Hello Apologies and not sure if this is the right place to ask this question; but wondering if the IETF will reconsider adding PQC algorithms to TLS 1.2??
Here is the problem > say all our external endpoints are communicating via TLS 1.3 ;our clients (which most of the times we will not have control over) will need TLS 1.3 > if the client doesn't have tls 1.3 our communication will need to negotiate /communicate with a lower protocol 1.2 perhaps? If TLS 1.2 received the new PQC algorithms then it will create less havoc on many organizations just trying to communicate securely Has this organization considered that it most likely wont be possible for all to communicate with TLS 1.3 when this Post Quantum Day occurs? Apologies again if my question is wrongly placed but if someone please help me understand why TLS 1.2 cannot handle the new PQC algorithms Kind Regards Edward Arano Cyber Security Architect Confidentiality Warning: This e-mail contains information intended only for the use of the individual or entity named above. If the reader of this e-mail is not the intended recipient or the employee or agent responsible for delivering it to the intended recipient, any dissemination, publication or copying of this e-mail is strictly prohibited. The sender does not accept any responsibility for any loss, disruption or damage to your data or computer system that may occur while using data contained in, or transmitted with, this e-mail. If you have received this e-mail in error, please immediately notify us by return e-mail. Thank you. ---------------------------------------------------------------------- This message, and any attachment(s), is for the intended recipient(s) only, may contain information that is privileged, confidential and/or proprietary and subject to important terms and conditions available at http://www.bankofamerica.com/electronic-disclaimer. If you are not the intended recipient, please delete this message. For more information about how Bank of America protects your privacy, including specific rights that may apply, please visit the following pages: https://business.bofa.com/en-us/content/global-privacy-notices.html (which includes global privacy notices) and https://www.bankofamerica.com/security-center/privacy-overview/ (which includes US State specific privacy notices such as the http://www.bankofamerica.com/ccpa-notice).
_______________________________________________ TLS mailing list -- tls@ietf.org To unsubscribe send an email to tls-le...@ietf.org
