Replying to an earlier post

@djb note this exact strategy was attempted by the vendors who didn’t want TLS 1.3 to happen because ephemeral key exchanges were made mandatory in TLS 1.3 ruining their network monitoring capabilities. They sent lots of people to try and block TLS 1.3, but the attempts didn’t work.

The IETF has experience with people sending sockpuppets. It is sad to see you attempt a similar strategy.

Replying to an earlier post

@letoams "There is no formal membership in the IETF. Participation is open to all. This participation may be by on-line contribution, attendance at face-to-face sessions, or both. Anyone from the Internet community who has the time and interest is urged to participate in IETF meetings and any of its on-line working group discussions."

You're trying to disenfranchise real people by calling them "sockpuppets". You hype a few pseudonymous objections, ignoring pseudonymous _support_ statements.

Replying to an earlier post

@letoams
Let's imagine you push this through. Then there will be push, for efficiency of course, to drop hybrid approach everywhere. Eventually, likes of Signal will be using only new pq algos, without adding proven encryption.

Would you make an official statement that you personally will appologize, if/when new algos and emplementation(s) found to have a bug.
Would you also pay appropriate ensurance.

As IETF you push this.
But I, as CSO will be responsible, when bugs are found.

@djb

Replying to an earlier post

@rsalz @letoams
If I let standards body to do things I think insecure, sounds like I am responsible to speak up to chairs in said standards body.
Hence, here I am.
Why are you surprised?

Don't remove mentions to interested groups. They should know what kinds of arguments will be quick fired at them when they will be protecting public interests.

@djb

@pluralistic @eff

Jul 5, 2026, 00:32 UTCen