July 2, 2026
Spy vs. Spy, but make it standards
NSA tries to weaken mlkem standardisation
Standards fight turns into a trust meltdown as commenters smell smoke and shout conspiracy
TLDR: Critics say the NSA is trying to push a weaker internet security rule and flooded the process with fresh supporters after losing a vote. Commenters are split between "this reeks" and "show me actual proof," turning a niche standards debate into a full-on trust meltdown.
The cryptography nerds are absolutely not having a calm one. The article accuses the U.S. National Security Agency — America’s famous spy agency — of trying to push a weaker internet security standard and of rallying extra supporters after losing an earlier vote. In plain English: this is a fight over how websites should protect connections in the future, and critics say the government is trying to make that protection a little easier to crack later. That alone would be juicy enough, but the real fireworks are in the reactions.
Some commenters are waving the giant red flag of "this smells bad". One person said there’s a clear “whiff of people behaving badly,” while mocking a pro-change argument that claimed there’s "no code written" for the stronger option as a stretch “beyond reasonable doubt.” Others are more skeptical of the whole cloak-and-dagger framing, asking a very fair internet question: where’s the proof these people are actually tied to the NSA? No @nsa.gov email, no instant buy-in.
And then came the biggest split of all: is this a dangerous weakening of online safety, or just another standard nobody is forced to use? One side calls stripping the “hybrid” protection down to a simpler option obviously weaker; the other side basically says, “Calm down, the standards body isn’t forcing your laptop at gunpoint.” Meanwhile, the harshest roast of the bunch slammed the backlash as a “particularly rancid conspiracy brained” rage campaign. So yes: it’s spies, standards, suspicious timing, and commenters accusing each other of bad faith — the internet’s favorite genre.
Key Points
- •The article claims the NSA is supporting standardization of "ietf-tls-mlkem" instead of the hybrid "ietf-tls-ecdhe-mlkem."
- •It says objections led proponents to change their public arguments during the standards debate.
- •The article reports that the NSA lost the most recent ML-KEM vote in the IETF TLS working group.
- •It says another vote was called on 24 June 2026 and cites Mike Jenkins' 25 June 2026 positive vote as an example of new participation.
- •The article urges readers to join the IETF TLS mailing list and submit opposition to draft-ietf-tls-mlkem-08 by 7 July 2026; it says more than 30 opposition statements existed as of 1 July 2026.