On Tuesday, 15 October 2024 14:49:06 CEST, Bas Westerbaan wrote:
On Tue, Oct 15, 2024 at 1:52 PM Alicja Kario <hka...@redhat.com> wrote:
Do you plan to add support for secp256r1mlkem768 and secp384r1mlkem1024?
Not at this time. We want clients to guess correctly which PQ kex the
server supports, and that's easier if there are fewer deployed. Hopefully
clients will adopt
https://datatracker.ietf.org/doc/draft-davidben-tls-key-share-prediction/
sure, but I'm thinking about clients that won't be able to use
x25519mlkem768 at all until they have a FIPS certified implementation of
ML-KEM...
--
Regards,
Alicja (nee Hubert) Kario
Principal Quality Engineer, RHEL Crypto team
Web: www.cz.redhat.com
Red Hat Czech s.r.o., Purkyňova 115, 612 00, Brno, Czech Republic
_______________________________________________
TLS mailing list -- tls@ietf.org
To unsubscribe send an email to tls-le...@ietf.org
