This document is good. I agree with others that a recommendation is appropriate. I'd be OK with either three recommended or just x25519 + MLKEM768
I am aware of the IPR, but don't see any evidence that this is stopping people from deployment, which would be the main reason I would hesitate on approval. As noted, the MTI question for TLS is appropriate, but I'm comfortable with the current status, which is that this is getting wide deployment. I think that MTI is almost what we want for x25519+MLKEM, but I'm happy to defer that decision in the interests of making progress. With TLS 1.3 where it is, we *could* decide to open that question, because hybrid is probably the necessary, modern baseline, but not sure that the question is easy to take. On Tue, Oct 7, 2025, at 14:46, Joseph Salowey wrote: > This is the working group last call for Post-quantum hybrid ECDHE-MLKEM > Key Agreement for TLSv1.3. Please review draft-ietf-tls-ecdhe-mlkem [1] > and reply to this thread indicating if you think it is ready for > publication or not. If you do not think it is ready please indicate > why. This call will end on October 22, 2025. > > Please note that during the WG adoption call, Dan Bernstein pointed out > some potential IPR (see [2]), but no IPR disclosure has been made in > accordance with BCP 79. Additional information is provided here; see > [3]. > > BCP 79 makes this important point: > > (b) The IETF, following normal processes, can decide to use > technology for which IPR disclosures have been made if it decides > that such a use is warranted. > > WG members can take this information into account during the working > group last call. > > Reminder: This working group last call has nothing to do with picking > the mandatory-to-implement cipher suites in TLS. > > Cheers, > Joe & Sean > > [1] https://datatracker.ietf.org/doc/draft-ietf-tls-ecdhe-mlkem/ > [2] https://mailarchive.ietf.org/arch/msg/tls/mt4_p95NZv8duZIJvJPdZV90-ZU/ > [3] https://mailarchive.ietf.org/arch/msg/spasm/GKFhHfBeCgf8hQQvhUcyOJ6M-kI/ > > _______________________________________________ > TLS mailing list -- [email protected] > To unsubscribe send an email to [email protected] _______________________________________________ TLS mailing list -- [email protected] To unsubscribe send an email to [email protected]
