> Section 4 of [SP800227] includes guidelines for using KEMs securely in > applications.
This is not a correct description of SP 800-227. SP 800-227 makes _requirements_ for implementing and using KEMs. The important section is 1.3, which states that "Conforming implementations of approved KEMs are required to satisfy all of the requirements below." FIPS 203 already references SP 800-227, stating: "For general definitions and properties of KEMs, including requirements for the secure use of KEMs in applications, see SP 800-227". IKEv2 is one such application. https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-227.pdf The draft should state that the requirements in SP 800-227 shall be followed. I don't think anyone wants standards or implementations violating NIST requirements, and FIPS 203 and SP 800-227 should be viewed together. Suggestion: NEW: Section 1.3 of [SP800227] includes requirements for using KEMs securely in applications and SHALL be followed. Cheers, John On 2025-10-05, 19:33, "Tero Kivinen" <[email protected]> wrote: The WGLC of the draft-ietf-ipsecme-ikev2-mlkem document has finished, and there has been new document published that should resolve all WGLC comments. If there are any comments that were not resolved please send email to the list ASAP. -- [email protected]<mailto:[email protected]>
_______________________________________________ IPsec mailing list -- [email protected] To unsubscribe send an email to [email protected]
