IETF Logo Mail Archive

Re: [TLS] Consensus call on codepoint strategy for draft-ietf-tls-hybrid-design

"Scott Fluhrer (sfluhrer)" <sfluhrer@cisco.com> Thu, 11 May 2023 14:23 UTC

Return-Path: <sfluhrer@cisco.com>
X-Original-To: tls@ietfa.amsl.com
Delivered-To: tls@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A6BBBC06F233 for <tls@ietfa.amsl.com>; Thu, 11 May 2023 07:23:29 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -14.597
X-Spam-Level:
X-Spam-Status: No, score=-14.597 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIMWL_WL_MED=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_NONE=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com header.b="GrJVqq3l"; dkim=pass (1024-bit key) header.d=cisco.com header.b="empqaYz9"
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id CsYv0vR55DpL for <tls@ietfa.amsl.com>; Thu, 11 May 2023 07:23:25 -0700 (PDT)
Received: from alln-iport-4.cisco.com (alln-iport-4.cisco.com [173.37.142.91]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 8F605C1D2ACF for <tls@ietf.org>; Thu, 11 May 2023 07:23:25 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=14960; q=dns/txt; s=iport; t=1683815005; x=1685024605; h=from:to:cc:subject:date:message-id:references: in-reply-to:mime-version; bh=86iNfjb4hGoo48cO3jiIqNsP0wfTiCpYkch5cnkeBHc=; b=GrJVqq3lpwjrQO4+ZMpZPPm+fyPE35CwpTvh56GOJWckSFTJrDnyZYIb 8lo0nBK0274jEMOpRSP/QMcYmrzNBrcIs2gq5poFu+wD8NfJkRkMcTege rP0UibSkUoMLDQ0CwgoIXkLPQEyWUZp1iMcLDNcuPfuiD57nO1QLmUNdp c=;
X-IPAS-Result: A0ABAAAB+VxkmIQNJK1aGQEBAQEBAQEBAQEBAQEBAQEBARIBAQEBAQEBAQEBAQFlgRYEAQEBAQELAYEqMVJzAlg8RoRRg0+ETokZA4ETlgKGThSBEQNWDwEBAQ0BAS4BDAkEAQGFBgIWhTwCJTQJDgECAgIBAQEBAwIDAQEBAQEBAwEBBQEBAQIBBwQUAQEBAQEBAQEeGQUOECeFaA2GBAEBAQECAQEBEBEKEwEBLAsBBAsCAQgRBAEBAScDAgICJQsUCQgCBAENBQgaglwBghUkIwMBD55kAYE/AolrNXqBMoEBgggBAQYEBYE8AhBBnRQDBoFCAYkyAQGDcYQxJxuBSUSBFAFDgWZKBzE+gmIBAQIBgR4KARIBIxUPBwmDJTmCLolhgkANjXKBMHSBJYEtgQQCCQIRaYEOCGeBc0ACDWQLC26BQIMLAgIRQgwUWgKBBhIBEwMHBAKBFRAzBwQ8JgkGCR83LQZhBzIoCRMVPwc2A0QdQAMLOzo9NRQfBQQkAUuBWgQvQoEUAgQBJSSZfAMbglgnJgRRAlsLKzoCHhJAOgOSdoMhilqOMZRLCoQCi3aVNBeDfYxpmANimAUgjTiVGhiEegIEAgQFAg4BB4FjOmtwcBU7gmdSGQ+OIAwNCYNRhRSKZUMyAjkCBwEKAQEDCYhsLIIuAQE
IronPort-PHdr: A9a23:QEDrdBzK4HvNRTzXCzMRngc9DxPP8539OgoTr50/hK0LKeKo/o/pO wrU4vA+xFPKXICO8/tfkKKWqKHvX2Uc/IyM+G4Pap1CVhIJyI0WkgUsDdTDCBjTJ//xZCt8F 8NHBxd+53/uCUFOA47lYkHK5Hi77DocABL6YBF7Ivn1AIPIp8+2zOu1vZbUZlYAiD+0e7gnN Byttk2RrpwPnIJ4I6Atyx3E6ndJYLFQwmVlZBqfyh39/cy3upVk9kxt
IronPort-Data: A9a23:+ByjlKmt3GTGmDG70bk1fhbo5gz7JkRdPkR7XQ2eYbSJt1+Wr1Gzt xIYXG3Qa/jbZDb1Kt12a9/k8xsFvMeAnNA3TQA4pS08RVtH+JHPbTi7wugcHM8zwunrFh8PA xA2M4GYRCwMZiaA4E/raNANlFEkvU2ybuKU5NXsZ2YgFGeIdA970Ug4w7Ng29Yy6TSEK1rlV e3a8pW31GCNg1aYAkpMg05UgEoy1BhakGpwUm0WPZinjneH/5UmJM53yZWKEpfNatI88thW6 Ar05OrREmvxp3/BAz4++1rxWhVirrX6ZWBihpfKMkSvqkAqm8A87ko0HNgWU35QgjaTpcF42 f5O75ePVVk1bqKZzYzxUzEAe81/FaRC/LmCKn+lvInKlwvNcmDnxLNlC0Re0Y8wo7ksRzoQs 6VDbmlWNHhvhMruqF6/YvJigtkjNsTxFIgeoXpnizreCJ7KRLiaG/iRuoMIhWtYasZmE6fsS vA9awdUdUrBYARVHg8+MYAeg7L97pX4W2QI9A3KzUYt2EDPyBdZ0bXxPpzSYNPieClOtk+co mSD9GPjD1RDbJqUyCGO9TSngeqncT7HtJw6NreCz/ljg0ep12UCIx5MXmSn/+XphRvrMz5AE HA89i0rpKk00UWkSNjhQhG1yEJoWDZBALK89MVnsWmwJrroDxWxXTJUE2IdADAynIpnG2F7h wfhc8bBX2QHjVGDdZ6KGl54RxudMDIRJGkODcPvZVRYu4W4yG3fY+6mczqOOKexituwEjbqz nXT9G41hq4YiogA0KDTEbH7b9CE+8Whou0dv1q/soeZAuVRP9LNi2uAsgSz0Bq4BNzFJmRtR VBd8yRk0MgADIuWiAuGS/gXEbei6p6taWOM2gEzRMV6rmz3qhZPmLy8BhkjdC+F1e5ZJ1fUj LP75Wu9GbcKZiLxNP8rC25PI55xnPiI+SvZugD8N4oSPccZmP6v9yB1bknYxHH2jEUpiskC1 WSzL66R4YIhIf0/llKeHr5FuZdyn3xW7T2IH/jTkU/4uYdykVbIE9/pxnPUMLBghE5FyS2Im +ti2zyilk0BCramPHGKmWPRRHhTRUUG6VnNg5U/XsaIIxFtHycqDPq5/F/rU9UNc3h9/gsQw kyAZw==
IronPort-HdrOrdr: A9a23:/6XB4agbBlRBMpqZfNAqkUAc5HBQX2p13DAbv31ZSRFFG/FwyP rBoB1L73DJYWgqNE3IwerwRJVoIUm3yXZ0ibNhWYtKLzOWx1dATbsSp7cKpgeAJ8SQzJ8k6U 4NSdkdNDS0NykGsS+Y2nj0Lz9D+qj9zEnAv463pBcdLj2CKZsQlTuRYTzrdXGeMTM2fKbRY6 DsgPavyQDQHEj/aP7XOlA1G8z44/HbnpPvZhALQzQ97hOVsD+u4LnmVzCFwxY3SVp0sPgf2F mAtza8yrSosvm9xBOZ/XTU9Y5qlNzozcYGLNCQi/ISNi7nhm+TFcpcsvy5zXEISdOUmRUXee r30lUd1gNImjbsl1SO0FvQMs/boXITAjHZuBilaDDY0LLErXoBert8bMRiA1fkA45KhqAk7E qNtFjp8aZ/HFfOmj/w6MPPUAwvnk2ooWA6mepWlHBHV5ACAYUh5LD30XklZ6voJhiKnrwPAa 1rFoXR9fxWeVSVYzTQuXRu2sWlWjA2Eg2dSkYPt8SJ23wO9UoJhHcw1YgahDMN5Zg9Q55L66 DNNblpjqhHSosTYbhmDOkMTMOrAijGQA7KMmiVPVP7fZt3c07lutry+vE49euqcJsHwN87n4 nASkpRsSood0fnGaS1rel2G9D2MRCAtBjWu7NjDsJCy83BrZLQQF6+dGw=
X-Talos-CUID: 9a23:UW2wr2Hoa6QuFOuYqmJF/nQtHckmaEfMxWb7IBWzNno3VO2aHAo=
X-Talos-MUID: 9a23:UIj0lA3UqVRk+mmqHL0Ih7CegjUj7fWcJXopk6g9opeFNjVqH2+0tSaXXdpy
X-IronPort-Anti-Spam-Filtered: true
Received: from alln-core-10.cisco.com ([173.36.13.132]) by alln-iport-4.cisco.com with ESMTP/TLS/DHE-RSA-SEED-SHA; 11 May 2023 14:23:24 +0000
Received: from alln-opgw-3.cisco.com (alln-opgw-3.cisco.com [173.37.147.251]) by alln-core-10.cisco.com (8.15.2/8.15.2) with ESMTPS id 34BENOlh013324 (version=TLSv1.2 cipher=DHE-RSA-AES256-GCM-SHA384 bits=256 verify=OK) for <tls@ietf.org>; Thu, 11 May 2023 14:23:24 GMT
Authentication-Results: alln-opgw-3.cisco.com; dkim=pass (signature verified) header.i=@cisco.com; spf=Pass smtp.mailfrom=sfluhrer@cisco.com; dmarc=pass (p=quarantine dis=none) d=cisco.com
X-IronPort-AV: E=Sophos;i="5.99,266,1677542400"; d="scan'";a="1343288"
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=JU11Du27CPo9kkyTYo0Y4F468pc2ggXZQyp4eF1znaiBlVGOKjevhzXWQKTOAwurMNcrBc2zV6HIdlu1LIai5FREoKiVgEZr0vmU1j1HF9KWLfCkbwEkEE6lWEJoCzztTvo8MsDOt8EFIxbOEFjRrks6D653b7kiGIM7t+7+P5KGT8aoHzlcvVZ13TrHUtclYlx8pjA2ZARC2gQkTvCU6yqenLBvvWBL6N1eJSyNR5MT1v31r6DG/S4PfYRTKfwdNdy0qOgwM4gGFQZi3ETaYDl92hORlNMN4octbkeTLz6zRIXHFYIiv7ckMEuyesZxkMEhqq0B2FZqNfKKRJBh/Q==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=86iNfjb4hGoo48cO3jiIqNsP0wfTiCpYkch5cnkeBHc=; b=BMLARWH/gKu8TGG22Tfd3KDMV9RtEIelqS1h2uZJpEAy/8WGwTgR9lxpsPOVW489yJ4j+Y8yLUCv25TZKXerFpiUPQLIlEL+LGrMb7LeImqaLl6CMwyY1ARd/JGUi0C/jAJ38/X4eTEIgEYg2PQTsKGWNcq8E9hQ9xcGWY8gv+F6LdL3EHZswW4kzlu0l84N0Mx29BAuW9LkvRANhQlKZw8T6ZfQKs4xsnooPrnBrDuvVnc5FlNkXGdwch4Hit5Fa/8Ycy9P2CDeqEKuA08KNndIoRLnYLMlGvwYBSHs2hzDoQu2Z2zehGT+ldEkWrjjXtLyXpDWwewcpGwePkZyHg==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cisco.com; dmarc=pass action=none header.from=cisco.com; dkim=pass header.d=cisco.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cisco.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=86iNfjb4hGoo48cO3jiIqNsP0wfTiCpYkch5cnkeBHc=; b=empqaYz9hzepovUBo626sqgRwKIlcK/BQEEkq67QHNSrAsqI7TzvJSaE9jwWKnMua905xaGzTX6vmfpEwP//tUSDkAI/zcXPUouwk+d8U5yZ49iC2ilSZ37OUU4Eqrp0iJVY/mF5c1phdRg8uwCqiz9nTX4si7MY08R/N/q5x6I=
Received: from CH0PR11MB5444.namprd11.prod.outlook.com (2603:10b6:610:d3::13) by SJ0PR11MB5135.namprd11.prod.outlook.com (2603:10b6:a03:2db::5) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.6387.20; Thu, 11 May 2023 14:23:20 +0000
Received: from CH0PR11MB5444.namprd11.prod.outlook.com ([fe80::471:68f5:efca:6f95]) by CH0PR11MB5444.namprd11.prod.outlook.com ([fe80::471:68f5:efca:6f95%6]) with mapi id 15.20.6387.021; Thu, 11 May 2023 14:23:20 +0000
From: "Scott Fluhrer (sfluhrer)" <sfluhrer@cisco.com>
To: "Kampanakis, Panos" <kpanos=40amazon.com@dmarc.ietf.org>, Bas Westerbaan <bas=40cloudflare.com@dmarc.ietf.org>, Christopher Wood <caw@heapingbits.net>
CC: "tls@ietf.org" <tls@ietf.org>
Thread-Topic: [TLS] Consensus call on codepoint strategy for draft-ietf-tls-hybrid-design
Thread-Index: AQHZYeDRHSuiD3FgS0Od4gBc9leOZq9FY1eAgA6+tYCAAUB3AIAAAVpQ
Date: Thu, 11 May 2023 14:23:20 +0000
Message-ID: <CH0PR11MB54444E0D1E41A52F1775FFFDC1749@CH0PR11MB5444.namprd11.prod.outlook.com>
References: <FBE87FDA-A407-4DC8-A2E8-F39AB475C87B@heapingbits.net> <C446C65E-924F-4927-BF53-E0B13EFC4930@heapingbits.net> <CAMjbhoXYiX2AP9w6JvCRuhPSvuEEWjBbLJhwVAKZhOByOnfeXw@mail.gmail.com> <920f6d11f8994141a9fba472236e2988@amazon.com>
In-Reply-To: <920f6d11f8994141a9fba472236e2988@amazon.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: CH0PR11MB5444:EE_|SJ0PR11MB5135:EE_
x-ms-office365-filtering-correlation-id: e3f9fa4e-f2aa-4b82-2591-08db522b4571
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:CH0PR11MB5444.namprd11.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230028)(346002)(136003)(366004)(396003)(376002)(39860400002)(451199021)(38100700002)(122000001)(86362001)(38070700005)(166002)(33656002)(316002)(55016003)(4326008)(41300700001)(71200400001)(8676002)(9686003)(52536014)(6506007)(26005)(8936002)(53546011)(186003)(5660300002)(83380400001)(2906002)(66946007)(110136005)(66556008)(66476007)(966005)(478600001)(66446008)(76116006)(64756008)(7696005); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 0AsTT9SQRhBGBSg/K3ZP9zc4tyxT2LU3v/RIqyCo0pkE1Qm7SRXKkPQAsQw4ukpXHYSDyoWh/nKwMGbshnRhtT99rDdGrxwEyqiKEjumb4Xmg2HNywAcw/D4xV5s3SZMgZEi24JeufZ7n0en4GM+XX486KLrSRhf4578o5hWAt6iSMBHIoTn+Cbv8BGXi7+8VAZb2pozckWABMZw/LUhZpR59DY3j3EQF2AJdoFC3OlLFxqWGfSAWBcZkDE54nr0hBbDSdxu7PM3PVNfF8MWn+/KmQMfneYN9ZguJq+mpnXHzHDjhY+lf5UmYZJN/QBiJTIFzihKsUySBqiQ1T6ILassQkNlFIsHhSW+mBgrVOd5iA+uY17/6AJVwrKKadkABz1OjrOwdqIeoiD2MA2ZtWHjeNzJdbtgpRzF7TxYvlpjA8fJn2K7DknaW0nEgFZKUcWY8EUzezs+/tsfpWLGhb1tTU1SwxBgn3G0Rmyz0P37SngqkSEHchplF/2Ff562IHw8Kj769JNGYI45drrAK1/fA301TJPsZ5xZrU/lKetVleIQrjjkeOhSMhMgdbc2SOySdTQA/dCGjAS32WKogsgaHuAJSTyRI3dR/h3LABkYeSJIeDuy415lWb2cE81bSlCBAWCLYGpEx0upYzanyuLRxAHJBMwNSn1xStJRDTjqQBJZ4Mda10sFh007VcxLRZYG4mn2sBhnhkwTG/yCxnu6pjosrT1sC5vrztvYZxO9aolVBjOJ9Mib+FKZ1OZ8b9e/6rdSYWfM8AauOol/TwndLRRgogmALgajpgIs4b0Bo3UVTYAG08d5s7SsrkBxSIwO5L5R7Rkubzu7h4jl3OPaWlpi9aD+4oQC10Fha7ZHdYJknobbABanRIyJ+9lrzcJdaMTfK2fDLDx2zOTev7NpA1QGAf3lBl5YOIyXIJkELIHkErFbmWo5baVrKGe4kBb74ExplaALsl1/U4LzUUs1CV2JqGEw8VlxADTyy/z/K+GLqk0StRhaxp4+SIns+/BpPKrZe2ziwV1GQYGKcRC5gQ0HD41hDmxbJrK0IwuuXFgxsH4jfhevxeeIo6bdbgrxgDGUO07enQpUKxRm7ix2tXHm/lnHZOx4mjQbWSIBeo4I57XdBQwpaVpvb+7/6CD6bwH+edRjs8O+LiT3bWys3ol6Q2vZXGYF3EA9rSfW28PucYI9FHmuX5oWGJF+35wd75C4CwVhvS4Y5tkqoAqsHJiZGfLZSsxKQfs0g88YIXMM5qVJISibpnWzk2zrj3MgZd7U4K7K4+NWThs/rk4OwSRmNQFP5rOyXEv3ckVLsIUCGlPWrLEUO6i1GAr1J9noKfOtJPFO2ceBIBf+Hv7xYKVXRlNPMp8OardbwW35v8SyWVkRb8nozGMG+zVwy82yFmSvbtIR6qbZLNhQu9pJn08C9s45Ae3tKvOfzmGewC3Zsj/XgH3/HPw0ia5wC/fd9uNSqL/F9DPsskjnck2w1xK/dqnnpaqwGib2C+QVpIlMbccY/mbgcn5nwrJnWyKg6INDfZoYTCUAfHCqzWQ2ZCvpO2hx+K0IFDjTbdY=
Content-Type: multipart/alternative; boundary="_000_CH0PR11MB54444E0D1E41A52F1775FFFDC1749CH0PR11MB5444namp_"
MIME-Version: 1.0
X-OriginatorOrg: cisco.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: CH0PR11MB5444.namprd11.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: e3f9fa4e-f2aa-4b82-2591-08db522b4571
X-MS-Exchange-CrossTenant-originalarrivaltime: 11 May 2023 14:23:20.4945 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 5ae1af62-9505-4097-a69a-c1553ef7840e
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: 7K1T05+vZKbgFKVi63VWWjPplCp7ky4DxL1boTzN1CbubgYfqqiqg6Ug68dViUb9c4gJRReM/wBNK2IeopEOtQ==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: SJ0PR11MB5135
X-Outbound-SMTP-Client: 173.37.147.251, alln-opgw-3.cisco.com
X-Outbound-Node: alln-core-10.cisco.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls/jc1IdHBeXZXk0Epb5jelBlhSC7o>
Subject: Re: [TLS] Consensus call on codepoint strategy for draft-ietf-tls-hybrid-design
X-BeenThere: tls@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls/>
List-Post: <mailto:tls@ietf.org>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 11 May 2023 14:23:29 -0000

My opinion: since NIST has announced that “Kyber768 Rounds 3 != The final NIST approved version”, we should keep codepoint 0x6399 with its current meaning, and allocate a fresh one when NIST does public the Kyber FIPS draft (which is likely, but not certainly, what will be the final FIPS approved version…)

From: TLS <tls-bounces@ietf.org> On Behalf Of Kampanakis, Panos
Sent: Thursday, May 11, 2023 10:16 AM
To: Bas Westerbaan <bas=40cloudflare.com@dmarc.ietf.org>; Christopher Wood <caw@heapingbits.net>
Cc: tls@ietf.org
Subject: Re: [TLS] Consensus call on codepoint strategy for draft-ietf-tls-hybrid-design

Great!

So to clarify, when Kyber gets ratified as MLWE_KEM or something like that, will we still be using 0x6399 in the keyshare when we are negotiating? Or is  0x6399 just a temporary codepoint for Kyber768 Round 3 combined with X25519?


From: TLS <tls-bounces@ietf.org<mailto:tls-bounces@ietf.org>> On Behalf Of Bas Westerbaan
Sent: Wednesday, May 10, 2023 3:09 PM
To: Christopher Wood <caw@heapingbits.net<mailto:caw@heapingbits.net>>
Cc: tls@ietf.org<mailto:tls@ietf.org>
Subject: RE: [EXTERNAL][TLS] Consensus call on codepoint strategy for draft-ietf-tls-hybrid-design


CAUTION: This email originated from outside of the organization. Do not click links or open attachments unless you can confirm the sender and know the content is safe.

FYI IANA has added the following entry to the TLS Supported Groups registry:

Value: 25497
Description: X25519Kyber768Draft00
DTLS-OK: Y
Recommended: N
Reference: [draft-tls-westerbaan-xyber768d00-02]
Comment: Pre-standards version of Kyber768

Please see
https://www.iana.org/assignments/tls-parameters

On Mon, May 1, 2023 at 11:59 AM Christopher Wood <caw@heapingbits.net<mailto:caw@heapingbits.net>> wrote:
It looks like we have consensus for this strategy. We’ll work to remove codepoints from draft-ietf-tls-hybrid-design and then get experimental codepoints allocated based on draft-tls-westerbaan-xyber768d00.

Best,
Chris, for the chairs

> On Mar 28, 2023, at 9:49 PM, Christopher Wood <caw@heapingbits.net<mailto:caw@heapingbits.net>> wrote:
>
> As discussed during yesterday's meeting, we would like to assess consensus for moving draft-ietf-tls-hybrid-design forward with the following strategy for allocating codepoints we can use in deployments.
>
> 1. Remove codepoints from draft-ietf-tls-hybrid-design and advance this document through the process towards publication.
> 2. Write a simple -00 draft that specifies the target variant of X25519+Kyber768 with a codepoint from the standard ranges. (Bas helpfully did this for us already [1].) Once this is complete, request a codepoint from IANA using the standard procedure.
>
> The intent of this proposal is to get us a codepoint that we can deploy today without putting a "draft codepoint" in an eventual RFC.
>
> Please let us know if you support this proposal by April 18, 2023. Assuming there is rough consensus, we will move forward with this proposal.
>
> Best,
> Chris, Joe, and Sean
>
> [1] https://datatracker.ietf.org/doc/html/draft-tls-westerbaan-xyber768d00-00

_______________________________________________
TLS mailing list
TLS@ietf.org<mailto:TLS@ietf.org>
https://www.ietf.org/mailman/listinfo/tls

v2.23.0 | Report a Bug | By Email