<?xml version='1.0' encoding='utf-8'?>
<!DOCTYPE rfc [
  <!ENTITY nbsp    "&#160;">
  <!ENTITY zwsp   "&#8203;">
  <!ENTITY nbhy   "&#8209;">
  <!ENTITY wj     "&#8288;">
]>
<?xml-stylesheet type="text/xsl" href="rfc2629.xslt" ?>
<!-- generated by https://github.com/cabo/kramdown-rfc version 1.7.39 (Ruby 3.4.9) -->
<rfc xmlns:xi="http://www.w3.org/2001/XInclude" ipr="trust200902" docName="draft-xue-mls-decentralized-00" category="info" consensus="true" submissionType="IETF" tocInclude="true" sortRefs="true" symRefs="true" version="3">
  <!-- xml2rfc v2v3 conversion 3.34.0 -->
  <front>
    <title abbrev="DDMLS">Distributed and Decentralized Uses of MLS</title>
    <seriesInfo name="Internet-Draft" value="draft-xue-mls-decentralized-00"/>
    <author fullname="Mark Xue">
      <organization>Germ Network, Inc.</organization>
      <address>
        <email>mark@germ.network</email>
      </address>
    </author>
    <author fullname="Britta Hale">
      <organization>Naval Postgraduate School</organization>
      <address>
        <email>britta.hale@nps.edu</email>
      </address>
    </author>
    <author fullname="Konrad Kohbrok">
      <organization>Phoenix R&amp;D</organization>
      <address>
      </address>
    </author>
    <date year="2026" month="June" day="26"/>
    <area>Security</area>
    <workgroup>Messaging Layer Security</workgroup>
    <keyword>decentralized mls</keyword>
    <abstract>
      <?line 53?>

<t>The Messaging Layer Security (MLS) protocol provides continuous key agreement
and offers additional benefits in multi-device group use cases. MLS relies
on a Delivery Service (DS) for message ordering. In highly
centralized uses, where the DS is a single server, configuration is
straightforward. However, MLS also lends itself to use cases that are
decentralized (e.g., federated networks) and even distributed (e.g., mesh
networks). This informational document lays out uses of MLS and its variants
and extensions across various topologies and provides guidance on selection
among alternatives under both functionality and security considerations.</t>
    </abstract>
    <note removeInRFC="true">
      <name>About This Document</name>
      <t>
        The latest revision of this draft can be found at <eref target="https://germ-mark.github.io/mls-informational-decentralized-applications/draft-xue-mls-decentralized.html"/>.
        Status information for this document may be found at <eref target="https://datatracker.ietf.org/doc/draft-xue-mls-decentralized/"/>.
      </t>
      <t>
        Discussion of this document takes place on the
        Messaging Layer Security Working Group mailing list (<eref target="mailto:mls@ietf.org"/>),
        which is archived at <eref target="https://mailarchive.ietf.org/arch/browse/mls/"/>.
        Subscribe at <eref target="https://www.ietf.org/mailman/listinfo/mls/"/>.
      </t>
      <t>Source for this draft and an issue tracker can be found at
        <eref target="https://github.com/germ-mark/mls-informational-decentralized-applications"/>.</t>
    </note>
  </front>
  <middle>
    <?line 65?>

<section anchor="introduction">
      <name>Introduction</name>
      <t>The Messaging Layer Security (MLS) protocol is typically used in scenarios where
a Delivery Service (DS) layer ensures that clients eventually agree on the order
in which commits are applied. However, MLS is increasingly used in decentralized
and distributed environments such as mesh networks. In such cases,
implementation of an adequate DS that ensures agreement on commit ordering can
be difficult, for example, because it incurs a significant overhead. This has
driven consideration of how to account for potential forking of the group state
<xref target="I-D.kohbrok-mls-dmls"/> for reordered commit messages or avoid the risk of
out-of-order commits altogether <xref target="I-D.xue-distributed-mls"/>. This informational
document provides an outline of uses of MLS and its extensions across various
network topology considerations, with specific considerations to network
overhead, storage, and security from state forking.</t>
    </section>
    <section anchor="definitions">
      <name>Definitions</name>
      <t>Members:       Protocol participants.
Centralized:   A centralized network has a single server or entity perform
               the responsibilities of a DS. An entity may also be a member.
Decentralized: A decentralized network relies on federation of servers or
               select entities performing the responsibilities of a DS. For
               example, assigned members may coordinate DS responsibilities
               among themselves.
Distributed:   A distributed network relies on many entities performing
               the responsibilities of a DS. This may include cases of
               many members or even all members participating in DS
               responsibilities, such as in mesh networks.</t>
    </section>
    <section anchor="trade-off-considerations">
      <name>Trade-off Considerations</name>
      <section anchor="mls">
        <name>MLS</name>
        <t>The MLS protocol is defined in <xref target="RFC9420"/>.</t>
        <section anchor="overhead">
          <name>Overhead</name>
          <t>MLS offers logarithmic overhead for groups.</t>
          <t>Additional overhead from the DS must also be accounted for.</t>
        </section>
        <section anchor="delivery-service">
          <name>Delivery Service</name>
          <t>The centralized case is straightforward in MLS. For decentralized use cases
and distributed use cases, care must be taken to identify a suitable DS to
ensure that there is group consensus on commit ordering. As a use case
increases in complexity from the decentralized setting to the distributed
setting, DS design decisions have increasing implications on overhead and
potentially also security.</t>
          <t>In a decentralized setting, one example solution is to assign one server
(among a set of federated servers) as the decision holder for such ordering,
thereby creating a pseudo-centralized environment out of a decentralized
environment. In a distributed use case, the challenge increases. Similar
temporary role assignment to members, where one member is dedicated as the
"lead" entity for deciding commit ordering may be possible in well-connected
use cases.</t>
          <t>Another approach is hierarchical ordering of commits, e.g., where each
member is assigned an order in which to commit a PCS update. This eases the
complexity of the DS, but can create considerations on length of PCS windows,
especially if a member is offline. Handling of Adds and Removes must also be
accounted for.</t>
          <t>Yet a further approach is that of using a consensus algorithm to reach
agreement on commit ordering. This offloads overhead to the DS as such
consensus algorithms can vary widely in overhead and delay incurred for
processing, especially if a member is unreachable.</t>
          <t>Thus maintaining consensus on commit ordering tends to incur increasing DS
overhead as network topologies become more distributed.</t>
        </section>
        <section anchor="resiliency">
          <name>Resiliency</name>
          <t>MLS is heavily dependent on commit ordering being processed in the correct
sequence. Out-of-order commits can lead to forks in the group state.</t>
        </section>
      </section>
      <section anchor="demls">
        <name>DeMLS</name>
        <t>In MLS, retention of a group state after applying a commit is strongly
discouraged, because it compromises the protocol's forward secrecy. As such,
clients cannot process out-of-order commits, because the group state is deleted
after the first commit is applied.</t>
        <t>DeMLS <xref target="I-D.kohbrok-mls-dmls"/> is a variant of MLS that achieves fork
resilience as introduced by Alwen et al. <xref target="FRCGKA"/>, which significantly
improves forward secrecy when retaining a group state after applying a commit.</t>
        <t>The main difference between MLS and DeMLS is how the <tt>init_secret</tt> is derived in
the key schedule. Instead of a regular KDF, DeMLS uses a puncturable
pseudorandom function (PPRF), which prevents the client from deriving the same
<tt>init_secret</tt> twice, thus achieving forward secrecy for each specific commit.</t>
        <section anchor="overhead-1">
          <name>Overhead</name>
          <t>As DeMLS is largely the same as MLS, it retains its performance characteristics
with the exception of local storage. Here, the PPRF used by DeMLS incurs a local
storage overhead on the order of 10 kB (depending slightly on the PPRF
implementation) per commit processed (if the old group state is retained). The
only other place where DeMLS differs from MLS is that an extra 32-byte epoch
identifier needs to be attached to every message to identify the exact group
state required to process the message.</t>
        </section>
        <section anchor="delivery-service-1">
          <name>Delivery Service</name>
          <t>Its fork resilience makes DeMLS generally suitable for use in environments where
the DS cannot prevent the occurrence of out-of-order commits.</t>
          <t>However, due to the overhead associated with commit processing, DeMLS benefits
from a DS that can inform clients when out-of-order processing may be necessary.</t>
          <t>For example, in federated environments, individual servers can detect when they
lose connectivity with other parts of the network and inform clients that they
may need to process multiple commits for the current epoch. Similarly, the
server can inform its clients when a given netsplit is over and old group states
can be deleted.</t>
        </section>
        <section anchor="resiliency-1">
          <name>Resiliency</name>
          <t>DeMLS makes it safer to maintain multiple forks of a group at the added cost of
storage, as well as a slight complexity increase in MLS's key schedule. This
makes the use of MLS viable in environments where forks may occur due to
out-of-order commits.</t>
        </section>
      </section>
      <section anchor="dimls">
        <name>DiMLS</name>
        <t>DiMLS is defined in <xref target="I-D.xue-distributed-mls"/>.</t>
        <t>DiMLS accomodates concurrent actions by
* defining a subset of group operations that are commutative and can be applied
ou of order
* using MLS groups as a primitive to represent each local snapshot of the
total group state
* advancing group state by distributing commits to the sender's local state
* maintaining causal dependency across MLS groups by exporting shared secrets and
importing them as PSK's.</t>
        <section anchor="overhead-2">
          <name>Overhead</name>
          <t>DiMLS overhead has linear update overhead. However, it is not dependent on the
DS for commit ordering, reducing the DS overhead requirements. For example, a
consensus on commit ordering is not required for the DS unlike in MLS. Thus
the trade-off in DiMLS is among overhead incurred by the security protocol
itself and its architectural requirements in DS overhead.</t>
        </section>
        <section anchor="delivery-service-2">
          <name>Delivery Service</name>
          <t>In DiMLS there are fewer requirements on the DS for exact ordering. Members
must eventually receive each commit from each other member, but delivery does
not need to be ordered for members to maintain consistent state.</t>
        </section>
        <section anchor="resiliency-2">
          <name>Resiliency</name>
          <t>DeMLS is highly resilient to out-of-order commits and, in the case of honest
members, forking of the group state is not possible. This is because each
member has full control of commit ordering as it relates to the keying state
protecting the messages that member sends.</t>
        </section>
      </section>
    </section>
    <section anchor="use-cases">
      <name>Use Cases</name>
      <t>The basic MLS protocol functions well in environments where reliable in-order
delivery can be assured. That includes both centralized environment as well as
those in decentralized and distributed uses where the DS overhead for e.g.,
consensus is deemed supportable.</t>
      <t>For cases of minor network topology spread, e.g., decentralized uses such as
federated servers, DeMLS can provide improvements to fork resiliency at minor
costs to storage.</t>
      <t>For distributed environments where significant changes in network topologies are
expected, e.g., mesh networks, or where memory storage is a consideration,
DiMLS offers advantages.</t>
    </section>
    <section anchor="security-considerations">
      <name>Security Considerations</name>
      <t>This document covers security considerations for various applications of other
documents to and including MLS. This document is not an exhaustive security
reference for use of MLS in decentralized or distributed environments, but
focuses on the issue of state forking in such use cases.</t>
    </section>
    <section anchor="iana-considerations">
      <name>IANA Considerations</name>
      <t>This document has no IANA actions.</t>
    </section>
  </middle>
  <back>
    <references anchor="sec-combined-references">
      <name>References</name>
      <references anchor="sec-normative-references">
        <name>Normative References</name>
        <reference anchor="RFC9420">
          <front>
            <title>The Messaging Layer Security (MLS) Protocol</title>
            <author fullname="R. Barnes" initials="R." surname="Barnes"/>
            <author fullname="B. Beurdouche" initials="B." surname="Beurdouche"/>
            <author fullname="R. Robert" initials="R." surname="Robert"/>
            <author fullname="J. Millican" initials="J." surname="Millican"/>
            <author fullname="E. Omara" initials="E." surname="Omara"/>
            <author fullname="K. Cohn-Gordon" initials="K." surname="Cohn-Gordon"/>
            <date month="July" year="2023"/>
            <abstract>
              <t>Messaging applications are increasingly making use of end-to-end security mechanisms to ensure that messages are only accessible to the communicating endpoints, and not to any servers involved in delivering messages. Establishing keys to provide such protections is challenging for group chat settings, in which more than two clients need to agree on a key but may not be online at the same time. In this document, we specify a key establishment protocol that provides efficient asynchronous group key establishment with forward secrecy (FS) and post-compromise security (PCS) for groups in size ranging from two to thousands.</t>
            </abstract>
          </front>
          <seriesInfo name="RFC" value="9420"/>
          <seriesInfo name="DOI" value="10.17487/RFC9420"/>
        </reference>
      </references>
      <references anchor="sec-informative-references">
        <name>Informative References</name>
        <reference anchor="FRCGKA" target="https://eprint.iacr.org/2023/394.pdf">
          <front>
            <title>Fork-Resilient Continuous Group Key Agreement</title>
            <author initials="J." surname="Alwen" fullname="Joel Alwen">
              <organization/>
            </author>
            <author initials="M." surname="Mularczyk" fullname="Marta Mularczyk">
              <organization/>
            </author>
            <author initials="Y." surname="Tselekounis" fullname="Yiannis Tselekounis">
              <organization/>
            </author>
            <date year="2024" month="February" day="22"/>
          </front>
        </reference>
        <reference anchor="I-D.kohbrok-mls-dmls">
          <front>
            <title>Decentralized Messaging Layer Security</title>
            <author fullname="Konrad Kohbrok" initials="K." surname="Kohbrok">
              <organization>Phoenix R&amp;D</organization>
            </author>
            <date day="20" month="October" year="2025"/>
            <abstract>
              <t>   Messaging Layer Security (MLS) provides strong end-to-end security
   guarantees for group messaging including Forward Secrecy (FS) and
   Post-Compromise Security (PCS).  To facilitate agreement between
   group members, MLS requires a Delivery Service (DS) component that
   orders of the handshake messages (Commits) that allow changes to the
   group state.  In decentralized settings without a central
   authoritative entity to enforce ordering, group members will likely
   have to retain key material so they can process Commits out-of-order.

   Retaining key material, however, significantly reduces the FS of the
   protocol.  This draft specifies Decentralized MLS (DMLS), based on
   the Fork-Resilient Continuous Group Key Agreement protocol FREEK
   proposed by Alwen et al.  [FRCGKA].  In essence, DMLS extends MLS
   such that key material can be retained to process Commits out-of-
   order with recuded impact to FS, thus allowing safer deployment in
   decentralized environments.

              </t>
            </abstract>
          </front>
          <seriesInfo name="Internet-Draft" value="draft-kohbrok-mls-dmls-03"/>
        </reference>
        <reference anchor="I-D.xue-distributed-mls">
          <front>
            <title>Distributed MLS</title>
            <author fullname="Mark Xue" initials="M." surname="Xue">
              <organization>Germ Network, Inc.</organization>
            </author>
            <author fullname="Joseph W Lukefahr" initials="J. W." surname="Lukefahr">
              <organization>US Naval Postgraduate School</organization>
            </author>
            <author fullname="Britta Hale" initials="B." surname="Hale">
              <organization>US Naval Postgraduate School</organization>
            </author>
            <date day="20" month="October" year="2025"/>
            <abstract>
              <t>   The Messaging Layer Security (MLS) protocol enables a group of
   participants to negotiate a common cryptographic state for messaging,
   providing Forward Secrecy (FS) and Post-Compromise Security (PCS).
   There are some use cases where message ordering challenges may make
   it difficult for a group of participants to agree on a common state
   or use cases where reaching eventual consistency is impractical for
   the application.  This document describes Distributed-MLS (DMLS), a
   composition protocol for using MLS sessions to protect messages among
   participants without negotiating a common group state.

              </t>
            </abstract>
          </front>
          <seriesInfo name="Internet-Draft" value="draft-xue-distributed-mls-02"/>
        </reference>
      </references>
    </references>
  </back>
  <!-- ##markdown-source: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-->

</rfc>
