Skip to content

Extend PQ resistant crypto coverage #1774

Description

@markpmarton

Context

In the current implementation some MLS (mostly MLS related) encryption are vulnerable to quantum harvest now-decrypt later attacks:

  • MLS key exchange uses ECDH with X25519 or P-256 encryption
  • MLS signatures use ED25519 or ECDSA
  • Asymmetric JWT auth uses RS256, ES256, ES384, EdDSA

Proposed Solution

MlsSettings should contain parameters to set used cryptographic algorithms, including PQC solutions.
Where no reliable are available yet, design a workaround (e.g. PQC enforced TLS with hybrid key-exchanges).

Metadata

Metadata

Assignees

No one assigned

    Labels

    enhancementNew feature or request

    Type

    Fields

    No fields configured for Task.

    Projects

    Status
    Backlog

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions