I see no need to rehash the concerns. PQ algos are currently not strong enough to stand on their own against classical attacks. Cloudflare's experience with SIKE is evidence of this; the fact that they used a hybrid protocol is what protected them and their customers. I think it is irresponsible at this time to push for PQ alone, compared to hybrids that give the full protection currently afforded by ECC.

_______________________________________________
TLS mailing list -- [email protected]
To unsubscribe send an email to [email protected]

Reply via email to