IETF Logo Mail Archive

[TLS] Re: The TLS WG has placed draft-connolly-tls-mlkem-key-agreement in state "Call For Adoption By WG Issued"

John Mattsson <john.mattsson@ericsson.com> Tue, 01 April 2025 14:46 UTC

Return-Path: <john.mattsson@ericsson.com>
X-Original-To: tls@mail2.ietf.org
Delivered-To: tls@mail2.ietf.org
Received: from localhost (localhost [127.0.0.1]) by mail2.ietf.org (Postfix) with ESMTP id EBE1A15D4B49; Tue, 1 Apr 2025 07:46:26 -0700 (PDT)
X-Virus-Scanned: amavisd-new at ietf.org
X-Spam-Flag: NO
X-Spam-Score: -1.995
X-Spam-Level:
X-Spam-Status: No, score=-1.995 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, HTTPS_HTTP_MISMATCH=0.1, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=0.001, RCVD_IN_VALIDITY_RPBL_BLOCKED=0.001, RCVD_IN_VALIDITY_SAFE_BLOCKED=0.001, SPF_HELO_NONE=0.001, SPF_NONE=0.001] autolearn=ham autolearn_force=no
Authentication-Results: mail2.ietf.org (amavisd-new); dkim=pass (2048-bit key) header.d=ericsson.com
Received: from mail2.ietf.org ([166.84.6.31]) by localhost (mail2.ietf.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id bOHdjCNzrtTE; Tue, 1 Apr 2025 07:46:26 -0700 (PDT)
Received: from EUR03-DBA-obe.outbound.protection.outlook.com (mail-dbaeur03on2071.outbound.protection.outlook.com [40.107.104.71]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange ECDHE (P-384) server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by mail2.ietf.org (Postfix) with ESMTPS id 1FD9B15D4B3F; Tue, 1 Apr 2025 07:46:26 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector10001; d=microsoft.com; cv=none; b=unRW5SnaiaLebzVUiTM0zNFOttiaPvOoMIPaU03n2ps+fN/zd6bXSCR8652rZyU25nIkPRjiFNDSv0Jav+zOx6J/qh+1ls9VSOHcphKIEUzvr4xeLm1P69yrw7P08rPeRyE2JOP9QK05lM7GFLne5m9RbSemHDx8FNg0NwG3z3a8Jrw8gA0FZhsUtk+JwL901+iVxAVaGnqTGybBerOCMqlVHjPXc5HENaguUVMnn6JMSJa8At1oFIu9P9wOfUvIYeBzBfIpebd9lX0+k39RjJdBRtoMLUwcHDAcGSZJQw46OYIghqksEKXYDT68GVcGp7mfP7EnZOGGTKs+Vn4oOg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector10001; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=1QShl7LXrT9m+QCW+snOxoOLiu2h/d6SzB0Sen9q2+8=; b=c2Ji4QXew6vqnX6Oppev6u7fQtkWIGXOOWghbUfv0gPc04a9gc38nJuvzSs8n0QS1p5fZjxvqIthWpkp5QoJjG3/e/ZZyT0DsBrJHOIIfRlmq+55u8wCYAZXrZPNopbZMaX9to3equgwRCzrcGO0bMVGouVCGjU0vgb3z34pOOw5/7HGgc2ngXFjAoaNE5lySPI3ro7oMD2Shk3s/KSTpvtempzYPtKlO1Z3X4L9vpGpFhUDNxEuCGKKGY3mRGIuuVz1CD9up5LhFandHkhN3llGD9kDO+gQx54NxtShenq4sl3QTU1+WIqf+YHVSln0vwtnfhjrvTkC5674uIwxKQ==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=ericsson.com; dmarc=pass action=none header.from=ericsson.com; dkim=pass header.d=ericsson.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ericsson.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=1QShl7LXrT9m+QCW+snOxoOLiu2h/d6SzB0Sen9q2+8=; b=kij1wdDG7v+cdOsciQtgo6X6z6vfkAELy+wrKx1qk4WJcZ3JiLsKvW43+KOFm0yoErZY+3hyVcuZii8Dlqm849TW7W6GnMoqBtQtbC9PnCCh68d3mv/kAuWA2b6yOAWvQs8HpfeGwXxgkB4Gu6dHTyq+r5Yz7IXtas/uJHPVl+ItkuBnFi5NzF2mVVWqNExQsEWW+RiRMbwNEQWISLaEEDGeE9aZ8/5pq6WuPP2AxNVuPcKck7OJvXnQfugubZp8/yiX8/dyG1Vj9+Iumz5Vv0joQRJWINbN5pMH1NOF5AwsvEnoXovaUbQAYl7kGSjnPkBycxwHGRPmZAfymRpUlA==
Received: from GVXPR07MB9678.eurprd07.prod.outlook.com (2603:10a6:150:114::10) by AS1PR07MB8528.eurprd07.prod.outlook.com (2603:10a6:20b:4d8::20) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.8583.38; Tue, 1 Apr 2025 14:46:24 +0000
Received: from GVXPR07MB9678.eurprd07.prod.outlook.com ([fe80::bcf3:3f45:888e:a4b8]) by GVXPR07MB9678.eurprd07.prod.outlook.com ([fe80::bcf3:3f45:888e:a4b8%7]) with mapi id 15.20.8583.038; Tue, 1 Apr 2025 14:46:23 +0000
From: John Mattsson <john.mattsson@ericsson.com>
To: Stephen Farrell <stephen.farrell@cs.tcd.ie>, IETF Secretariat <ietf-secretariat-reply@ietf.org>, "draft-connolly-tls-mlkem-key-agreement@ietf.org" <draft-connolly-tls-mlkem-key-agreement@ietf.org>, "tls-chairs@ietf.org" <tls-chairs@ietf.org>, "tls@ietf.org" <tls@ietf.org>
Thread-Topic: [TLS] Re: The TLS WG has placed draft-connolly-tls-mlkem-key-agreement in state "Call For Adoption By WG Issued"
Thread-Index: AQHboxKjSp/JjQVoMkmusisOzwxJo7OO32HS
Date: Tue, 01 Apr 2025 14:46:23 +0000
Message-ID: <GVXPR07MB9678E60985C779C12B5BE85989AC2@GVXPR07MB9678.eurprd07.prod.outlook.com>
References: <174351230138.2442419.6534148375330223110@dt-datatracker-5b9b68c5b6-zxk6z> <4b0291bf-d2f5-4ac4-9fbe-55ba47875e17@cs.tcd.ie>
In-Reply-To: <4b0291bf-d2f5-4ac4-9fbe-55ba47875e17@cs.tcd.ie>
Accept-Language: en-US
Content-Language: en-GB
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-ms-reactions: allow
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=ericsson.com;
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: GVXPR07MB9678:EE_|AS1PR07MB8528:EE_
x-ms-office365-filtering-correlation-id: 1f8aa91e-7fc4-455d-370f-08dd712bf942
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;ARA:13230040|366016|376014|4022899009|1800799024|38070700018|8096899003|13003099007|7053199007;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255;CTRY:;LANG:en;SCL:1;SRV:;IPV:NLI;SFV:NSPM;H:GVXPR07MB9678.eurprd07.prod.outlook.com;PTR:;CAT:NONE;SFS:(13230040)(366016)(376014)(4022899009)(1800799024)(38070700018)(8096899003)(13003099007)(7053199007);DIR:OUT;SFP:1101;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: koBMTuG6+6qwP4qDa6S5lTcrhrUL0/SeHCDrfkl742OdryLpqWX3lr+6R0Y7VfcrvuWus6FWd2YZYIQxoqfRmHB6lr8/PKN+SlsmBm5f0rLDWVz9goDzONeSzKYNUU5FEbBrQWSxv7SchIE5oIvatQq+H+i80p+7B0CoyamfamQyiJK19Tt8PsZS07YG4VmevpFbwZS9ObhtlXPj2qE0YHBlBWsGNTaL82LrbB+muzBtA1SLQzlA/BaX0v0f05NYgIEb4ROZPcmKz5SFC2EULlK7jx3PAXxadlJVu05iWh0ZnfneuGdgUa9hP6yIzcCa+cz47OrqiMYHo1xHk4jyWmUTD5B4jor79xfaGdB0KdV5/2ythp+nrPhAZ/dB0qNYO+zgYhvWNlTfNUKDd+uLrQuogCsypzThES33XXg4hv5H/K5HL8lVBA6fuKPaJZ7AU0VnpzqRoqVxIXdF+nr/B0IgFSGSTRnSsx0EA3HpF3BAQSDa84Jbw0ZwzUywg1WBAkxsNUUg/gJ17Z5vxeBGXkbqwCV5dDvgcqJ9wyZ8zNiJ0U5PX1RZ0rHY9z1m0sZB1jS1uBmLBAUU4T8hSx6UyLOeI9GjAU0e2dAc1/BfNfQYMSHqCj3XqSzIFAmSVWiq92uItOlj20NeeVZhxa3yLVBwksPDe+SdcZZF+zz52g4HT9wWgYxBqqmBdMwbQ8rFw3wgGpQX+AB/jkFcr2fDs7lUeQpsuyaPyx/7QtRD8adPVtAYHNkrdI7pH5AzeoSTHGcOFDpCS0T85wSGHgpiGZsVAMMA02k1fqioAhgxsoJR5IRtOmUTlsarU01E4O1jyww+8hwoyjJi3Gk5J3qXf2T5Sg6mzYi2ykLo30VgQHt17dNaQTV0vALymFqy621LAlV5mioDrNy/jORBgvTI+DxhiFoCj4D2aglp3TfmB9xB8JcrkIVp9qLwhD7s9hICD6X5eKFmAQ3lFrNL3HtmSgqRtDPkNYhKQ5yzjqsvkC9KzDUzDLXphYzonitUNFhYtYVCk7rMsY8FQuYdfdxKHFDb+M7Xqk+tPn4V9c4DfSgqcM03ESw9Oi7IYwfZrlMVE0b/JK0yMU0G3/t2EYwAhjzJZjhWldlUz0Rhg0oc/oWRzUNNCpjFytY4R6MQEKB75dghUxkhM8i3hp/1N86z60F8oJx1GQqzz0XgLQBDP5eISH2oh1pRYot45rVjGsm41wKz3cKangvaaiSwK3UWfdj48Y0+jAF6eH0qqHDGR9zitvvHPx2ebH8h6f4MwzgGAgnJM/+mMRX3mVaWZlSXOy4oVM4WuMm0e3VMHZUBlxxKnEUxgO7GqmdYn78mFvj99tBFiT0q/s1E+G012YVYzF4nqhYclj/Vr6gLG8Nyb9nXqJvmt/1m8ob9eenPBkcLE/oESjDs86fhKpDVJGZvzEzcVqAs2KPHq7xuyF20s4et0Ty91sA6uiOS2hyUK8kGaMS2nwoUPeUQsqzh+5lzpH8dXKbk9hblGtYuz3GHJd3Oel7I0HaUPVWSY+EnhwNH8azN/zEw8B040wllbYnuVRcSy+3dd5MibQIntg44HTkpmQmCerofqeUriRB31eLekdHrzxYEEo8SpVRpDfIjY04db5kBXT/ozlsqGc8ugTw=
Content-Type: multipart/alternative; boundary="_000_GVXPR07MB9678E60985C779C12B5BE85989AC2GVXPR07MB9678eurp_"
MIME-Version: 1.0
X-OriginatorOrg: ericsson.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: GVXPR07MB9678.eurprd07.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 1f8aa91e-7fc4-455d-370f-08dd712bf942
X-MS-Exchange-CrossTenant-originalarrivaltime: 01 Apr 2025 14:46:23.5450 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 92e84ceb-fbfd-47ab-be52-080c6b87953f
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: ZvqcFMPkiG3G4y2WF18zoFrGzkNBYrT/yr4jd46UTidwWU7Y9Im1cKlgUB6Ksar606dsZiAM6yX8AsKl2WIwHrGxWIm6bPdBa+RlAJ2R0JA=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: AS1PR07MB8528
Message-ID-Hash: SOQHWEQEMVMZ755EJUM4YHE6JN5WOFGO
X-Message-ID-Hash: SOQHWEQEMVMZ755EJUM4YHE6JN5WOFGO
X-MailFrom: john.mattsson@ericsson.com
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-tls.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
X-Mailman-Version: 3.3.9rc6
Precedence: list
Subject: [TLS] Re: The TLS WG has placed draft-connolly-tls-mlkem-key-agreement in state "Call For Adoption By WG Issued"
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls/lLeVwL-GhfuEPmHM3dVJJ4Kh2As>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Owner: <mailto:tls-owner@ietf.org>
List-Post: <mailto:tls@ietf.org>
List-Subscribe: <mailto:tls-join@ietf.org>
List-Unsubscribe: <mailto:tls-leave@ietf.org>

>I think we ought to encourage hybrids
>I think following the old practice of telling the ISE we have no objection to this ending up as an
independent stream RFC is the better approach for this one

I think reuse of ephemeral keys is a much bigger practical security problem than not using hybrids. I do have objections to ISE publishing anything allowing reuse of ML-KEM encapsulation keys.

John

From: Stephen Farrell <stephen.farrell@cs.tcd.ie>
Date: Tuesday, 1 April 2025 at 16:30
To: IETF Secretariat <ietf-secretariat-reply@ietf.org>, draft-connolly-tls-mlkem-key-agreement@ietf.org <draft-connolly-tls-mlkem-key-agreement@ietf.org>, tls-chairs@ietf.org <tls-chairs@ietf.org>, tls@ietf.org <tls@ietf.org>
Subject: [TLS] Re: The TLS WG has placed draft-connolly-tls-mlkem-key-agreement in state "Call For Adoption By WG Issued"

Hiya,

I'm opposed to adoption, at this time.

- I think we ought to encourage hybrids but not pure PQ KEMs
   and so adopting documents on hybrid KEMs can make sense so
   we can more easily get to a reommended="Y" in the IANA
   registry when the WG wants to
- I don't see what criteria we might use in adopting this that
   wouldn't leave the WG open to accusations of favouritism if
   we don't adopt other pure PQ national standards that will
   certainly arise

For the above reasons, I think following the old practice of
telling the ISE we have no objection to this ending up as an
independent stream RFC is the better approach for this one,
and similar ones. If/as confidence in pure-PQ KEMs grows or
a CRQC is closer to being demonstrated we could revisit things
then.

I do understand that some people will want/need to use this,
but figure an ISE RFC is better in this case.

Cheers,
S.

On 01/04/2025 13:58, IETF Secretariat wrote:
>
> The TLS WG has placed draft-connolly-tls-mlkem-key-agreement in state
> Call For Adoption By WG Issued (entered by Sean Turner)
>
> The document is available at
> https://eur02.safelinks.protection.outlook.com/?url=https%3A%2F%2Fdatatracker.ietf.org%2Fdoc%2Fdraft-connolly-tls-mlkem-key-agreement%2F&data=05%7C02%7Cjohn.mattsson%40ericsson.com%7C9d70cccdc0534f8976fb08dd7129c34e%7C92e84cebfbfd47abbe52080c6b87953f%7C0%7C0%7C638791146385734829%7CUnknown%7CTWFpbGZsb3d8eyJFbXB0eU1hcGkiOnRydWUsIlYiOiIwLjAuMDAwMCIsIlAiOiJXaW4zMiIsIkFOIjoiTWFpbCIsIldUIjoyfQ%3D%3D%7C0%7C%7C%7C&sdata=Ffr1LYVHRNuy%2BxRWxiD9L0WAKs%2BmrzgBkon6fBrkfmg%3D&reserved=0<https://datatracker.ietf.org/doc/draft-connolly-tls-mlkem-key-agreement/>
>
>
> _______________________________________________
> TLS mailing list -- tls@ietf.org
> To unsubscribe send an email to tls-leave@ietf.org

v2.45.0 | Report a Bug | By Email | System Status