Movatterモバイル変換

[0]ホーム
URL:

Jump to content
WikipediaThe Free Encyclopedia
Search

Messaging Layer Security

From Wikipedia, the free encyclopedia
Messaging protocol

Messaging Layer Security
Protocol stack
A purple six-pointed star which may be viewed as six stick figures interlocking hands, alongside copy that says "MLS"
AbbreviationMLS
PurposeEnd-to-end encrypting messages
Developer(s)
  • Richard Barnes
  • Benjamin Beurdouche
  • Raphael Robert
  • Jon Millican
  • Emad Omara
  • Katriel Cohn-Gordon
IntroductionJuly 2023; 2 years ago (2023-07)
OSI layerApplication layer
RFC(s)9420
Websitedatatracker.ietf.org/wg/mls/about/

Messaging Layer Security (MLS) is a security layer forend-to-end encrypting messages. It is maintained by the MLS working group of theInternet Engineering Task Force (IETF), and is designed to provide an efficient and practical security mechanism for groups as large as 50,000 and for those who access chat systems from multiple devices.[1][2][3]

Security properties

[edit]

Security properties of MLS include message confidentiality, message integrity and authentication, membership authentication, asynchronicity,forward secrecy, post-compromise security, and scalability.[4]

History

[edit]

The idea was born in 2016 and first discussed in an unofficial meeting during IETF 96 in Berlin with attendees fromWire,Mozilla andCisco.[5]

Initial ideas were based on pairwise encryption for secure 1:1 and group communication. In 2017, an academic paper introducing Asynchronous Ratcheting Trees was published by the University of Oxford and Facebook setting the focus on more efficient encryption schemes.[6]

The firstBoF took place in February 2018 at IETF 101 in London. The founding members areMozilla,Facebook,Wire,Google,Twitter,University of Oxford, andINRIA.[7]

As of March 29, 2023, the IETF has approved publication of Messaging Layer Security (MLS) as a new standard.[8] It was officially published on July 19, 2023.[9][10] At that time, Google announced it intended to add MLS to the end to end encryption used byGoogle Messages overRich Communication Services (RCS).[11] In March 2025, theGSMA announced the Universal Profile 3.0 standard of RCS would support MLS andApple announced it would support this RCS standard onApple Messages.[12][13]

Matrix is one of the protocols declaring migration to MLS.[14]

Research on addingpost-quantum cryptography (PQC) to MLS is ongoing.[15][16][17] The IETF has prepared an Internet-Draft using PQC algorithms in MLS.[18]

Implementations

[edit]
MLS implementations
ImplementationLanguageLicenseDeveloper
OpenMLSRustMITPhoenix R&D and Cryspen
MLS++C++BSD 2-ClauseCisco
mls-rsRustApache 2.0AWS Labs
MLS-TSTypeScriptApache 2.0Matrix Foundation
xmtp_mlsRustMITXMTP Labs

References

[edit]
  1. ^"Inside MLS, the New Protocol for Secure Enterprise Messaging".Dark Reading. June 27, 2019. RetrievedNovember 15, 2019.
  2. ^at 10:29, Richard Chirgwin 22 Aug 2018."Elders of internet hash out standards to grant encrypted message security for world+dog".www.theregister.co.uk. RetrievedNovember 15, 2019.{{cite web}}: CS1 maint: numeric names: authors list (link)
  3. ^"Messaging Layer Security".GitHub. RetrievedDecember 29, 2018.
  4. ^"Messaging Layer Security (mls) -".datatracker.ietf.org. RetrievedMarch 5, 2019.
  5. ^"Das sind die sieben Entwickler-Trends 2019: Vom Java-Comeback über MLS bis KI/ML-zentrierte Technologien".IT Finanzmagazin. January 2, 2019. RetrievedJanuary 7, 2019.
  6. ^Cohn-Gordon, Katriel; Cremers, Cas; Garratt, Luke; Millican, Jon; Milner, Kevin (2017)."On Ends-to-Ends Encryption: Asynchronous Group Messaging with Strong Security Guarantees".Cryptology ePrint Archive.
  7. ^Chirgwin, Richard (August 22, 2018)."Elders of internet hash out standards to grant encrypted message security for world+dog". RetrievedNovember 30, 2018.
  8. ^Sullivan, Nick; Turner, Sean (March 29, 2023)."Messaging Layer Security: Secure and Usable End-to-End Encryption".IETF. RetrievedJuly 28, 2023.
  9. ^"New MLS protocol provides groups better and more efficient security at Internet scale". July 19, 2023. RetrievedJuly 28, 2023.
  10. ^Beurdouche, Benjamin; Vasquez, Sarah (July 20, 2023)."Messaging Layer Security is now an internet standard".Mozilla. RetrievedJuly 28, 2023.
  11. ^"An important step towards secure and interoperable messaging".Google Online Security Blog. RetrievedDecember 12, 2024.
  12. ^Mayo, Benjamin (March 14, 2025)."End-to-end encrypted RCS messaging on iPhone coming in future software update".9to5Mac. RetrievedMarch 14, 2025.
  13. ^Van Pelt, Tom (March 14, 2025)."RCS Encryption: A Leap Towards Secure and Interoperable Messaging".GSMA. RetrievedMarch 14, 2025.
  14. ^"Are We MLS Yet?".Are We MLS Yet?. RetrievedSeptember 23, 2024.
  15. ^"Cryspen | Post-Quantum Group Messaging".cryspen.com. RetrievedDecember 12, 2024.
  16. ^Hashimoto, Keitaro; Katsumata, Shuichi; Prest, Thomas (November 7, 2022)."How to Hide MetaData in MLS-Like Secure Group Messaging: Simple, Modular, and Post-Quantum"(PDF).Cryptology ePrint Archive. RetrievedDecember 9, 2024.
  17. ^"Post-quantum messaging: examining Apple's new PQ3 protocol".PQShield. February 22, 2024. RetrievedDecember 9, 2024.
  18. ^Mahy, Rohan; Barnes, Richard (November 4, 2025).ML-KEM and Hybrid Cipher Suites for Messaging Layer Security (Report). Internet Engineering Task Force.

External links

[edit]
  • RFC 9420 – The Messaging Layer Security (MLS) Protocol
Protocols
(comparison)
Open
Closed
Services
Clients
(comparison)
Single protocol
Multi-protocol
XMPP (Jabber)
MSNP
Defunct
Related
Retrieved from "https://en.wikipedia.org/w/index.php?title=Messaging_Layer_Security&oldid=1337104252"
Categories:
Hidden categories:
[8]ページ先頭
©2009-2026 Movatter.jp