The standalone ML-DSA-87 option specified in this draft is CNSA 2.0 compliant.
There are no plans to support hybrid solutions for CNSA 2.0 (other than where
required due to protocol constraints, such as during key establishment in IKEv2
as pointed out earlier in this thread). As such, our CNSA 2
Hi all!
To clarify, my draft I linked to (and future profiles) are instantiations of
the CNSA 2.0 advisory and FAQ as it applies to specific protocols relevant to
NSS; specifically, the drafts document how we expect vendors to configure
protocols in a CNSA 2.0 compliant way.
Cheers,
Alie
Yep I mistakenly forgot to change the category to "info" instead of "std". It
will be fixed in a future update.
Alie
From: Andrey Jivsov
Sent: Wednesday, November 20, 2024 2:35 PM
To: Eric Rescorla
Cc: tls@ietf.org
Subject: [TLS] Re: ML-DSA in TLS
Given that t
