+1 Regarding the TCP initcwnd and QUIC Amplification topics. I would add
kInitialRtt which we found (
https://www.nccoe.nist.gov/sites/default/files/2023-12/pqc-migration-nist-sp-1800-38c-preliminary-draft.pdf,
section 7.3, Fig. 5) to introduce 60ms slowdowns due to QUIC's packet pacing.
Note t
I am reading the "bytes server -> client" thread, and I think that the
evaluation misses a point regarding QUIC, and probably other UDP based
protocols as well.
The QUIC handshake embeds a TLS 1.3 handshake. The client sends the
Client Hello in a series of QUIC Initial packets. The server repl
Hello,
As discussed during the TLS session at IETF 121, we would like to propose the
adoption of draft-kwiatkowski-tls-ecdhe-mlkem.
There are a few open questions that need to be addressed:
1. **Alignment of NamedGroup X25519MLKEM768** with the order of shared
secrets, as per Section 3.2 of
