<?xml version='1.0' encoding='utf-8'?>
<!DOCTYPE rfc [
  <!ENTITY nbsp    "&#160;">
  <!ENTITY zwsp   "&#8203;">
  <!ENTITY nbhy   "&#8209;">
  <!ENTITY wj     "&#8288;">
]>
<?xml-stylesheet type="text/xsl" href="rfc2629.xslt" ?>
<!-- generated by https://github.com/cabo/kramdown-rfc version 1.7.39 (Ruby 3.4.9) -->
<rfc xmlns:xi="http://www.w3.org/2001/XInclude" ipr="trust200902" docName="draft-kohbrok-mls-tls-01" category="info" submissionType="IETF" tocInclude="true" sortRefs="true" symRefs="true" version="3">
  <!-- xml2rfc v2v3 conversion 3.34.0 -->
  <front>
    <title abbrev="MLS-TLS">The MLS-TLS secure channel protocol</title>
    <seriesInfo name="Internet-Draft" value="draft-kohbrok-mls-tls-01"/>
    <author fullname="Konrad Kohbrok">
      <organization>Phoenix R&amp;D</organization>
      <address>
        <email>konrad@ratchet.ing</email>
      </address>
    </author>
    <author fullname="Raphael Robert">
      <organization>Phoenix R&amp;D</organization>
      <address>
        <email>ietf@raphaelrobert.com</email>
      </address>
    </author>
    <date year="2026" month="July" day="06"/>
    <area>Security</area>
    <keyword>TLS</keyword>
    <keyword>Handshake</keyword>
    <abstract>
      <?line 36?>

<t>This document details how the Messaging Layer Security (MLS) protocol can be
combined with the Transport Layer Security (TLS) record layer to yield the
MLS-TLS secure channel protocol. In this composed protocol, MLS acts as a
continuous key agreement protocol that allows initiator and responder to protect
both past and future messages in case of key material compromise. As such,
MLS-TLS is suitable for long-lived connections. MLS-TLS also inherits the
modularity of MLS and can be configured with post-quantum secure ciphersuites.</t>
    </abstract>
    <note removeInRFC="true">
      <name>About This Document</name>
      <t>
        The latest revision of this draft can be found at <eref target="https://kkohbrok.github.io/draft-kohbrok-mls-tls/draft-kohbrok-mls-tls.html"/>.
        Status information for this document may be found at <eref target="https://datatracker.ietf.org/doc/draft-kohbrok-mls-tls/"/>.
      </t>
      <t>Source for this draft and an issue tracker can be found at
        <eref target="https://github.com/kkohbrok/draft-kohbrok-mls-tls"/>.</t>
    </note>
  </front>
  <middle>
    <?line 46?>

<section anchor="introduction">
      <name>Introduction</name>
      <t>This document builds on the two-party profile for MLS
<xref target="I-D.draft-kohbrok-mls-two-party-profile"/> and combines it with the record
layer of TLS 1.3 <xref target="RFC8446"/> to yield a secure channel protocol. The
composition of both protocols is seamless due to the modular design of TLS 1.3
and MLS's capability to act as a continuous key agreement protocol. After the
initial handshake, initiator and responder can tunnel MLS commits through the
secure channel to update their key material. Key material updates allow both
parties to achieve forward-secrecy and post-compromise security.</t>
    </section>
    <section anchor="mls-as-a-continuous-key-agreement-protocol">
      <name>MLS as a continuous key agreement protocol</name>
      <t>MLS is a secure messaging protocol that can also act as a continuous key
agreement protocol. In particular, all parties in an MLS group can not only
exchange encrypted messages, but also export shared key material for use outside
of MLS.</t>
      <t>Within an MLS group, each member has distinct public key material that it can
update by sending a <em>commit</em> that updates its own key material and the key
material exported from the group. Such an update allows a client to achieve
forward secrecy (FS) and post-compromise security (PCS). FS and PCS can be
intuitively understood as follows.</t>
      <t>FS is the property that prevents an adversary from being able to decrypt
messages sent in the past even if it obtains current key material. Group members
achieve FS by deleting previously exported key material after an update.</t>
      <t>PCS is the property that prevents an adversary from decrypting future messages
even if it obtains current key material. Clients can achieve this property by
generating new key material and encrypting it to other group members. PCS is
achieved when other group members update the public keys of the updating client.</t>
    </section>
    <section anchor="composing-mls-and-tls">
      <name>Composing MLS and TLS</name>
      <t>The MLS-TLS protocol is a two-party protocol that establishes a secure channel
between an initiator and a responder. The protocol makes use of MLS's capability
to export key material and uses said key material to initialize the record
protection layer of the TLS protocol as defined in Section 5 of <xref target="RFC8446"/>. As
such MLS essentially replaces the TLS 1.3 handshake.</t>
      <t>The specific protocol flow for how initiator and responder establish an MLS
group and how the exported keys are subsequently updated is described in
<xref target="I-D.draft-kohbrok-mls-two-party-profile"/>, which defines a two-party profile
for MLS. In particular, the two-party profile describes how updates are
coordinated and when exported keys are ready to be used, in this case to
initialize or update the TLS record layer.</t>
    </section>
    <section anchor="advantages-of-mls">
      <name>Advantages of MLS</name>
      <t>The ability of both parties to achieve PCS by sending MLS commits in-band is
increasingly valuable the higher the risk of compromise of either party. As
such, the MLS-TLS protocol is specifically suited for scenarios where
connections tend to be long-lived. For example, in cases where connection
(re)establishment is costly.</t>
      <t>MLS is a modular design. When using it as a continuous key agreement protocol,
this yields two advantages: Post-quantum capable cryptographic abstractions and
arbitrary credential types.</t>
      <t>MLS's ciphersuites use Key Encapsulation Mechanisms (KEMs) and signature
algorithms as abstractions. This allows the use of a variety of cryptographic
algorithms including post-quantum secure ones for both confidentiality and
authentication. See <xref target="I-D.draft-ietf-mls-pq-ciphersuites"/> for hybrid and pure
post-quantum secure ciphersuites.</t>
      <t>MLS does not require clients to use any specific credential type as long as they
are provided with signature keys to sign MLS messages. MLS-TLS is thus largely
agnostic to how the application binds a client's identity to its signature
public key.</t>
    </section>
    <section anchor="protocol-overview">
      <name>Protocol Overview</name>
      <t>The MLS-TLS protocol consists of three phases.</t>
      <ol spacing="normal" type="1"><li>
          <t>Initial key agreement, where initiator and responder agree on key material
using the MLS two party profile. At the end of this phase, both parties are
members of an MLS group that is used in the other phases to generate key
material.</t>
        </li>
        <li>
          <t>Secure channel phase, where initiator and responder can encrypt data using
the TLS 1.3 record layer protocol. The encryption keys are derived from the
MLS group created during the initial key agreement phase. During the secure
channel phase, initiator and responder can tunnel MLS commits through the
secure channel to update their key material.</t>
        </li>
        <li>
          <t>Resumption, where initiator or responder can resume a previously interrupted
connection without having to repeat phase 1, including the ability to send
data in the first flight of messages.</t>
        </li>
      </ol>
      <t>For more details on the initial key agreement, resumption, as well as how
message updates work, see <xref target="I-D.draft-kohbrok-mls-two-party-profile"/>.</t>
    </section>
    <section anchor="deriving-keys-for-record-layer-protection">
      <name>Deriving keys for record layer protection</name>
      <t>Both after the initial key agreement phase and the resumption phase, initiator
and responder derive key material from the MLS group created during the initial
key agreement phase.</t>
      <t>The <tt>client_application_traffic_secret</tt> and the
<tt>server_application_traffic_secret</tt> required by the record layer are derived as
follows.</t>
      <sourcecode type="tls"><![CDATA[
server_application_traffic_secret =
  MLS-Exporter("MLS-TLS s ap traffic", [], Length)

client_application_traffic_secret =
  MLS-Exporter("MLS-TLS c ap traffic", [], Length)
]]></sourcecode>
      <t>Where MLS-Exporter is defined in <xref target="RFC9420"/> and Length is the size of the
secret required by the TLS record layer.</t>
    </section>
    <section anchor="protecting-application-data-on-the-wire">
      <name>Protecting application data on the wire</name>
      <t>Application data is encoded as described in Section 5.1 of <xref target="RFC8446"/> and
protected as described in Section 5.2 of <xref target="RFC8446"/>. The keys derived from the
MLS group as described in <xref target="deriving-keys-for-record-layer-protection"/> are used
to calculate the traffic keys for record protection as described in Section 7.3
of <xref target="RFC8446"/>.</t>
      <t>MLS-TLS uses the TLS 1.3 record-layer sequence-number and per-record nonce
construction specified in Section 5.3 of <xref target="RFC8446"/>. Sequence numbers are
maintained separately for each direction and are reset whenever new record
protection keys are installed. Record padding is handled as specified in Section
5.4 of <xref target="RFC8446"/>.</t>
      <t>The application traffic secrets MUST be deleted after deriving the traffic keys.</t>
    </section>
    <section anchor="updating-record-layer-protection-keys">
      <name>Updating record layer protection keys</name>
      <t>The MLS two party profile allows both parties to update the MLS group created in
the initial key agreement phase. In the context of MLS-TLS, these
ConnectionUpdate and EpochKeyUpdate messages (as defined in
<xref target="I-D.draft-kohbrok-mls-two-party-profile"/>) are sent in place of key update
messages defined in <xref target="RFC8446"/>. Concretely, they are serialized and sent as
the <tt>content</tt> of a TLSInnerPlaintext message with <tt>type</tt> set to <tt>handshake</tt>.</t>
      <t>TODO: The two-party profile I-D should define a message similar to
<xref target="RFC9420"/>'s MLSMessage, which contains either a ClientHello, ServerHello,
ConnectionUpdate or EpochKeyUpdate. This is to allow recipients to know what to
deserialize when they receive an in-band update message.</t>
      <t>When a party is ready to start using the key material as specified in Section 4
of <xref target="I-D.draft-kohbrok-mls-two-party-profile"/>, the client derives new
application traffic secrets as specified in
<xref target="deriving-keys-for-record-layer-protection"/>. These secrets are then used to
further derive the traffic keys for record protection as described in Section
7.3 of <xref target="RFC8446"/>.</t>
      <t>Key material that is replaced in this way MUST be deleted.</t>
      <t>The key usage limits in Section 5.5 of <xref target="RFC8446"/> apply to each set of
MLS-TLS record protection keys. Before reaching those limits, or before a record
sequence number would wrap, an implementation MUST replace the record protection
keys using the update mechanism in this section or terminate the connection.</t>
    </section>
    <section anchor="preventing-cross-protocol-attacks">
      <name>Preventing cross-protocol attacks</name>
      <t>TODO: Define a component that the initiator needs to include in its leaf node
and that MUST be included in the context of the MLS group. This purpose of the
component is to clearly mark the individual messages for use in the context of
MLS-TLS.</t>
    </section>
    <section anchor="security-considerations">
      <name>Security Considerations</name>
      <t>TODO Security</t>
    </section>
    <section anchor="iana-considerations">
      <name>IANA Considerations</name>
      <t>This document has no IANA actions.</t>
    </section>
  </middle>
  <back>
    <references anchor="sec-normative-references">
      <name>Normative References</name>
      <reference anchor="I-D.draft-kohbrok-mls-two-party-profile">
        <front>
          <title>A two-party profile for MLS</title>
          <author fullname="Konrad Kohbrok" initials="K." surname="Kohbrok">
            <organization>Phoenix R&amp;D</organization>
          </author>
          <author fullname="Raphael Robert" initials="R." surname="Robert">
            <organization>Phoenix R&amp;D</organization>
          </author>
          <date day="3" month="February" year="2026"/>
          <abstract>
            <t>   TODO Abstract

            </t>
          </abstract>
        </front>
        <seriesInfo name="Internet-Draft" value="draft-kohbrok-mls-two-party-profile-00"/>
      </reference>
      <reference anchor="RFC8446">
        <front>
          <title>The Transport Layer Security (TLS) Protocol Version 1.3</title>
          <author fullname="E. Rescorla" initials="E." surname="Rescorla"/>
          <date month="August" year="2018"/>
          <abstract>
            <t>This document specifies version 1.3 of the Transport Layer Security (TLS) protocol. TLS allows client/server applications to communicate over the Internet in a way that is designed to prevent eavesdropping, tampering, and message forgery.</t>
            <t>This document updates RFCs 5705 and 6066, and obsoletes RFCs 5077, 5246, and 6961. This document also specifies new requirements for TLS 1.2 implementations.</t>
          </abstract>
        </front>
        <seriesInfo name="RFC" value="8446"/>
        <seriesInfo name="DOI" value="10.17487/RFC8446"/>
      </reference>
      <reference anchor="I-D.draft-ietf-mls-pq-ciphersuites">
        <front>
          <title>ML-KEM and Hybrid Cipher Suites for Messaging Layer Security</title>
          <author fullname="Rohan Mahy" initials="R." surname="Mahy">
         </author>
          <author fullname="Richard Barnes" initials="R." surname="Barnes">
         </author>
          <date day="2" month="July" year="2026"/>
          <abstract>
            <t>   This document registers new cipher suites for Messaging Layer
   Security (MLS) based on "post-quantum" algorithms, which are intended
   to be resilient to attack by quantum computers.  These cipher suites
   are constructed using the new Module-Lattice Key Encapsulation
   Mechanism (ML-KEM), optionally in combination with traditional
   elliptic curve KEMs, together with appropriate authenticated
   encryption, hash, and signature algorithms.

            </t>
          </abstract>
        </front>
        <seriesInfo name="Internet-Draft" value="draft-ietf-mls-pq-ciphersuites-05"/>
      </reference>
      <reference anchor="RFC9420">
        <front>
          <title>The Messaging Layer Security (MLS) Protocol</title>
          <author fullname="R. Barnes" initials="R." surname="Barnes"/>
          <author fullname="B. Beurdouche" initials="B." surname="Beurdouche"/>
          <author fullname="R. Robert" initials="R." surname="Robert"/>
          <author fullname="J. Millican" initials="J." surname="Millican"/>
          <author fullname="E. Omara" initials="E." surname="Omara"/>
          <author fullname="K. Cohn-Gordon" initials="K." surname="Cohn-Gordon"/>
          <date month="July" year="2023"/>
          <abstract>
            <t>Messaging applications are increasingly making use of end-to-end security mechanisms to ensure that messages are only accessible to the communicating endpoints, and not to any servers involved in delivering messages. Establishing keys to provide such protections is challenging for group chat settings, in which more than two clients need to agree on a key but may not be online at the same time. In this document, we specify a key establishment protocol that provides efficient asynchronous group key establishment with forward secrecy (FS) and post-compromise security (PCS) for groups in size ranging from two to thousands.</t>
          </abstract>
        </front>
        <seriesInfo name="RFC" value="9420"/>
        <seriesInfo name="DOI" value="10.17487/RFC9420"/>
      </reference>
    </references>
    <?line 221?>

<section numbered="false" anchor="acknowledgments">
      <name>Acknowledgments</name>
      <t>TODO acknowledge.</t>
    </section>
  </back>
  <!-- ##markdown-source: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-->

</rfc>
