Loading...

XML

Word

Printable

Type: Enhancement
Resolution: Unresolved
Priority: P2
Fix Version/s: tbd
Affects Version/s: None
Component/s: security-libs
Labels:
- seclibs-pqc

Subcomponent:
javax.net.ssl
Understanding:
Fix Understood

A proposed specification to support Hybrid Key Exchange for TLS 1.3 (https://datatracker.ietf.org/doc/draft-ietf-tls-hybrid-design) is currently in development. The current draft of the specification combines traditional x25519, secp256r1 and secp384r1 key shares with kyber512 and kyber768, and KEMs as inputs into the TLS 1.3 key scheduler. Kyber and KEM support (the latter already having been delivered) will be required features in order to implement this feature.

blocks

JDK-8371736 Implement ML-KEM Named Groups for TLS 1.3

Open

JDK-8358541 JEP 527: Post-Quantum Hybrid Key Exchange for TLS 1.3

Candidate

csr for

JDK-8369848 Implement JEP 527: TLS 1.3 Hybrid Key Exchange

Draft

duplicates

JDK-8353682 Refactor TLS to use KEM for key exchange

Closed

is blocked by

JDK-8298390 Implement JEP 496: Quantum-Resistant Module-Lattice-Based Key Encapsulation Mechanism

Resolved

JDK-8301034 JEP 452: Key Encapsulation Mechanism API

Closed

relates to

JDK-8353682 Refactor TLS to use KEM for key exchange

Closed

links to

Review(master) openjdk/jdk/27614

(1 is blocked by, 1 relates to, 1 links to)

Assignee:: Haimay Chao
Reporter:: Jamil Nimeh
Votes:: 0 Vote for this issue
Watchers:: 7 Start watching this issue

Created:: 2023-08-15 13:54
Updated:: 2025-11-12 11:53

Details

Description

Attachments

Issue Links

Activity

People

Dates