Hiya,
On 09/04/2026 20:30, Sean Turner wrote:
This is the working group last call for Use of ML-DSA in TLS 1.3. Please review draft-ietf-tls-mldsa [1] and reply to this thread indicating if you think it is ready for publication or not. If you do not think it is ready please indicate why. This call will end on April 23, 2026.
As you might expect, I do not think this should be published at this time without there being guidance as to usage. From my POV the same goes for any RFC for any newish pure PQ. In contrast to KEMs, IMO the guidance for signatures in TLS would be to just not deploy them for now, but only to do experiments in case this is needed in future. Cheers, S.
REMINDER: If you have not done so recently, review the TLS WG's Mail List Procedures; see [2]. The Chairs, Deirdre, Joe, and Sean [1] https://datatracker.ietf.org/doc/draft-ietf-tls-mldsa/ [2] https://mailarchive.ietf.org/arch/msg/tls/ ucdImHExlbOf4Q3BCG81gjzi2xE/ _______________________________________________ TLS mailing list -- [email protected] To unsubscribe send an email to [email protected]
OpenPGP_signature.asc
Description: OpenPGP digital signature
_______________________________________________ TLS mailing list -- [email protected] To unsubscribe send an email to [email protected]
