Hiya,
On 15/12/2024 02:33, Blumenthal, Uri - 0553 - MITLL wrote:
Stephen, I don’t think attempting to develop consensus in this case would be either useful or productive.
Strongly disagree. I think we ought consider it our duty to develop guidance for those deploying e.g. TLS now that we're adding a plethora of new ciphersuites, some useful, some way less so, and some possibly even risky. >...
Thus, I don’t think there’s a way to bring these two camps together,nor do I see a need for that.
I have no desire to affect the opinions of the sigint agencies who have come up with 100% contradictory positions. It's not them I care about at all, but rather those deploying the set of protocols we develop here.
Let TLS offer both hybrid and pureKEMs.
For TLS, that's inherent in our current IANA regisration model and has already happened.
And be done with it.
My point is that we are not done with it - we should be offering guidance on what to use when. If we do not do that, IMO we'd be doing a disservice to the Internet community. Cheers, S.
OpenPGP_signature.asc
Description: OpenPGP digital signature
_______________________________________________ TLS mailing list -- tls@ietf.org To unsubscribe send an email to tls-le...@ietf.org
