I think it would make sense to get new code points for hybrids based on the final ML-KEM spec, so that implementers don't need to use pre-standard Kyber.
Cheers, Andrei From: Thom Wiggers <[email protected]> Sent: Tuesday, August 13, 2024 3:39 AM To: Deirdre Connolly <[email protected]> Cc: <[email protected]> <[email protected]> Subject: [EXTERNAL] [TLS]Re: Working Group Last Call for "Hybrid key exchange in TLS 1.3" You don't often get email from [email protected]<mailto:[email protected]>. Learn why this is important<https://aka.ms/LearnAboutSenderIdentification> Hi, I think this is great and what better time to do this than with the publication of FIPS 203 this week. The one thing that remains is that there are many references to Kyber, e.g. commenting on its key sizes fitting in the KeyShareEntry limitations; should those be updated to be references to ML-KEM? Cheers, Thom Op 12 aug 2024, om 21:50 heeft Deirdre Connolly <[email protected]<mailto:[email protected]>> het volgende geschreven: This email starts the working group last call for the Internet-Draft "Hybrid key exchange in TLS 1.3", located here: https://datatracker.ietf.org/doc/draft-ietf-tls-hybrid-design/ The WG last call will end 26th August 2024 @ 2359 UTC. Please review the draft and submit issues and pull requests via the GitHub repository that can be found at: https://github.com/dstebila/draft-ietf-tls-hybrid-design You can also send comments and feedback to [email protected]<mailto:[email protected]>. Cheers and thank you, Deirdre _______________________________________________ TLS mailing list -- [email protected]<mailto:[email protected]> To unsubscribe send an email to [email protected]<mailto:[email protected]>
_______________________________________________ TLS mailing list -- [email protected] To unsubscribe send an email to [email protected]
