Hi, I have reviewed the draft. I think it is ready for publication with some minor changes. See my comments below.
>TLS 1.2 is in widespread use This will not age well. I suggest removing widespead. >TLS 1.3 enjoys robust >security proofs and provides excellent security as-is. as-is, TLS 1.3 does not provide excellent security for long-term connections. It removes essential features such as asymmetric rekeying and reauthentication. >In 2016, the US National Institute of Standards and Technology >started a multi-year effort to standardize algorithms that will be >"safe" once quantum computers are feasible [PQC]. First IETF >discussions happened around the same time [CFRGSLIDES]. > >While the industry is waiting for NIST to finish standardization, the >IETF has several efforts underway. This seems a bit outdated now. The most important info should be that NIST in 2024 standardized ML-KEM, ML-DSA, and SLH-DSA in FIPS 203-205. I think you should have links to these. Cheers, John On 2024-12-03, 22:26, "Sean Turner" <s...@sn3rd.com> wrote: This is the working group last call for TLS 1.2 is in Feature Freeze. Please review draft-ietf-tls-tls12-frozen [1] and reply to this thread indicating if you think it is ready for publication or not. If you do not think it is ready please indicate why. This call will end on December 17, 2024. Cheers, spt [1] https://datatracker.ietf.org/doc/draft-ietf-tls-tls12-frozen/
_______________________________________________ TLS mailing list -- tls@ietf.org To unsubscribe send an email to tls-le...@ietf.org