On Thu, Jun 5, 2025 at 11:15 AM Arano, Edward <edward.arano= 40bofa....@dmarc.ietf.org> wrote:
> Hello Apologies and not sure if this is the right place to ask this > question; but wondering if the IETF will *reconsider* adding PQC > algorithms to TLS 1.2?? > > > > Here is the problem > say all our external endpoints are communicating via > TLS 1.3 ;our clients (which most of the times we will not have control > over) will need TLS 1.3 > if the client doesn’t have tls 1.3 our > communication will need to negotiate /communicate with a lower protocol > 1.2 perhaps? If TLS 1.2 received the new PQC algorithms then it will > create less havoc on many organizations just trying to communicate securely > I'm not quite sure what you mean by "our clients" here. Are you talking about people or software? Under the assumption you mean "our customers", then those people are probably coming in via a Web browser. All modern Web browsers support TLS 1.3. If someone is coming in via a browser which doesn't support TLS 1.3, then it's because that browser isn't being updated, which means that it wouldn't get some hypothetical TLS 1.2 PQC update even if one existed. More generally, I don't think this is really the right starting point for the analysis. Even if the IETF updated TLS 1.2 to support PQC, clients would still need to be updated to support those PQC algorithms. If the client is going to be updated anyway, then it can be updated to support TLS 1.3 + PQC. I'm sure there are some very specific cases where that's not as easy, but that's why those users should start the process of moving to 1.3 now so that they don't have to do so on an emergent basis. -Ekr
_______________________________________________ TLS mailing list -- tls@ietf.org To unsubscribe send an email to tls-le...@ietf.org
