[TLS] draft-kwiatkowski-tls-ecdhe-mlkem at IETF 121
John Mattsson <john.mattsson@ericsson.com> Sat, 09 November 2024 09:31 UTC
Return-Path: <john.mattsson@ericsson.com>
X-Original-To: tls@ietfa.amsl.com
Delivered-To: tls@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 29CE7C180B7D for <tls@ietfa.amsl.com>; Sat, 9 Nov 2024 01:31:01 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.255
X-Spam-Level:
X-Spam-Status: No, score=-2.255 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.148, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_BLOCKED=0.001, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=ericsson.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id i6bbKtgfGxfr for <tls@ietfa.amsl.com>; Sat, 9 Nov 2024 01:30:57 -0800 (PST)
Received: from EUR05-VI1-obe.outbound.protection.outlook.com (mail-vi1eur05on2059.outbound.protection.outlook.com [40.107.21.59]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange ECDHE (P-384) server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 09C15C1D5C7A for <tls@ietf.org>; Sat, 9 Nov 2024 01:30:56 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector10001; d=microsoft.com; cv=none; b=mZRUiAvTDXtkwELEcviWW3A/FcnH6XVLMZXQ7mNoDN4jx/2JOg6G0u9MZf1322V6tnbujquEfNRlQEIPB44wCoK+MTJZm350ynTbX62PMbLBN12Xh12jKbDeR1IH9bHHgsIAK/lZAqIRaGd3/p22EUzqVeaSKcwFa6kEs+8+0cDYG92EAEN0cgEX+ADhdYYswBX0U9FNHvZdVHaSOA0A/JUqJlk6rv+/eorvFEkU7KvosXIzg3cA5p74SOVRT/t6xwNtZBYd3A93qEKwp2eicnIYu6fqCZkCUtb5Ml3dYEzuhMwHTqGV+lXvwewMkp/32frZ4Q04/f5N6/Ax+fGu/w==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector10001; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=22ufSTQ1NeoKoSq6bTCLy9DYGPXnXFkaSQbfvaHFHr0=; b=XTUTybJdnLHlD242LbPxQ3G/ur5VSds1vjMZap5DnajhYV/SUzwI/u5ehg6oNwKcJVKJ/UFkxA0zsGtEszrQivQSL7NrrX1TdKCQAO3eWU4savfOK0GNnJgNbhQjjqRTFDZiYOe/JvAovK7W2aEUDgLFw7/38/zaHvL9frpZlWefh9WTJI/YXmC1VSTTJFIVRbOpNd9LTeTJY8fWJ9nf9ZtOmo50YaiDXXOE82EWmOpR/J2DPm+lou86oVTjXvgJehrJToQqVJDmmyLFjDFf7B+bp7YZj+RGiUfKGIVrOwNGb2uJUPHDVIUM8SDmqTp8GieuYsfm1Z4cyAXAqBqLuw==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=ericsson.com; dmarc=pass action=none header.from=ericsson.com; dkim=pass header.d=ericsson.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ericsson.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=22ufSTQ1NeoKoSq6bTCLy9DYGPXnXFkaSQbfvaHFHr0=; b=P//K7/KaIy0vPC4ci0r4R2p38yUPE8/7cEIgY7m66gv5bxuIt3TlAhKdLvHt5WdS9ipm91XheoPJBK6iRWo8/3BUVZ9IxsGQfEVnZ7m00vWv9LhEbUEjOdSiXyTbz3i/uerplH34FT8f205ikcpBzuttwDwC6c9WdW/HDy2r+OQxmJB1jlyt4G7/o43tkO1YTP6Q070bTcrOw87Eo80hSafKjITFMDnMkkkfSubCwAJpxRsHM/Qmb3OCvmBiAbH64HyWdPfM5rqwIARR1qx1byaDEVPM+BTpfyG7W2eAE9ble3AB2ItOLoZ5gc97D1MMX6MVUueeNpIrwSgLywwRKQ==
Received: from GVXPR07MB9678.eurprd07.prod.outlook.com (2603:10a6:150:114::10) by VI1PR07MB6287.eurprd07.prod.outlook.com (2603:10a6:800:136::12) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.8137.21; Sat, 9 Nov 2024 09:30:50 +0000
Received: from GVXPR07MB9678.eurprd07.prod.outlook.com ([fe80::bcf3:3f45:888e:a4b8]) by GVXPR07MB9678.eurprd07.prod.outlook.com ([fe80::bcf3:3f45:888e:a4b8%5]) with mapi id 15.20.8137.022; Sat, 9 Nov 2024 09:30:50 +0000
From: John Mattsson <john.mattsson@ericsson.com>
To: "TLS@ietf.org" <tls@ietf.org>
Thread-Topic: draft-kwiatkowski-tls-ecdhe-mlkem at IETF 121
Thread-Index: AQHbMolxOjSKZSkp9k2+8YQ0VInL5g==
Date: Sat, 09 Nov 2024 09:30:50 +0000
Message-ID: <GVXPR07MB9678A8C751B847A8F527BD9B895E2@GVXPR07MB9678.eurprd07.prod.outlook.com>
Accept-Language: en-US
Content-Language: en-GB
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-ms-reactions: allow
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=ericsson.com;
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: GVXPR07MB9678:EE_|VI1PR07MB6287:EE_
x-ms-office365-filtering-correlation-id: b5a5dc96-e7dd-4bc2-4a46-08dd00a132f6
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;ARA:13230040|1800799024|376014|366016|8096899003|38070700018;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255;CTRY:;LANG:en;SCL:1;SRV:;IPV:NLI;SFV:NSPM;H:GVXPR07MB9678.eurprd07.prod.outlook.com;PTR:;CAT:NONE;SFS:(13230040)(1800799024)(376014)(366016)(8096899003)(38070700018);DIR:OUT;SFP:1101;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: multipart/alternative; boundary="_000_GVXPR07MB9678A8C751B847A8F527BD9B895E2GVXPR07MB9678eurp_"
MIME-Version: 1.0
X-OriginatorOrg: ericsson.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: GVXPR07MB9678.eurprd07.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: b5a5dc96-e7dd-4bc2-4a46-08dd00a132f6
X-MS-Exchange-CrossTenant-originalarrivaltime: 09 Nov 2024 09:30:50.0762 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 92e84ceb-fbfd-47ab-be52-080c6b87953f
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: n6lP96Z0W/FOOLJzpfIpBXljQwPfVwPVAbPXX38J5qlctCk68z8mknPeycapOu2XyHS9/LFWnyyXriTBW1x3ODXQs3vIpJOJyUe7EYBK224=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: VI1PR07MB6287
Message-ID-Hash: LFUSERQ35LTUMUDHUCTRFCICYLDVF6OG
X-Message-ID-Hash: LFUSERQ35LTUMUDHUCTRFCICYLDVF6OG
X-MailFrom: john.mattsson@ericsson.com
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-tls.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
X-Mailman-Version: 3.3.9rc6
Precedence: list
Subject: [TLS] draft-kwiatkowski-tls-ecdhe-mlkem at IETF 121
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls/tx0fEKDEWDYuLJlmQC8elAjW5YM>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Owner: <mailto:tls-owner@ietf.org>
List-Post: <mailto:tls@ietf.org>
List-Subscribe: <mailto:tls-join@ietf.org>
List-Unsubscribe: <mailto:tls-leave@ietf.org>
Hi, I just looked at the presentation from the TLS session. My views: - I think the order of P256 and MLKEM should be switched, irrespectively of NIST's current discussion. Even if NIST do not change their current specifications, I think long-term FIPS compliance is much more important then short-term FIPS compliance. - Don't touch X25519MLKEM768, not even the name. Just make it a rule that the name is in the opposite order. - I think the draft should be adopted - I think the draft should be standards track - I think all three code points should be RECOMMENDED=Y - I think the draft should update RFC8446bis to make X25519MLKEM768 MTI. I think IETF should send a clear message that TLS implementations should migrate to quantum-resistant key exchange asap. X25519MLKEM768 is already the de facto standard. At some point we need a quantum-resistant MTI and I don't see any other option than X25519MLKEM768 and I don’t see any reason to wait. Key exchange and signatures can be handled independently. Cheers, John
- [TLS] draft-kwiatkowski-tls-ecdhe-mlkem at IETF 1… John Mattsson
- [TLS] Re: draft-kwiatkowski-tls-ecdhe-mlkem at IE… Watson Ladd