I am sorry for this second email. To be clear, I support adoption of the document.
Regards, Quynh. On Mon, Jul 14, 2025 at 6:56 PM Quynh Dang <quyn...@gmail.com> wrote: > Hi Sean, Deirdre and Joe, > > The phrase "cipher suites" has a specific meaning in TLS and it does not > mean a signature algorithm. > > How about the following: "Applications that use SLH-DSA need to be aware > that the signature sizes of the signature algorithms specified in this > document are generally considered large, from 7,856 to 49,856 bytes. > Likewise, they are also considered slow generally. While their costs might > be amortized over long lived connections, they are not recommended for > general uses in TLS 1.3 where performance is sensitive." ? > > Regards, > Quynh. > > On Mon, Jul 14, 2025 at 6:07 PM Sean Turner <s...@sn3rd.com> wrote: > >> We kicked off an adoption call for Use of SLH-DSA in TLS 1.3; see [0]. We >> called consensus [1], and that decision was appealed. We have reviewed the >> messages and agree that we need to redo the adoption call to get more input. >> >> What appears to be the most common concern, which we will take from >> Panos' email, is that "SLH-DSA sigs are too large and slow for general use >> in TLS 1.3 applications". One way to address this concern is to add an >> applicablity statement to address this point. We would like to propose that >> this (or something close to this) be added to the I-D: >> >> Applications that use SLH-DSA need to be aware that the signatures sizes >> are large; the signature sizes for the cipher suites specified herein range >> from 7,856 to 49,856 bytes. Likewise, the cipher suites are considered >> slow. While these costs might be amoritized over the cost of a long lived >> connection, the cipher suites specified herein are not considered for >> general use in TLS 1.3. >> >> With this addition in mind, we would like to start another WG adoption >> call for draft-reddy-tls-slhdsa. If you support adoption with the above >> text (or something similar) and are willing to review and contribute text, >> please send a message to the list. If you do not support adoption of this >> draft with the above text (or something similar), please send a message to >> the list and indicate why. This call will close at 2359 UTC on 28 July 2025. >> >> Cheers, >> Deirdre, Joe, and Sean >> >> [0] >> https://mailarchive.ietf.org/arch/msg/tls/o4KnXjI-OpuHPcB33e8e78rACb0/ >> [1] >> https://mailarchive.ietf.org/arch/msg/tls/hhLtBBctK5em6l82m7rgM6_hefo/ >> [2] https://datatracker.ietf.org/doc/draft-reddy-tls-slhdsa/ >> _______________________________________________ >> TLS mailing list -- tls@ietf.org >> To unsubscribe send an email to tls-le...@ietf.org >> >
_______________________________________________ TLS mailing list -- tls@ietf.org To unsubscribe send an email to tls-le...@ietf.org
