I think it would make sense to get new code points for hybrids based on the final ML-KEM spec, so that implementers don't need to use pre-standard Kyber.
Cheers, Andrei From: Thom Wiggers <t...@thomwiggers.nl> Sent: Tuesday, August 13, 2024 3:39 AM To: Deirdre Connolly <durumcrustu...@gmail.com> Cc: <tls@ietf.org> <tls@ietf.org> Subject: [EXTERNAL] [TLS]Re: Working Group Last Call for "Hybrid key exchange in TLS 1.3" You don't often get email from t...@thomwiggers.nl<mailto:t...@thomwiggers.nl>. Learn why this is important<https://aka.ms/LearnAboutSenderIdentification> Hi, I think this is great and what better time to do this than with the publication of FIPS 203 this week. The one thing that remains is that there are many references to Kyber, e.g. commenting on its key sizes fitting in the KeyShareEntry limitations; should those be updated to be references to ML-KEM? Cheers, Thom Op 12 aug 2024, om 21:50 heeft Deirdre Connolly <durumcrustu...@gmail.com<mailto:durumcrustu...@gmail.com>> het volgende geschreven: This email starts the working group last call for the Internet-Draft "Hybrid key exchange in TLS 1.3", located here: https://datatracker.ietf.org/doc/draft-ietf-tls-hybrid-design/ The WG last call will end 26th August 2024 @ 2359 UTC. Please review the draft and submit issues and pull requests via the GitHub repository that can be found at: https://github.com/dstebila/draft-ietf-tls-hybrid-design You can also send comments and feedback to tls@ietf.org<mailto:tls@ietf.org>. Cheers and thank you, Deirdre _______________________________________________ TLS mailing list -- tls@ietf.org<mailto:tls@ietf.org> To unsubscribe send an email to tls-le...@ietf.org<mailto:tls-le...@ietf.org>
_______________________________________________ TLS mailing list -- tls@ietf.org To unsubscribe send an email to tls-le...@ietf.org
