That's fine; I wasn't advocating whether reusing the public key should be a MAY/SHOULD NOT/MUST NOT, only that the RFC should make an explicit statement about it. Saying that it's in the MUST NOT category is fine...
From: Kampanakis, Panos <[email protected]> Sent: Monday, January 29, 2024 12:08 PM To: Scott Fluhrer (sfluhrer) <[email protected]>; [email protected] Subject: RE: [IPsec] Comments on draft-kampanakis-ml-kem-ikev2 I will also add text about KEM key re-use. But I don't think we should allow it for forward secrecy reasons. Why would we let the initiator re-use a KEM public key given that ML-KEM Keygen is relatively fast?
_______________________________________________ IPsec mailing list [email protected] https://www.ietf.org/mailman/listinfo/ipsec
