Skip to main content

Hybrid key exchange in TLS 1.3
draft-ietf-tls-hybrid-design-09

The information below is for an old version of the document.
Document Type
This is an older version of an Internet-Draft whose latest revision state is "Active".
Expired & archived
Authors Douglas Stebila , Scott Fluhrer , Shay Gueron
Last updated 2024-03-18 (Latest revision 2023-09-07)
Replaces draft-stebila-tls-hybrid-design
RFC stream Internet Engineering Task Force (IETF)
Formats
Additional resources Mailing list discussion
Stream WG state WG Document
Document shepherd Christopher A. Wood
IESG IESG state Expired
Consensus boilerplate Unknown
Telechat date (None)
Responsible AD (None)
Send notices to caw@heapingbits.net

This Internet-Draft is no longer active. A copy of the expired Internet-Draft is available in these formats:

Abstract

Hybrid key exchange refers to using multiple key exchange algorithms simultaneously and combining the result with the goal of providing security even if all but one of the component algorithms is broken. It is motivated by transition to post-quantum cryptography. This document provides a construction for hybrid key exchange in the Transport Layer Security (TLS) protocol version 1.3. Discussion of this work is encouraged to happen on the TLS IETF mailing list tls@ietf.org or on the GitHub repository which contains the draft: https://github.com/dstebila/draft-ietf-tls-hybrid-design.

Authors

Douglas Stebila
Scott Fluhrer
Shay Gueron

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)