The IESG has received a request from the Transport Layer Security WG (tls) to consider the following document: - 'Post-quantum hybrid ECDHE-MLKEM Key Agreement for TLSv1.3' <draft-ietf-tls-ecdhe-mlkem-05.txt> as Proposed Standard
The IESG plans to make a decision in the next few weeks, and solicits final comments on this action. Please send substantive comments to the [email protected] mailing lists by 2026-06-09. Exceptionally, comments may be sent to [email protected] instead. In either case, please retain the beginning of the Subject line to allow automated sorting. This is a second Last Call for draft-ietf-tls-ecdhe-mlkem. After this document passed IESG Review and was sent to the RFC Editor, the TLS working group determined consensus that X25519MLKEM768 should be promoted to 'Recommended'. One of the options for updating the registry is through standards action, so this is the IETF last call to update the status of X25519MLKEM768 from "Recommended: N" to "Recommended: Y" in draft-ietf-tls-ecdhe-mlkem. This change would update the IANA considerations in Section 7.1." Abstract This draft defines three hybrid key agreement mechanisms for TLS 1.3 - X25519MLKEM768, SecP256r1MLKEM768, and SecP384r1MLKEM1024 - that combine the post-quantum ML-KEM (Module-Lattice-Based Key Encapsulation Mechanism) with an ECDHE (Elliptic Curve Diffie- Hellman) exchange. The file can be obtained via https://datatracker.ietf.org/doc/draft-ietf-tls-ecdhe-mlkem/ The following IPR Declarations may be related to this I-D: https://datatracker.ietf.org/ipr/7227/ The document contains these normative downward references. See RFC 3967 for additional information: draft-ietf-tls-hybrid-design: Hybrid key exchange in TLS 1.3 (None - Internet Engineering Task Force (IETF) stream) _______________________________________________ TLS mailing list -- [email protected] To unsubscribe send an email to [email protected]
