@techreport{reddy-pquip-pqc-signature-migration-01, number = {draft-reddy-pquip-pqc-signature-migration-01}, type = {Internet-Draft}, institution = {Internet Engineering Task Force}, publisher = {Internet Engineering Task Force}, note = {Work in Progress}, url = {https://datatracker.ietf.org/doc/draft-reddy-pquip-pqc-signature-migration/01/}, author = {Tirumaleswar Reddy.K and Dan Wing and Yaroslav Rosomakho}, title = {{Guidance for Migration to Composite, Dual, or PQC Authentication}}, pagetotal = 25, year = 2025, month = oct, day = 14, abstract = {This document provides guidance for migration from traditional digital signature algorithms to post-quantum cryptographic (PQC) signature algorithms. It compares three models under discussion in the IETF for PKI-based protocols: composite certificates, dual certificates, and PQC certificates. The goal is to help operators and engineers working on cryptographic libraries, network security, and PKI/key management infrastructure select an approach that balances interoperability, security, and operational efficiency during the transition to post-quantum authentication.}, }