On 06/08/2022 17:47, Phillip Hallam-Baker wrote:
Are you proposing pure Kyber or a hybrid though?
I've not heard anyone suggest securing an IETF protocol only via PQC algs. It'd be incredibly dim to make that suggestion IMO, esp now that two of the 3rd round entries have been busted. So I'm not worried that we'd even come close to landing there for TLS. S.
OpenPGP_0x5AB2FAF17B172BEA.asc
Description: OpenPGP public key
OpenPGP_signature
Description: OpenPGP digital signature
_______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls
