P802.1AReg Support for ML-DSA

This amendment adds support for unique per-device identifiers using cryptographic binding based on the Module-Lattice-Based Digital Signature Algorithm (ML-DSA) with the ML-DSA-87, ML-DSA-65, and ML-DSA-44 parameter sets as specified in NIST FIPS 204 and the ASN.1 algorithm identifiers specified in IETF RFC 9881.

Quantum computing may provide sufficient compute power to break the current set of asymmetric keyed cryptographic algorithms used for device identification. ML-DSA is believed to be capable of supporting the unique per-device identifiers (DevIDs) specified by IEEE Std 802.1AR against attacks from both classical and quantum computers. Post Quantum Cryptography supported DevIDs are expected to become a requirement for many governments in their procurements, beginning as soon as January 2027 (as in, for example, the US Quantum Computing Cybersecurity Preparedness Act (US 117-260)).