Hiya,
I objected to the publication of this document during WGLC. I was in the rough in that. I continue to think that we're (the IETF) doing a disservice to the broader community by producing so many RFCs documenting post-quantum algorithm options (in many WGs) without offering any advice as to when or how it might be reasonable to deploy subsets of the many, many algorithm choices we're defining. Just as an example, IMO it's quite reasonable to deploy hybrid KEMs now for TLS, but I consider we should only recommend experimenting with PO signatures of all sorts for now. There are other reasonable people who would disagree with those specific recommendations, and yet more reasonable people who think we ought not offer guidance, or won't be able to reach rough consensus on any such guidance. I think we should try produce that rough consensus guidance, and us not having really tried to do that is a failure on our part. (Should we reach rough consensus on such guidance, then publishing documents like this one would, I think, become much easier. Absent that, I figure we're going to see more controversy about documents like this, as noted in the shepherd write up.) Cheers, S. On 18/05/2026 16:40, The IESG wrote:
The IESG has received a request from the Transport Layer Security WG (tls) to consider the following document: - 'Use of ML-DSA in TLS 1.3' <draft-ietf-tls-mldsa-03.txt> as Informational RFC The IESG plans to make a decision in the next few weeks, and solicits final comments on this action. Please send substantive comments to the [email protected] mailing lists by 2026-06-01. Exceptionally, comments may be sent to [email protected] instead. In either case, please retain the beginning of the Subject line to allow automated sorting. Abstract This memo specifies how the post-quantum signature scheme ML-DSA (FIPS 204) is used for authentication in TLS 1.3. The file can be obtained via https://datatracker.ietf.org/doc/draft-ietf-tls-mldsa/ No IPR declarations have been submitted directly on this I-D. _______________________________________________ IETF-Announce mailing list -- [email protected] To unsubscribe send an email to [email protected]
OpenPGP_signature.asc
Description: OpenPGP digital signature
_______________________________________________ TLS mailing list -- [email protected] To unsubscribe send an email to [email protected]
