@misc{rfc9420, series = {Request for Comments}, number = 9420, howpublished = {RFC 9420}, publisher = {RFC Editor}, doi = {10.17487/RFC9420}, url = {https://www.rfc-editor.org/info/rfc9420}, author = {Richard Barnes and Benjamin Beurdouche and Raphael Robert and Jon Millican and Emad Omara and Katriel Cohn-Gordon}, title = {{The Messaging Layer Security (MLS) Protocol}}, pagetotal = 132, year = 2023, month = jul, abstract = {Messaging applications are increasingly making use of end-to-end security mechanisms to ensure that messages are only accessible to the communicating endpoints, and not to any servers involved in delivering messages. Establishing keys to provide such protections is challenging for group chat settings, in which more than two clients need to agree on a key but may not be online at the same time. In this document, we specify a key establishment protocol that provides efficient asynchronous group key establishment with forward secrecy (FS) and post-compromise security (PCS) for groups in size ranging from two to thousands.}, }