Hello to all,
I fear that regarding the "Curve-popularity" data there might be too much of
"opinion" and "company policies" and "government policies" around which IMHO
can be an obstacle for constructive discussion. And it seems again to be a
discussion between Short-Weierstrass curves on the o
On Saturday, 8 June 2024 03:53:16 CEST, D. J. Bernstein wrote:
Eric Rescorla writes:
It's important to distinguish between two senses of the word "recommend".
I'd expect the first wave of proposals to be asking the WG to say
Recommended=Y for various curve+PQ hybrids.
There will be an annoyin
Thanks Björn,
I think that is a very good summary. Regarding security requirements for
ephemeral key exchange in TLS I think it is important to discuss that we are
actually talking about 3 quite different settings.
1. Ephemeral key exchange authenticated with a certificate.
2. Ephemeral
> There will be an annoyingly large number of options on the PQ side---for
> example, for different security levels and for patent avoidance---and
> I'd expect a tricky discussion of which options to recommend for TLS.
I'm not sure I buy this premise. Currently there seems to be an
overwhelming co
Hello,
I realize there has been extensive discussion about trust expressions and a
variety of hypothetical scenarios that some believe will play out should
this draft get adopted and implemented. I would like to start this out with
a clear statement: we hear these criticisms and are paying very cl
Hiya,
On 11/06/2024 02:24, Devon O'Brien wrote:
I realize there has been extensive discussion about trust expressions
Just checking - does your mail amount to "we heard your well-intentioned
but misplaced opposition, but we're not (yet) for changing"?
I'm not saying that's a bad position to
