See: https://mailarchive.ietf.org/arch/msg/tls/QU1kpJdGNPsIFbjTG2KlDLMdcPk/
We've got similar issues in JOSE and COSE registries. I wonder if we ought to consider similar changes to: https://www.iana.org/assignments/jose/jose.xhtml#web-key-elliptic-curve https://www.iana.org/assignments/cose/cose.xhtml#elliptic-curves This issue has come up already in several discussions regarding ML-DSA, SLH-DSA, FN-DSA, ML-KEM and hybrids. Because JOSE and COSE tend to separate algorithms from keys, we've not seen the equivalent of curves created for lattices or hashes or hybrids. I personally think this is a good thing, since fully specified algorithms attached to a key representation is better than looking at kty -> crv -> P-256 and then just trying ES256 or ECDH-ES+A128KW. If we don't plan to create new registries for PQC related things, should we say anything about future expectations on this? Or just let curves be the last such registry and rely on tribal knowledge? OS -- ORIE STEELE Chief Technology Officer www.transmute.industries <https://streaklinks.com/B6CophtBwdAFSevL3wsLS6CB/https%3A%2F%2Ftransmute.industries> ᐧ
_______________________________________________ jose mailing list [email protected] https://www.ietf.org/mailman/listinfo/jose
