I also do not think there is a rush or need to implement PQC authentication algorithms for TLS at this point.
From: Eric Rescorla [mailto:[email protected]] Sent: Tuesday, April 15, 2025 1:38 PM To: Sean Turner <[email protected]> Cc: TLS List <[email protected]> Subject: [TLS] Re: WG Adoption Call for Use of ML-DSA in TLS 1.3 I do not think we should adopt this draft at this time. I would prefer the WG focus its effort on key establishment. Once those documents are complete, we can reconsider signature. -Ekr On Tue, Apr 15, 2025 at 10:34 AM Sean Turner <[email protected] <mailto:[email protected]> > wrote: We are continuing with our WG adoption calls for the following I-D: Use of ML-DSA in TLS 1.3 [1]; see [2] for more information about this tranche of adoption calls. If you support adoption and are willing to review and contribute text, please send a message to the list. If you do not support adoption of this draft, please send a message to the list and indicate why. This call will close at 2359 UTC on 29 April 2025. Reminder: This call for adoption has nothing to do with picking the mandatory-to-implement cipher suites in TLS. Cheers, Joe and Sean [1] https://datatracker.ietf.org/doc/draft-tls-westerbaan-mldsa/ [2] https://mailarchive.ietf.org/arch/msg/tls/KMOTm_lE5OIAKG8_chDlRKuav7c/ _______________________________________________ TLS mailing list -- [email protected] <mailto:[email protected]> To unsubscribe send an email to [email protected] <mailto:[email protected]>
_______________________________________________ TLS mailing list -- [email protected] To unsubscribe send an email to [email protected]
