I have reviewed this document as part of the security directorate's ongoing effort to review all IETF documents being processed by the IESG. These comments were written primarily for the benefit of the security area directors. Document editors and WG chairs should treat these comments just like any other last call comments.

The summary of the review is ready.

From the abstract, this document describes the conventions for using the Stateless Hash-Based Digital Signature Algorithm (SLH-DSA) in X.509 Public Key Infrastructure.

I've followed the development of the various PQ crypto algorithms, and I am familiar with SLH-DSA at a high level, but my expertise is significantly less than that of some (or maybe all) of this document's editors and working group chairs. With that in mind, I see no security issues with this document.