IETF Logo Mail Archive

[TLS] Re: WG Last Call: draft-ietf-tls-mlkem-05 (Ends 2026-02-27)

Peter Gutmann <pgut001@cs.auckland.ac.nz> Fri, 20 February 2026 08:27 UTC

Return-Path: <pgut001@cs.auckland.ac.nz>
X-Original-To: tls@mail2.ietf.org
Delivered-To: tls@mail2.ietf.org
Received: from localhost (localhost [127.0.0.1]) by mail2.ietf.org (Postfix) with ESMTP id E2D4ABA4ED2B for <tls@mail2.ietf.org>; Fri, 20 Feb 2026 00:27:21 -0800 (PST)
X-Virus-Scanned: amavisd-new at ietf.org
X-Spam-Flag: NO
X-Spam-Score: -1.998
X-Spam-Level:
X-Spam-Status: No, score=-1.998 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=0.001, RCVD_IN_VALIDITY_CERTIFIED_BLOCKED=0.001, RCVD_IN_VALIDITY_RPBL_BLOCKED=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: mail2.ietf.org (amavisd-new); dkim=pass (2048-bit key) header.d=cs.auckland.ac.nz
Received: from mail2.ietf.org ([166.84.6.31]) by localhost (mail2.ietf.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id RNkxFHL5ejOq for <tls@mail2.ietf.org>; Fri, 20 Feb 2026 00:27:20 -0800 (PST)
Received: from SY2PR01CU004.outbound.protection.outlook.com (mail-australiaeastazon11021090.outbound.protection.outlook.com [40.107.39.90]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange ECDHE (P-384) server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by mail2.ietf.org (Postfix) with ESMTPS id 6F9A3BA4ED22 for <tls@ietf.org>; Fri, 20 Feb 2026 00:27:19 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector10001; d=microsoft.com; cv=none; b=KqYFDQjbfPW19o7+HkbFV7xSt5cbk+dK/6jGuYnha1NTwYnK457ePPOiv1GTxCbhFyI57guZ86OjcIZCYEUfvE2yupyfF9c0KvfYnGJxo/1g4TP6pCYUEZat4HJ6dxOB3018TrrP3J4QT8cHPo+Te7YnWhIbynGlAzC94EQNOOs4ZjAD87dYieCAzwMipdm3YVlhlAFQu9qngmkXCZ7np62yGwX2gcZyJ7fPOR43eW51PtZgwfN+qgdMYk5Lk02i7MjBg+CZ9wUL2IJEcdrZ/dZgJtBaSYbXriGPh+xEPqi0PldTVbMo1EEk0RUsnTQfVwwR0QPKcP2UBbw1TfGOJA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector10001; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=SYOqaABk0W1zpi3EHfgTpLxRoJDIsaw7RXd5AKUCsuU=; b=dcWTuMEwcLUvKMW0grnKMa20qfvNgHBK8d6/HUCW/fN2+wtoIvprnD5NfbWaJ78iHSAtXzeEtpudsNw4MeyxxRD4T1BRxneyQhxSe6rFzUelaBRt9CTLfH8q26lQoPma7WQeOi76iJqef8w1WX23anFQA3giuIy44voNVfm5Pl7hkxyvTJScW65sbhbc+zQHldYD1IdJHpaFfLwwkyl6UXKlWk7/c/WJmZfy07hUWliHfSPZvsp+a906J0S/JYR4f8dpt6g58YdEkqofO/2sIfn4w4g66g8amR1tqrqS+QIvxL5x+j/i3TXHZlksw9N/N3omLC/iOeLWUJY33n/R3w==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cs.auckland.ac.nz; dmarc=pass action=none header.from=cs.auckland.ac.nz; dkim=pass header.d=cs.auckland.ac.nz; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cs.auckland.ac.nz; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=SYOqaABk0W1zpi3EHfgTpLxRoJDIsaw7RXd5AKUCsuU=; b=UbHg9q47Tez1zxvNSMTUtPLGt/dRkTFv4tj9/b9+PfYQfTk1E+WryhzbGjsCJjZIapGfHLviMTQrwTVIooVraEnZ+F98SysAr79ggKug5etDVUOInGUbCrxVdzNxyGYwhAwpn26WgGg31djwQ6sF6SH/mECTxvagqnWHpaKl/kAI0tTTXpgUqBIui1XBH8TA7OUQu9F3U+/g+Yr9epztmDLEUkZqPk6MJFD7+q2B1fuo1D2kDnGc5pZ0jEoMRlfj5ZKihA6iQYSc5EXkuaFLvjTX6WG5rdzHZygkRYgmZ29TGY1EC7kvGamYfziYyaT7oXvSZYNoDh+nyfTFMV2m4w==
Received: from MEAPR01MB3654.ausprd01.prod.outlook.com (2603:10c6:201:38::9) by ME3PR01MB7682.ausprd01.prod.outlook.com (2603:10c6:220:137::16) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.9632.16; Fri, 20 Feb 2026 08:27:09 +0000
Received: from MEAPR01MB3654.ausprd01.prod.outlook.com ([fe80::e2ae:955b:18b7:3064]) by MEAPR01MB3654.ausprd01.prod.outlook.com ([fe80::e2ae:955b:18b7:3064%4]) with mapi id 15.20.9632.010; Fri, 20 Feb 2026 08:27:09 +0000
From: Peter Gutmann <pgut001@cs.auckland.ac.nz>
To: "tls@ietf.org" <tls@ietf.org>
Thread-Topic: [TLS] Re: WG Last Call: draft-ietf-tls-mlkem-05 (Ends 2026-02-27)
Thread-Index: AQHcoQ7ExSgCF8sxxEqtxYp1gCAd/bWKT5CAgAATOYCAACrNAIAABuIAgAA293KAACxaAIAASlGY
Date: Fri, 20 Feb 2026 08:27:08 +0000
Message-ID: <MEAPR01MB3654BD9EF9B51C9DA20C201CEE68A@MEAPR01MB3654.ausprd01.prod.outlook.com>
References: <20260218194044.1135896.qmail@cr.yp.to> <7C9C99AA-42B0-4BC7-8F41-39F35754F1C4@vigilsec.com> <MN2PR17MB40310F0A2891942D76C43E60CD6BA@MN2PR17MB4031.namprd17.prod.outlook.com> <2caab265-00ba-4078-b6d0-3a178dabaa61@tu-dresden.de> <CAEEbLAbkV4YxN7cgggckpEp24MLtRZpzs6M4KemBatpzCCcs0A@mail.gmail.com> <MEAPR01MB3654415F735DE96CEE239C78EE68A@MEAPR01MB3654.ausprd01.prod.outlook.com> <aZfbhrFDBp7a0xHL@chardros.imrryr.org>
In-Reply-To: <aZfbhrFDBp7a0xHL@chardros.imrryr.org>
Accept-Language: en-NZ, en-US
Content-Language: en-NZ
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
msip_labels:
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=cs.auckland.ac.nz;
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: MEAPR01MB3654:EE_|ME3PR01MB7682:EE_
x-ms-office365-filtering-correlation-id: 5a1b2130-1722-4203-6fdc-08de7059d6c0
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;ARA:13230040|1800799024|366016|376014|10070799003|786006|38070700021;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255;CTRY:;LANG:en;SCL:1;SRV:;IPV:NLI;SFV:NSPM;H:MEAPR01MB3654.ausprd01.prod.outlook.com;PTR:;CAT:NONE;SFS:(13230040)(1800799024)(366016)(376014)(10070799003)(786006)(38070700021);DIR:OUT;SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 2
x-ms-exchange-antispam-messagedata-0: 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
x-ms-exchange-antispam-messagedata-1: Swc0iRitXM166Q==
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-OriginatorOrg: cs.auckland.ac.nz
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: MEAPR01MB3654.ausprd01.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 5a1b2130-1722-4203-6fdc-08de7059d6c0
X-MS-Exchange-CrossTenant-originalarrivaltime: 20 Feb 2026 08:27:08.9998 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: d1b36e95-0d50-42e9-958f-b63fa906beaa
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: 7pVFas9SNJB2trR2Mdl1y/95ElpSdHodW4tkuYXKeq5umNpfof1vdayhSZ54KxM/gvgzfGI4UskbLQosgNzeYETbKp9yNCBmWpQ2SV4aJqc=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: ME3PR01MB7682
Message-ID-Hash: I4ES32JZJGO7KWL5W3GZAZ7C4ABGCZXQ
X-Message-ID-Hash: I4ES32JZJGO7KWL5W3GZAZ7C4ABGCZXQ
X-MailFrom: pgut001@cs.auckland.ac.nz
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-tls.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
X-Mailman-Version: 3.3.9rc6
Precedence: list
Subject: [TLS] Re: WG Last Call: draft-ietf-tls-mlkem-05 (Ends 2026-02-27)
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls/lY7S_4NX5cfXVybajTbTHeZ8a4s>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Owner: <mailto:tls-owner@ietf.org>
List-Post: <mailto:tls@ietf.org>
List-Subscribe: <mailto:tls-join@ietf.org>
List-Unsubscribe: <mailto:tls-leave@ietf.org>

Viktor Dukhovni <ietf-dane@dukhovni.org> writes:

>Before I take CRQCs as a credible looming issue, a milestone I'd want to see
>crossed would be an honest Shor's algorithm factorisation of a 32-bit RSA
>modulus[2], but perhaps I should first have asked for a 16-bit RSA moduls
>instead, as that too appears to be currently well out of reach.

One slight modification, I'd like to see a solution to the DLP for a 32-bit
value, not RSA.  It's far too easy to cheat with RSA, as two decades of
claimed factorisations have shown, but not so with the DLP, and to decrypt TLS
(and SSH, and IPsec, and OpenVPN, and Wireguard, and WhatsApp, and Signal, and
...) you need to target the DLP, not RSA.

Some data points:

Number of legitimate successful applications of Shor's algorithm to factorisation to date: 0
Number of successful applications of Shor's algorithm to the DLP to date: 0
Number of NIST PQC candidates that have been broken to date: About half of them.

Which side would you (the readership in general I mean) place bets on?

Peter.

v2.40.1 | Report a Bug | By Email | System Status