[TLS] Re: ML-KEM IANA and draft-connolly-tls-mlkem-key-agreement codepoint and inconsistencies
John Mattsson <john.mattsson@ericsson.com> Thu, 06 March 2025 13:29 UTC
Return-Path: <john.mattsson@ericsson.com>
X-Original-To: tls@mail2.ietf.org
Delivered-To: tls@mail2.ietf.org
Received: from localhost (localhost [127.0.0.1]) by mail2.ietf.org (Postfix) with ESMTP id 663C5837219 for <tls@mail2.ietf.org>; Thu, 6 Mar 2025 05:29:02 -0800 (PST)
X-Virus-Scanned: amavisd-new at ietf.org
X-Spam-Flag: NO
X-Spam-Score: -2.537
X-Spam-Level:
X-Spam-Status: No, score=-2.537 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.442, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_MSPIKE_H2=0.001, RCVD_IN_VALIDITY_RPBL_BLOCKED=0.001, RCVD_IN_VALIDITY_SAFE_BLOCKED=0.001, SPF_NONE=0.001] autolearn=ham autolearn_force=no
Authentication-Results: mail2.ietf.org (amavisd-new); dkim=pass (2048-bit key) header.d=ericsson.com
Received: from mail2.ietf.org ([166.84.6.31]) by localhost (mail2.ietf.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id tJLDbw1mLFQ5 for <tls@mail2.ietf.org>; Thu, 6 Mar 2025 05:29:01 -0800 (PST)
Received: from EUR05-VI1-obe.outbound.protection.outlook.com (mail-vi1eur05on2086.outbound.protection.outlook.com [40.107.21.86]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange ECDHE (P-384) server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by mail2.ietf.org (Postfix) with ESMTPS id 04792837208 for <tls@ietf.org>; Thu, 6 Mar 2025 05:29:00 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector10001; d=microsoft.com; cv=none; b=y9BHtbn2y+EjAS7Sf8mhIrDZGCLKBp62N5MzsPxoWkJ3mTaSFkKCQB6KZklLiLiu/Jzi4xkQ4NNh3v6baL5eVbHGtcTDsyKcAGm76lLpQ13+C6rVHJwmchFXjaXwKDrYJh4jwaJ65uIvvaiJJJeDj3mQ5eHPz43cCcaZUxRNMxY26W0fiaw1gt3xbWp1+Ob6ILog9LKKLO9jAntW3p9mv/YJP8b58UTUuxzqfHf6SIQ9ikZZFK+uuCSrtc2aOQ/TBSjVWMewJI0qdqRqkjgzunPVSb3xHC2NvBoo0Wy4udwXjLeODCqQ5hyLXdo4vJcy0wB2vBxbPHfPHVDXqQW8LQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector10001; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=NkfgtKT7fEPNPsrEZ45vDQ9jHlIUS/GewXhtudTvIAA=; b=W0HClcKB/BMrjGRU7HT5bCRc0cH6bp7hMe2OLVnElFP3/5s7oO9tWp7kS68xkQDsZxPw+Af7IYLipH5YzvA4Jba9xxT7RneVKwFItzgAbwBiDW+0hkRdGP2s66C7c4TXHXbwACFO6x5WV5cbQN3KZYkFEqIjIrBRmlOtLH9znxml0SuqXSjwNIhTzsF2cKgCLjm1oVP4tF2mObam9WodUdkhXw9BQvdvtd0Y6LiXLl+wv9uObcBATB+aaSmGTejXtQyHdoUwZRapnDrEFCqz0OrSa68wEKhdQhY2CgFjcMjLoYk2iZ9xwJZLcX/ZBN8h7CSM5IymvtSG5pRa2bvk/Q==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=ericsson.com; dmarc=pass action=none header.from=ericsson.com; dkim=pass header.d=ericsson.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ericsson.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=NkfgtKT7fEPNPsrEZ45vDQ9jHlIUS/GewXhtudTvIAA=; b=Qhqh+uRddFDb6IRJAr/IVnX+b5NHMUnFpnV8kr/hMuCnM4GMV4RWxZU+G25cYU8KPOziR0o6MXsN/uLnBZGlI+TsaJ5683ViOeQib7L+B15nbRRuAefXRfU+qU20iJKPJwq6X2Gdh5BXWusJoTe98pZkDe0fN0Z7s90PfflIgJAXWXmlzXApTtg/p4K4Yb8aycL2JAGz+072wp8AfYilQz4aU+3tTCkTpx6OVn6y/CqdbL81MYWz7JpaaVnsiUT5GtNLJJsDJXaJ+hv0giHcOv2buhr0SykW/mneOjNS0aWaPp2z0D0imTPstZ9CK7dszYt3WLX6P4Ok8jgKU5KmPg==
Received: from AS5PR07MB9675.eurprd07.prod.outlook.com (2603:10a6:20b:650::6) by PR3PR07MB6714.eurprd07.prod.outlook.com (2603:10a6:102:62::13) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.8511.19; Thu, 6 Mar 2025 13:28:58 +0000
Received: from AS5PR07MB9675.eurprd07.prod.outlook.com ([fe80::f2ce:eea1:e9d2:eb11]) by AS5PR07MB9675.eurprd07.prod.outlook.com ([fe80::f2ce:eea1:e9d2:eb11%7]) with mapi id 15.20.8511.017; Thu, 6 Mar 2025 13:28:58 +0000
From: John Mattsson <john.mattsson@ericsson.com>
To: "tls@ietf.org" <tls@ietf.org>
Thread-Topic: [TLS] Re: ML-KEM IANA and draft-connolly-tls-mlkem-key-agreement codepoint and inconsistencies
Thread-Index: AQHbjor+LYhDwe1GsEyrfTyI7HvQ57NmE7EAgAAEFSw=
Date: Thu, 06 Mar 2025 13:28:58 +0000
Message-ID: <AS5PR07MB96758D66E90B56568326199089CA2@AS5PR07MB9675.eurprd07.prod.outlook.com>
References: <ecbe460a-578e-4c2b-a58b-adecbe63abdf@cryptonext-security.com> <Z8mdhmuunvsHEhkZ@chardros.imrryr.org>
In-Reply-To: <Z8mdhmuunvsHEhkZ@chardros.imrryr.org>
Accept-Language: en-US
Content-Language: en-GB
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-ms-reactions: allow
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=ericsson.com;
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: AS5PR07MB9675:EE_|PR3PR07MB6714:EE_
x-ms-office365-filtering-correlation-id: d6d7be6f-c08a-42d5-15b8-08dd5cb2d992
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;ARA:13230040|366016|4022899009|1800799024|376014|8096899003|13003099007|7053199007|38070700018;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255;CTRY:;LANG:en;SCL:1;SRV:;IPV:NLI;SFV:NSPM;H:AS5PR07MB9675.eurprd07.prod.outlook.com;PTR:;CAT:NONE;SFS:(13230040)(366016)(4022899009)(1800799024)(376014)(8096899003)(13003099007)(7053199007)(38070700018);DIR:OUT;SFP:1101;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: multipart/alternative; boundary="_000_AS5PR07MB96758D66E90B56568326199089CA2AS5PR07MB9675eurp_"
MIME-Version: 1.0
X-OriginatorOrg: ericsson.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: AS5PR07MB9675.eurprd07.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: d6d7be6f-c08a-42d5-15b8-08dd5cb2d992
X-MS-Exchange-CrossTenant-originalarrivaltime: 06 Mar 2025 13:28:58.0364 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 92e84ceb-fbfd-47ab-be52-080c6b87953f
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: lgNvdgUjNY/8L+F119LMcjdez8b7fcTVEBy5+D6pSflUdeTobq+9f3xfFDMTA/DX1r2wwADNSUKJvFvIrrjQhOUFj8BT2GzGXCBUA8hkA2Q=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: PR3PR07MB6714
Message-ID-Hash: EPBUUS76JWSVKDONYELOJEQ7M6W3YYN2
X-Message-ID-Hash: EPBUUS76JWSVKDONYELOJEQ7M6W3YYN2
X-MailFrom: john.mattsson@ericsson.com
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-tls.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
X-Mailman-Version: 3.3.9rc6
Precedence: list
Subject: [TLS] Re: ML-KEM IANA and draft-connolly-tls-mlkem-key-agreement codepoint and inconsistencies
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls/iEOY1LV7orWMm-qMa7nzv1wiJZ0>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Owner: <mailto:tls-owner@ietf.org>
List-Post: <mailto:tls@ietf.org>
List-Subscribe: <mailto:tls-join@ietf.org>
List-Unsubscribe: <mailto:tls-leave@ietf.org>
Great that X25519MLKEM768 and MLKEM1024 will be in the 3.5 LTS release https://openssl-library.org/post/2025-02-04-release-announcement-3.5/ Also great to see DTLS 1.3 as a top priority for 3.6. https://openssl-communities.org/d/HCdTYIoN/priorities-for-3-6 John From: Viktor Dukhovni <ietf-dane@dukhovni.org> Date: Thursday, 6 March 2025 at 14:08 To: tls@ietf.org <tls@ietf.org> Subject: [TLS] Re: ML-KEM IANA and draft-connolly-tls-mlkem-key-agreement codepoint and inconsistencies On Thu, Mar 06, 2025 at 11:29:16AM +0000, Daniel Van Geest wrote: > IANA went with the uppercase naming, while OpenSSL went with lower. That is not the case, OpenSSL uses the IANA names, but the matching is now case-insensitive. Perhaps you were testing with the oqsprovider? $ openssl list -tls1_3 -tls-groups | tr ':' '\n' | tail -n6 MLKEM512 MLKEM768 MLKEM1024 SecP256r1MLKEM768 X25519MLKEM768 SecP384r1MLKEM1024 > Lowercase is generally more consistent with the other IANA codepoints, > with some exceptions including the recent hybrids. For what it's > worth, the slightly different bikeshed shade that I prefer is > lowercase. We'll likely shortly change the group name lookup code to be case-insensitive, just in case, and a convenience for the users. -- Viktor. _______________________________________________ TLS mailing list -- tls@ietf.org To unsubscribe send an email to tls-leave@ietf.org
- [TLS] ML-KEM IANA and draft-connolly-tls-mlkem-ke… Daniel Van Geest
- [TLS] Re: ML-KEM IANA and draft-connolly-tls-mlke… Viktor Dukhovni
- [TLS] Re: ML-KEM IANA and draft-connolly-tls-mlke… John Mattsson
- [TLS] Re: ML-KEM IANA and draft-connolly-tls-mlke… Salz, Rich
- [TLS] Re: ML-KEM IANA and draft-connolly-tls-mlke… Tim Hudson
- [TLS] Re: ML-KEM IANA and draft-connolly-tls-mlke… Bas Westerbaan
- [TLS] Re: ML-KEM IANA and draft-connolly-tls-mlke… Daniel Van Geest
- [TLS] Re: ML-KEM IANA and draft-connolly-tls-mlke… Viktor Dukhovni
- [TLS] Re: ML-KEM IANA and draft-connolly-tls-mlke… John Mattsson
- [TLS] Re: ML-KEM IANA and draft-connolly-tls-mlke… Viktor Dukhovni
- [TLS] Re: ML-KEM IANA and draft-connolly-tls-mlke… Kris Kwiatkowski
- [TLS] Re: ML-KEM IANA and draft-connolly-tls-mlke… Viktor Dukhovni
- [TLS] Re: ML-KEM IANA and draft-connolly-tls-mlke… Tim Hudson
- [TLS] Re: ML-KEM IANA and draft-connolly-tls-mlke… Kris Kwiatkowski
- [TLS] Re: ML-KEM IANA and draft-connolly-tls-mlke… Deirdre Connolly