The Messaging Layer Security (MLS) Extensions

	draft-ietf-mls-extensions-06.txt
	Date:	19/02/2025
	Authors:	Raphael Robert
	Working Group:	Messaging Layer Security (mls)

The Messaging Layer Security (MLS) protocol is an asynchronous group authenticated key exchange protocol. MLS provides a number of capabilities to applications, as well as several extension points internal to the protocol. This document provides a consolidated application API, guidance for how the protocol's extension points should be used, and a few concrete examples of both core protocol extensions and uses of the application API.

Flexible Hybrid PQ MLS Combiner

	draft-ietf-mls-combiner-00.txt
	Date:	26/02/2025
	Authors:	Joel, Britta Hale, Marta Mularczyk, Xisen Tian
	Working Group:	Messaging Layer Security (mls)

This document describes a protocol for combining a traditional MLS session with a post-quantum (PQ) MLS session to achieve flexible and efficient hybrid PQ security that amortizes the computational cost of PQ Key Encapsulation Mechanisms and Digital Signature Algorithms. Specifically, we describe how to use the exporter secret of a PQ MLS session, i.e. an MLS session using a PQ ciphersuite, to seed PQ guarantees into an MLS session using a traditional ciphersuite. By supporting on-demand traditional-only key updates (a.k.a. PARTIAL updates) or hybrid-PQ key updates (a.k.a. FULL updates), we can reduce the bandwidth and computational overhead associated with PQ operations while meeting the requirement of frequent key rotations.

Javascript disabled? Like other modern websites, the IETF Datatracker relies on Javascript. Please enable Javascript for full functionality.

Messaging Layer Security (mls)

WG	Name	Messaging Layer Security
	Acronym	mls
	Area	Security Area (sec)
	State	Active
	Charter	charter-ietf-mls-02 Approved
	Status update	Show Changed 2018-11-07
	Document dependencies	Document dependencies Loading... Pan and zoom the dependency graph after the layout settles. Show legend Loading...
	Additional resources	GitHub organization Issue tracker Wiki Zulip Stream
Personnel	Chairs	Nick Sullivan, Sean Turner
	Area Director	Paul Wouters
Mailing list	Address	mls@ietf.org
	To subscribe	https://www.ietf.org/mailman/listinfo/mls
	Archive	https://mailarchive.ietf.org/arch/browse/mls/
Chat	Room address	https://zulip.ietf.org/#narrow/stream/mls

Charter for Working Group

The Messaging Layer Security (MLS) protocol, RFC 9420, specifies a key
establishment protocol that provides efficient asynchronous group key
establishment with forward secrecy (FS) and post-compromise security (PCS)
for groups in size ranging from two to thousands.

The MLS WG will maintain the protocol and will work on the
following MLS protocol extensions:

Support for use of MLS in protocols developed by the MIMI working group
Support for new credential types
Support for common operational patterns in messaging applications
Support for quantum resistance
Framework for safe extensibility
Detection of lost application messages
Support for sending messages to individual members of a group

Many of the extensions to support these features will be included in
draft-ietf-mls-extensions, but some of the extensions will be published in
separate specifications.

Milestones

Date	Milestone	Associated documents
Dec 2026	Post Quantum security for MLS
Dec 2025	Submit Additional Credentials I-D to IESG as Proposed Standard	draft-barnes-mls-addl-creds
Dec 2024	Submit MLS extensions I-D to IESG as Proposed Standard	draft-ietf-mls-extensions