Hi,

I have reviewed the draft. I think it is ready for publication with some minor 
changes. See my comments below.

>TLS 1.2 is in widespread use
This will not age well. I suggest removing widespead.

>TLS 1.3 enjoys robust
>security proofs and provides excellent security as-is.
as-is, TLS 1.3 does not provide excellent security for long-term connections.
It removes essential features such as asymmetric rekeying and reauthentication.

>In 2016, the US National Institute of Standards and Technology
>started a multi-year effort to standardize algorithms that will be
>"safe" once quantum computers are feasible [PQC].  First IETF
>discussions happened around the same time [CFRGSLIDES].
>
>While the industry is waiting for NIST to finish standardization, the
>IETF has several efforts underway.
This seems a bit outdated now. The most important info should be that NIST in 
2024 standardized ML-KEM, ML-DSA, and SLH-DSA in FIPS 203-205. I think you 
should have links to these.

Cheers,
John

On 2024-12-03, 22:26, "Sean Turner" <s...@sn3rd.com> wrote:
This is the working group last call for TLS 1.2 is in Feature Freeze. Please 
review draft-ietf-tls-tls12-frozen [1] and reply to this thread indicating if 
you think it is ready for publication or not.  If you do not think it is ready 
please indicate why.  This call will end on December 17, 2024.

Cheers,
spt

[1] https://datatracker.ietf.org/doc/draft-ietf-tls-tls12-frozen/

_______________________________________________
TLS mailing list -- tls@ietf.org
To unsubscribe send an email to tls-le...@ietf.org

Reply via email to