Uploaded image for project: 'RHEL'
  1. RHEL
  2. RHEL-101123

Enable support for ML-DSA in GnuTLS

Linking RHIVOS CVEs to...Migration: Automation ...SWIFT: POC ConversionSync from "Extern...XMLWordPrintable

    • crypto-policies-20250714-1.git95bf40e.el10
    • No
    • Low
    • 1
    • rhel-security-crypto
    • 21
    • 26
    • 0.5
    • False
    • False
    • Hide

      None

      Show
      None
    • Yes
    • Crypto25August
    • Hide

      AC1) ML-DSA-87, ML-DSA-65 and ML-DSA-44 are enabled in all gnutls policies we ship with the highest priority, under both secure-sig and secure-sig-for-cert

      Show
      AC1) ML-DSA-87, ML-DSA-65 and ML-DSA-44 are enabled in all gnutls policies we ship with the highest priority, under both secure-sig and secure-sig-for-cert
    • Pass
    • Enabled
    • Automated
    • Feature
    • Hide
      Feature, enhancement: crypto-policies gains support for enabling ML-DSA in gnutls config
      Reason: gnutls gained support for ML-DSA in TLS
      Result: ML-DSA is enabled in gnutls by default. `sign` values `MLDSA44`, `MLDSA65` and `MLDSA88` can be used to disable it back
      Show
      Feature, enhancement: crypto-policies gains support for enabling ML-DSA in gnutls config Reason: gnutls gained support for ML-DSA in TLS Result: ML-DSA is enabled in gnutls by default. `sign` values `MLDSA44`, `MLDSA65` and `MLDSA88` can be used to disable it back
    • Proposed
    • Unspecified
    • Unspecified
    • Unspecified
    • None

      GnuTLS now supports ML-DSA in TLS (RHEL-64740).

      The algorithms ML-DSA-44, ML-DSA-65, and ML-DSA-87 should be enabled in all policies (DEFAULT, FIPS, etc.)

              asosedki@redhat.com Alexander Sosedkin
              hkario@redhat.com Alicja Kario
              Alexander Sosedkin Alexander Sosedkin
              Ondrej Moris Ondrej Moris
              Mirek Jahoda Mirek Jahoda
              Votes:
              0 Vote for this issue
              Watchers:
              8 Start watching this issue

                Created:
                Updated: