[TLS] Re: New Liaison Statement, "Liaison communication to IETF regarding draft-ietf-tls-mlkem"

Viktor Dukhovni <ietf-dane@dukhovni.org> Thu, 09 April 2026 04:44 UTC

Date: Thu, 09 Apr 2026 14:44:38 +1000
From: Viktor Dukhovni <ietf-dane@dukhovni.org>
To: tls@ietf.org
Message-ID: <adcutmQqdmhtJvaH@chardros.imrryr.org>
References: <CEB84168-5998-432A-9D62-36E28B9CDFA5@vigilsec.com> <CABcZeBM-eoqh+kJ7H6SiwC9p4tKAt+YiQhzetJZJmPNpXc+5OA@mail.gmail.com> <CAF8qwaALDXR6d=jLD46wXmKHDjyj=OdJ1X3a1AgxF+ByQceeMg@mail.gmail.com> <CABcZeBO0ysBjtbiPuSboP4fAATuVHQxq1TA5TbQ+_Oy-NrET0g@mail.gmail.com> <7A4F9775-8929-469D-B454-B027A0BAFA69@vigilsec.com> <CABcZeBPk3fdfPw=S_f5v2E9Y1LUfQL8f6sKvTYG0R6qRHm6rgg@mail.gmail.com> <b1527204-149e-6979-a344-8d530613e979@nohats.ca> <24a09e13-ad76-4af2-9e2c-27f1c2282b02@cs.tcd.ie> <adXVIdmIOG8SonlM@chardros.imrryr.org> <CH2PR17MB4022FAA970DA4E497AA75AC6CD5BA@CH2PR17MB4022.namprd17.prod.outlook.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Disposition: inline
In-Reply-To: <CH2PR17MB4022FAA970DA4E497AA75AC6CD5BA@CH2PR17MB4022.namprd17.prod.outlook.com>
Mail-Followup-To: <tls@ietf.org>
Content-Transfer-Encoding: quoted-printable
Message-ID-Hash: NGEHGAZTN4QCHEDT67Z7YQHNL2PEBT5N
Precedence: list
Reply-To: tls@ietf.org
Subject: [TLS] Re: New Liaison Statement, "Liaison communication to IETF regarding draft-ietf-tls-mlkem"
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls/vOefSy4aFreZ3HdJWEDnhbpD84Y>

On Wed, Apr 08, 2026 at 01:56:43PM +0000, Salz, Rich wrote:

> # Security Considerations {#security-considerations}
> 
> This document defines standalone ML-KEM key establishment for TLS 1.3.
> A PQ/T hybrid combines a post-quantum algorithm such as ML-KEM.  with
> a traditional algorithm such as Elliptic Curve Diffie-Hellman (ECDH)
> The IETF is working on an RFC that defines several such key
> establishment mechanisms, ML-KEM with a combining ECDH in
> {{ECDHE-MLKEM}}.
> 
> Both documents have IANA registry entries with an `N` in the
> recommended column. Quoting from the registry {{TLSREG}}, "\[this]
> does not necessarily mean that it is flawed; rather, it indicates that
> the item ... has limited applicability, or is intended only for
> specific use cases." Those developing or deploying TLS 1.3 with either
> encapsulation method will have to determine the security and
> operational considerations when choosing which mechanism to support.

This framing is I think unopinionated to the point of avoding mention of
the specific risks that motivate hybrids, and the need to consider those
risks before choosing a non-hybrid, with a hybrid as the prudent default
choice when in doubt.

I don't see it as sufficient for a "rough" consensus that both:

    - The technical specification is sound, **AND**
    - The security considerations adequately cover the questions
      that implemtnations and users need to consider.

-- 
    Viktor.  🇺🇦 Слава Україні!

[TLS] New Liaison Statement, "Liaison communicati… Liaison Statement Management Tool
[TLS] Re: New Liaison Statement, "Liaison communi… Muhammad Usama Sardar
[TLS] Re: New Liaison Statement, "Liaison communi… Russ Housley
[TLS] Re: New Liaison Statement, "Liaison communi… Richard Barnes
[TLS] Re: New Liaison Statement, "Liaison communi… Muhammad Usama Sardar
[TLS] Re: New Liaison Statement, "Liaison communi… Nico Williams
[TLS] Re: New Liaison Statement, "Liaison communi… Richard Barnes
[TLS] Re: New Liaison Statement, "Liaison communi… David Benjamin
[TLS] Re: New Liaison Statement, "Liaison communi… Eric Rescorla
[TLS] Re: New Liaison Statement, "Liaison communi… David Benjamin
[TLS] Re: New Liaison Statement, "Liaison communi… Russ Housley
[TLS] Re: New Liaison Statement, "Liaison communi… John Mattsson
[TLS] Re: New Liaison Statement, "Liaison communi… Salz, Rich
[TLS] Re: New Liaison Statement, "Liaison communi… Eric Rescorla
[TLS] Re: New Liaison Statement, "Liaison communi… Russ Housley
[TLS] Re: New Liaison Statement, "Liaison communi… Eric Rescorla
[TLS] Re: New Liaison Statement, "Liaison communi… Salz, Rich
[TLS] Re: New Liaison Statement, "Liaison communi… Eric Rescorla
[TLS] Re: New Liaison Statement, "Liaison communi… David Benjamin
[TLS] Re: New Liaison Statement, "Liaison communi… Stephen Farrell
[TLS] Re: New Liaison Statement, "Liaison communi… Eric Rescorla
[TLS] Re: New Liaison Statement, "Liaison communi… Russ Housley
[TLS] Re: New Liaison Statement, "Liaison communi… David Benjamin
[TLS] Publish ML-KEM after all (Re: Re: New Liais… Nico Williams
[TLS] Re: New Liaison Statement, "Liaison communi… Nico Williams
[TLS] Re: New Liaison Statement, "Liaison communi… John Mattsson
[TLS] Re: New Liaison Statement, "Liaison communi… Rob Sayre
[TLS] Re: New Liaison Statement, "Liaison communi… Viktor Dukhovni
[TLS] Re: New Liaison Statement, "Liaison communi… Stephen Farrell
[TLS] Re: New Liaison Statement, "Liaison communi… Viktor Dukhovni
[TLS] Re: New Liaison Statement, "Liaison communi… Stephen Farrell
[TLS] Re: New Liaison Statement, "Liaison communi… Salz, Rich
[TLS] Re: New Liaison Statement, "Liaison communi… Deirdre Connolly
[TLS] Re: New Liaison Statement, "Liaison communi… Muhammad Usama Sardar
[TLS] Re: New Liaison Statement, "Liaison communi… Viktor Dukhovni
[TLS] Re: New Liaison Statement, "Liaison communi… Peter Gutmann
[TLS] Re: New Liaison Statement, "Liaison communi… Daniel Apon
[TLS] Re: [EXT] Re: New Liaison Statement, "Liais… Blumenthal, Uri - 0553 - MITLL
[TLS] Re: New Liaison Statement, "Liaison communi… Muhammad Usama Sardar
[TLS] Re: New Liaison Statement, "Liaison communi… Viktor Dukhovni
[TLS] Re: New Liaison Statement, "Liaison communi… Deirdre Connolly
[TLS] Re: New Liaison Statement, "Liaison communi… Muhammad Usama Sardar
[TLS] Re: [EXT] Re: New Liaison Statement, "Liais… Blumenthal, Uri - 0553 - MITLL
[TLS] Re: New Liaison Statement, "Liaison communi… Salz, Rich
[TLS] Re: New Liaison Statement, "Liaison communi… Nico Williams
[TLS] Re: New Liaison Statement, "Liaison communi… Salz, Rich
[TLS] Re: New Liaison Statement, "Liaison communi… Nico Williams
[TLS] Re: New Liaison Statement, "Liaison communi… Arnaud Taddei
[TLS] Re: New Liaison Statement, "Liaison communi… Russ Housley
[TLS] Re: New Liaison Statement, "Liaison communi… Muhammad Usama Sardar
[TLS] Re: New Liaison Statement, "Liaison communi… Muhammad Usama Sardar
[TLS] Re: New Liaison Statement, "Liaison communi… Nico Williams
[TLS] Re: [EXT] Re: New Liaison Statement, "Liais… Daniel Apon
[TLS] Re: [EXT] Re: New Liaison Statement, "Liais… Eric Rescorla
[TLS] Re: New Liaison Statement, "Liaison communi… Nico Williams
[TLS] Re: [EXT] Re: New Liaison Statement, "Liais… Daniel Apon
[TLS] Re: [EXT] Re: New Liaison Statement, "Liais… Nico Williams
[TLS] Re: New Liaison Statement, "Liaison communi… Muhammad Usama Sardar
[TLS] Re: New Liaison Statement, "Liaison communi… Muhammad Usama Sardar
[TLS] Re: [EXT] Re: New Liaison Statement, "Liais… Tim Hollebeek
[TLS] Re: [EXT] Re: New Liaison Statement, "Liais… Nico Williams
[TLS] Re: New Liaison Statement, "Liaison communi… Nico Williams
[TLS] Re: New Liaison Statement, "Liaison communi… Russ Housley
[TLS] Re: [EXT] Re: New Liaison Statement, "Liais… Nico Williams
[TLS] Re: [EXT] Re: New Liaison Statement, "Liais… Daniel Apon
[TLS] Re: [EXT] Re: New Liaison Statement, "Liais… Blumenthal, Uri - 0553 - MITLL
[TLS] Re: New Liaison Statement, "Liaison communi… Muhammad Usama Sardar
[TLS] Re: [EXT] Re: New Liaison Statement, "Liais… Blumenthal, Uri - 0553 - MITLL
[TLS] Re: New Liaison Statement, "Liaison communi… S Moonesamy
[TLS] Re: New Liaison Statement, "Liaison communi… S Moonesamy
[TLS] Re: New Liaison Statement, "Liaison communi… Russ Housley
[TLS] Re: New Liaison Statement, "Liaison communi… Muhammad Usama Sardar
[TLS] Re: New Liaison Statement, "Liaison communi… Nico Williams
[TLS] Re: New Liaison Statement, "Liaison communi… Muhammad Usama Sardar
[TLS] Re: New Liaison Statement, "Liaison communi… Russ Housley
[TLS] Re: New Liaison Statement, "Liaison communi… Muhammad Usama Sardar
[TLS] Re: New Liaison Statement, "Liaison communi… Eric Rescorla
[TLS] Re: New Liaison Statement, "Liaison communi… Nico Williams
[TLS] Re: New Liaison Statement, "Liaison communi… Nico Williams
[TLS] Re: New Liaison Statement, "Liaison communi… Christian Huitema
[TLS] Re: New Liaison Statement, "Liaison communi… Muhammad Usama Sardar
[TLS] Re: New Liaison Statement, "Liaison communi… Eric Rescorla
[TLS] Re: New Liaison Statement, "Liaison communi… Russ Housley
[TLS] Re: New Liaison Statement, "Liaison communi… John Mattsson
[TLS] Re: New Liaison Statement, "Liaison communi… Daniel Apon
[TLS] Re: New Liaison Statement, "Liaison communi… Muhammad Usama Sardar
[TLS] Re: New Liaison Statement, "Liaison communi… Paul Wouters
[TLS] Re: New Liaison Statement, "Liaison communi… Stephen Farrell
[TLS] Re: New Liaison Statement, "Liaison communi… Nico Williams
[TLS] Re: New Liaison Statement, "Liaison communi… Rob Sayre
[TLS] Re: New Liaison Statement, "Liaison communi… Watson Ladd
[TLS] Re: New Liaison Statement, "Liaison communi… Muhammad Usama Sardar
[TLS] Re: New Liaison Statement, "Liaison communi… Daniel Apon
[TLS] Re: New Liaison Statement, "Liaison communi… Eric Rescorla
[TLS] Re: New Liaison Statement, "Liaison communi… Bas Westerbaan
[TLS] Re: New Liaison Statement, "Liaison communi… Nico Williams
[TLS] Re: New Liaison Statement, "Liaison communi… Viktor Dukhovni
[TLS] Re: New Liaison Statement, "Liaison communi… Salz, Rich
[TLS] Re: New Liaison Statement, "Liaison communi… Viktor Dukhovni
[TLS] Re: New Liaison Statement, "Liaison communi… Nico Williams
[TLS] Re: New Liaison Statement, "Liaison communi… Salz, Rich
[TLS] Re: New Liaison Statement, "Liaison communi… Stephen Farrell
[TLS] Re: New Liaison Statement, "Liaison communi… Salz, Rich
[TLS] Re: New Liaison Statement, "Liaison communi… Muhammad Usama Sardar