Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Enable Post-Quantum cryptography when it's used by the filtered app #1916

Open
ameshkov opened this issue Sep 16, 2024 · 0 comments
Open

Enable Post-Quantum cryptography when it's used by the filtered app #1916

ameshkov opened this issue Sep 16, 2024 · 0 comments
Assignees
@anyakushin
Labels
Feature request Priority: P3 Status: In Progress Version: CoreLibs v1.16 Version: CoreLibs v1.17

Comments

@ameshkov
Copy link
Member

Issue Details

Chrome is going to use ML-KEM starting from v131:
https://security.googleblog.com/2024/09/a-new-path-for-kyber-on-web.html

AdGuard generally follows what the filtered app does when establishes a secure connection so if the app is using a PQ crypto, AdGuard should also do that.

Proposed solution

Detect PQ crypto in clienthello. If detected, use it when establishing a secure connection with the remote server.

Alternative solution

No response
This was referenced Sep 26, 2024
Open
Open
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@anyakushin anyakushin

Labels
Feature request Priority: P3 Status: In Progress Version: CoreLibs v1.16 Version: CoreLibs v1.17
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@ameshkov @adguard-bot @anyakushin