> I would like to register my strong objection to the publication of this 
document.


We disagree.


> Hybrid ("double encryption") constructions protect us from classes of attacks 
> that pure-PQ
> constructions do not protect us against. Hybrid constructions have a 
> negligible overhead
> compared to pure-PQ constructions.


In theory only, ignoring all the practical implications of software and 
hardware implementations.
Unfortunately, our “stuff” has to function in a real world, not on paper.

Attachment: smime.p7s
Description: S/MIME cryptographic signature

_______________________________________________
TLS mailing list -- [email protected]
To unsubscribe send an email to [email protected]

Reply via email to