| ▲ | throw0101d 3 days ago | |
Perhaps worth noting Section 6, "Security Considerations", of the most recent draft has: > Recommended: N * https://datatracker.ietf.org/doc/html/draft-ietf-tls-mlkem-0... Pure, non-hybrid implementations of ML-KEM (FIPS 203, previously "Kyber") are already in the major crypto libraries. So given code is being written, there can either be an IETF document available to ensure interoperability or not: the IETF would prefer interop it seems. The list of IETF-recommended TLS algorithms can be found under the (sortable) "Recommended" column of officially registered TLS parameters: * https://www.iana.org/assignments/tls-parameters/tls-paramete... The list is currently: X25519MLKEM768, x448, x25519, secp384r1, secp256r1. The document being discussed/debated would not change it. | ||