9dqdN5HISg2cdhVnUDyieKB6JmqKHO+GlR9FfkIQ9Ye09xkEdLu9uCi6Nu6tJoS2o8=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: AS8PR07MB7592
Message-ID-Hash: JKTLXL7T2MX6N24SM54AUKVNEIEI6PDM
X-Message-ID-Hash: JKTLXL7T2MX6N24SM54AUKVNEIEI6PDM
X-MailFrom: john.mattsson@ericsson.com
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-tls.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: TLS List <tls@ietf.org>
X-Mailman-Version: 3.3.9rc6
Precedence: list
Subject: [TLS] Re: WG Adoption Call for Use of ML-DSA in TLS 1.3
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls/i-uykqLx6zNS0OfjZiCAPM6BrCw>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Owner: <mailto:tls-owner@ietf.org>
List-Post: <mailto:tls@ietf.org>
List-Subscribe: <mailto:tls-join@ietf.org>
List-Unsubscribe: <mailto:tls-leave@ietf.org>

I strongly support adoption. OpenSSL 3.5 LTS already support draft-tls-westerbaan-mldsa. TLS is far more than the Web and the WebPKI. And PKI is far more than CABF Baseline Requirements. Critical infrastructure like telecom and national security systems will deploy PQC authentication soon.

Cheers,
John

From: Bas Westerbaan <bas=40cloudflare.com@dmarc.ietf.org>
Date: Wednesday, 16 April 2025 at 08:57
To: Eric Rescorla <ekr@rtfm.com>
Cc: TLS List <tls@ietf.org>
Subject: [TLS] Re: WG Adoption Call for Use of ML-DSA in TLS 1.3

On Tue, Apr 15, 2025 at 9:06 PM Bas Westerbaan <bas@cloudflare.com<mailto:bas@cloudflare.com>> wrote:
This working group has wisely focussed its efforts on post-quantum key agreements for the last five years. It's basically done. I have no doubt that if any unforeseen issues might arise in the final stretch, we'll rise to the occasion.

I suppose adoption of the draft.

* support.

Best,

 Bas

On Tue, Apr 15, 2025 at 7:41 PM Eric Rescorla <ekr@rtfm.com<mailto:ekr@rtfm.com>> wrote:
I do not think we should adopt this draft at this time. I would prefer the WG focus its effort on key establishment.
Once those documents are complete, we can reconsider signature.

-Ekr

On Tue, Apr 15, 2025 at 10:34 AM Sean Turner <sean@sn3rd.com<mailto:sean@sn3rd.com>> wrote:
We are continuing with our WG adoption calls for the following I-D:
Use of ML-DSA in TLS 1.3 [1]; see [2] for more information about this tranche of adoption calls. If you support adoption and are willing to review and contribute text, please send a message to the list. If you do not support adoption of this draft, please send a message to the list and indicate why. This call will close at 2359 UTC on 29 April 2025.

Reminder:  This call for adoption has nothing to do with picking the mandatory-to-implement cipher suites in TLS.

Cheers,
Joe and Sean

[1] https://datatracker.ietf.org/doc/draft-tls-westerbaan-mldsa/
[2] https://mailarchive.ietf.org/arch/msg/tls/KMOTm_lE5OIAKG8_chDlRKuav7c/

_______________________________________________
TLS mailing list -- tls@ietf.org<mailto:tls@ietf.org>
To unsubscribe send an email to tls-leave@ietf.org<mailto:tls-leave@ietf.org>
_______________________________________________
TLS mailing list -- tls@ietf.org<mailto:tls@ietf.org>
To unsubscribe send an email to tls-leave@ietf.org<mailto:tls-leave@ietf.org>

[TLS] WG Adoption Call for Use of ML-DSA in TLS 1… Sean Turner
[TLS] Re: WG Adoption Call for Use of ML-DSA in T… Bas Westerbaan
[TLS] Re: WG Adoption Call for Use of ML-DSA in T… Russ Housley
[TLS] Re: WG Adoption Call for Use of ML-DSA in T… Scott Fluhrer (sfluhrer)
[TLS] Re: WG Adoption Call for Use of ML-DSA in T… Eric Rescorla
[TLS] Re: WG Adoption Call for Use of ML-DSA in T… Stephen Farrell
[TLS] Re: WG Adoption Call for Use of ML-DSA in T… Santosh Chokhani
[TLS] Re: WG Adoption Call for Use of ML-DSA in T… Salz, Rich
[TLS] Re: WG Adoption Call for Use of ML-DSA in T… David Adrian
[TLS] Re: WG Adoption Call for Use of ML-DSA in T… Quynh Dang
[TLS] Re: WG Adoption Call for Use of ML-DSA in T… Andrey Jivsov
[TLS] Re: WG Adoption Call for Use of ML-DSA in T… Kris Kwiatkowski
[TLS] Re: WG Adoption Call for Use of ML-DSA in T… Loganaden Velvindron
[TLS] Re: WG Adoption Call for Use of ML-DSA in T… Viktor Dukhovni
[TLS] Re: WG Adoption Call for Use of ML-DSA in T… Rebecca Guthrie
[TLS] Re: WG Adoption Call for Use of ML-DSA in T… Viktor Dukhovni
[TLS] Re: WG Adoption Call for Use of ML-DSA in T… Andrey Jivsov
[TLS] Re: WG Adoption Call for Use of ML-DSA in T… Kampanakis, Panos
[TLS] Re: WG Adoption Call for Use of ML-DSA in T… Bas Westerbaan
[TLS] Re: WG Adoption Call for Use of ML-DSA in T… Eric Rescorla
[TLS] Re: WG Adoption Call for Use of ML-DSA in T… John Mattsson
[TLS] Re: WG Adoption Call for Use of ML-DSA in T… Eric Rescorla
[TLS] Re: WG Adoption Call for Use of ML-DSA in T… tirumal reddy
[TLS] Re: [EXT] Re: WG Adoption Call for Use of M… Blumenthal, Uri - 0553 - MITLL
[TLS] Re: WG Adoption Call for Use of ML-DSA in T… John Mattsson
[TLS] Re: WG Adoption Call for Use of ML-DSA in T… Thom Wiggers
[TLS] Re: WG Adoption Call for Use of ML-DSA in T… Martin Thomson
[TLS] Re: WG Adoption Call for Use of ML-DSA in T… Watson Ladd
[TLS] Re: [EXTERNAL] Re: WG Adoption Call for Use… Mike Ounsworth
[TLS] Re: WG Adoption Call for Use of ML-DSA in T… Sean Turner
[TLS] Re: WG Adoption Call for Use of ML-DSA in T… Alicja Kario