[TLS] Re: PQ Cipher Suite I-Ds: adopt or not?
Martin Thomson <mt@lowentropy.net> Mon, 16 December 2024 22:21 UTC
Return-Path: <mt@lowentropy.net>
X-Original-To: tls@ietfa.amsl.com
Delivered-To: tls@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id EF6DFC14F707 for <tls@ietfa.amsl.com>; Mon, 16 Dec 2024 14:21:26 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.104
X-Spam-Level:
X-Spam-Status: No, score=-2.104 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_BLOCKED=0.001, RCVD_IN_VALIDITY_RPBL_BLOCKED=0.001, RCVD_IN_VALIDITY_SAFE_BLOCKED=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=lowentropy.net header.b="ZUnLNvso"; dkim=pass (2048-bit key) header.d=messagingengine.com header.b="q6pfAmr+"
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id mP-4jciG5PDJ for <tls@ietfa.amsl.com>; Mon, 16 Dec 2024 14:21:22 -0800 (PST)
Received: from fout-b1-smtp.messagingengine.com (fout-b1-smtp.messagingengine.com [202.12.124.144]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 27AF1C14F703 for <tls@ietf.org>; Mon, 16 Dec 2024 14:21:21 -0800 (PST)
Received: from phl-compute-05.internal (phl-compute-05.phl.internal [10.202.2.45]) by mailfout.stl.internal (Postfix) with ESMTP id 1946D11401C5; Mon, 16 Dec 2024 17:21:21 -0500 (EST)
Received: from phl-imap-01 ([10.202.2.91]) by phl-compute-05.internal (MEProxy); Mon, 16 Dec 2024 17:21:21 -0500
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=lowentropy.net; h=cc:content-transfer-encoding:content-type:content-type:date :date:from:from:in-reply-to:in-reply-to:message-id:mime-version :references:reply-to:subject:subject:to:to; s=fm2; t=1734387680; x=1734474080; bh=aD2IUhA7LpfqsVo8k/7HF7qV4Mn6466pyK5+XqHfMG4=; b= ZUnLNvsoBH/uaR7s+2llYl9bDkq5P0qSWYSFM/7gk1t+4FrfIAFWSBZo79cHWjMH tQrZsdNVvN6Uv/FZjLWMX/qRZKsPR27z7gbT79bI2FXvrh1bMzNPnF18HA+nRRii tqmw+SCO9mzANPdeWbQBQImwKoElYDSQkQ/h0fsl2se281MZzC8uT890UxBy4lM7 T9y9Y/4zZyZ7xZ6aSEAlxroETwuu7bECqV7AjB7YzqNmjrpE0B/pdfh/P5Y2ndpP NjBWbz7v4vCHg6EPy6Jcoei6fBQpf4WZeOq0wOfvJSgN9IMLkIX32jfVGZ+8gdFX gc/Zqdrp/TF+h2QfKYg/cw==
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d= messagingengine.com; h=cc:content-transfer-encoding:content-type :content-type:date:date:feedback-id:feedback-id:from:from :in-reply-to:in-reply-to:message-id:mime-version:references :reply-to:subject:subject:to:to:x-me-proxy:x-me-sender :x-me-sender:x-sasl-enc; s=fm1; t=1734387680; x=1734474080; bh=a D2IUhA7LpfqsVo8k/7HF7qV4Mn6466pyK5+XqHfMG4=; b=q6pfAmr+FEITcaNyH uWr6PGM0kAs0IreDx7VCPdZIYLR/UNtIn3M3mmkkV1vagR6UaWR4h9BeruV7+3lQ GMBEpn13xkUuZX2/qLJYWUbbxCRdFc+c4XT2OFOYniHf/F8myNhT6rbwGAdUxaE1 pb64iCOpMrUDHkQAoRcotWqyW6kBSzjEadMelU3Pv7QQ++jgYRsIvzKvRfjaoHLd XwGXUpo7LW0sSsOqX0smGNbJOtv7dVVkOsEBKvZDyZe+T+CITV8wsfFCeGSS6bTG IyMNtC9t6QZrCtrGOK2ruKWUjzqkA4aTOrERfhiBJP1pC20u2ex8Eu9uasLmfu0u ueVoA==
X-ME-Sender: <xms:4KdgZwQMVB_ZzCPFsd2S0xx3n7_Zkq72QpXGc2Fx7ApU44oRNIlmbg> <xme:4KdgZ9zROq18td51O-R9gf3wHspQhpdI_RRph8QWDPjhRJy4dnqzgkGQvrrFunDPA SAe16mqWfCsRK8cZKs>
X-ME-Proxy-Cause: gggruggvucftvghtrhhoucdtuddrgeefuddrleefgdduieduucetufdoteggodetrfdotf fvucfrrhhofhhilhgvmecuhfgrshhtofgrihhlpdggtfgfnhhsuhgsshgtrhhisggvpdfu rfetoffkrfgpnffqhgenuceurghilhhouhhtmecufedttdenucesvcftvggtihhpihgvnh htshculddquddttddmnecujfgurhepofggfffhvffkjghfufgtgfesthejredtredttden ucfhrhhomhepfdforghrthhinhcuvfhhohhmshhonhdfuceomhhtsehlohifvghnthhroh hphidrnhgvtheqnecuggftrfgrthhtvghrnhepueeludegfeelhfektdffveelgefhtefg uddtfeevteettdevgefgfeeilefftefgnecuvehluhhsthgvrhfuihiivgeptdenucfrrg hrrghmpehmrghilhhfrhhomhepmhhtsehlohifvghnthhrohhphidrnhgvthdpnhgspghr tghpthhtohepvddpmhhouggvpehsmhhtphhouhhtpdhrtghpthhtohepthhlshesihgvth hfrdhorhhgpdhrtghpthhtohepshgvrghnsehsnhefrhgurdgtohhm
X-ME-Proxy: <xmx:4KdgZ91ax9ByhpuyYNI9RczKMMA1ncfQsSOdBw3rO442qAgVrORLVQ> <xmx:4KdgZ0CqI6_jKIhCqK8Hq_MAt3Scov0eAEPWyd90pznGiId2JduZ0A> <xmx:4KdgZ5jBaEzpe7JpsSTKwOSwSIukwPmJb-ppoztBazS_pGNsxYi9-Q> <xmx:4KdgZwqaj2_31PL8zKAcZnyGxKIih3F9nJqeuSJ3KSdCw22yBL_4HA> <xmx:4KdgZ5a97TD4-GY-xfISorpjJAfmtcv5znGuZbvA75tlxW6GZ1C8tckZ>
Feedback-ID: ic129442d:Fastmail
Received: by mailuser.phl.internal (Postfix, from userid 501) id A6736336007C; Mon, 16 Dec 2024 17:21:20 -0500 (EST)
X-Mailer: MessagingEngine.com Webmail Interface
MIME-Version: 1.0
X-ThreadId: Tbb6102957d379478
Date: Tue, 17 Dec 2024 09:21:00 +1100
From: Martin Thomson <mt@lowentropy.net>
To: Sean Turner <sean@sn3rd.com>, TLS List <tls@ietf.org>
Message-Id: <ea32ebd6-e57d-4da6-9250-a3e4d75d11a0@betaapp.fastmail.com>
In-Reply-To: <10A06A24-8126-47B9-B187-55F4288DBBF2@sn3rd.com>
References: <10A06A24-8126-47B9-B187-55F4288DBBF2@sn3rd.com>
Content-Type: text/plain
Content-Transfer-Encoding: 7bit
Message-ID-Hash: J2PEGGXT3DT7IYYO5XZX6FPKYDEYY46Y
X-Message-ID-Hash: J2PEGGXT3DT7IYYO5XZX6FPKYDEYY46Y
X-MailFrom: mt@lowentropy.net
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-tls.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
X-Mailman-Version: 3.3.9rc6
Precedence: list
Subject: [TLS] Re: PQ Cipher Suite I-Ds: adopt or not?
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls/Z2XtNdOjZpgp0U7z0AS680-ZsVg>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Owner: <mailto:tls-owner@ietf.org>
List-Post: <mailto:tls@ietf.org>
List-Subscribe: <mailto:tls-join@ietf.org>
List-Unsubscribe: <mailto:tls-leave@ietf.org>
On Tue, Dec 17, 2024, at 08:59, Sean Turner wrote: > Is the WG consensus to run four separate adoption calls for the > individual I-Ds in question? I would like to see adoption calls for the key exchange modes and not the signature modes. The key exchange documents are both more ready and more urgent. The question of whether to set Recommended = Y for any particular choice is separable and can wait. Keep things as Recommended = N for now.
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? Salz, Rich
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? Kampanakis, Panos
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? Martin Thomson
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? Rob Sayre
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? Stephen Farrell
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? Kris Kwiatkowski
- [TLS] Re: [EXT] PQ Cipher Suite I-Ds: adopt or no… Blumenthal, Uri - 0553 - MITLL
- [TLS] Re: [EXTERNAL] PQ Cipher Suite I-Ds: adopt … Andrei Popov
- [TLS] PQ Cipher Suite I-Ds: adopt or not? Sean Turner
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? Russ Housley
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? John Mattsson
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? Watson Ladd
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? Sean Turner
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? D. J. Bernstein
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? Bas Westerbaan
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? Alicja Kario
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? Sean Turner
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? Sean Turner
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? D. J. Bernstein
- [TLS] Re: [EXTERNAL] Re: PQ Cipher Suite I-Ds: ad… Andrei Popov
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? John Mattsson
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? D. J. Bernstein
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? Salz, Rich
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? D. J. Bernstein
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? D. J. Bernstein
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? Salz, Rich
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? Watson Ladd
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? Watson Ladd
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? Loganaden Velvindron
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? tirumal reddy
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? Kris Kwiatkowski
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? Loganaden Velvindron
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? Bas Westerbaan
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? Eric Rescorla
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? S Moonesamy
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? S Moonesamy
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? John Mattsson
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? Scott Fluhrer (sfluhrer)
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? Rob Sayre
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? Dan Harkins
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? Sean Turner
- [TLS] Re: [EXT] Re: PQ Cipher Suite I-Ds: adopt o… Blumenthal, Uri - 0553 - MITLL
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? Scott Fluhrer (sfluhrer)
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? Eric Rescorla
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? Eric Rescorla
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? Alicja Kario
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? Bas Westerbaan
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? D. J. Bernstein
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? Salz, Rich
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? Dan Harkins
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? Bas Westerbaan
- [TLS] Re: PQ Cipher Suite I-Ds: adopt or not? Sean Turner