2024-12-07 18:36 GMT+01:00 Watson Ladd <[email protected]>: > Having MLKEM without a hybrid as an option in TLS when the interoperable > choice is a hybrid is not going to exclude people. > > Furthermore we didn't hybridize x25519 and RSA. It's clear some people > believe ML-KEM is secure enough for their uses.
Agreed on both counts, +1 to adoption.
_______________________________________________ TLS mailing list -- [email protected] To unsubscribe send an email to [email protected]
