Proposed text: PQC for S/MIME

330 views

Skip to first unread message

Stephen Davidson

unread,

Apr 24, 2025, 12:35:41 PM4/24/25

to smcwg-...@groups.cabforum.org

Hello:

As discussed on the SMCWG call this week, here is draft text to introduce the use of ML-DSA and ML-KEM into S/MIME certificates.

https://github.com/cabforum/smime/issues/280
https://github.com/srdavidson/smime/compare/c80922087427b1368cb8991eaad4128ef8fe52c0...91fe1835f6843a103b59de9ae059cbb7b4aa64a9

The draft text focusses on key size, key usage, SPKI, and signature algorithm identifier. We may wish to add an explanatory note.

It is currently written with a view of enabling “pure” certificates. Undoubtedly, we’ll want to enable other approaches (such as composite or hybrid) but I’d propose we do that as a separate, later ballot.

We welcome your feedback on this draft text, which we hope will become the basis of a future ballot.

Best regards, Stephen

Industry Standards, DigiCert

Reply all

Reply to author

Forward

0 new messages