https://bz.apache.org/bugzilla/show_bug.cgi?id=69800
Bug ID: 69800
Summary: Enhancement: Support for configuring TLS named groups
Product: Tomcat 11
Version: unspecified
Hardware: PC
OS: Mac OS X 10.1
Status: NEW
Severity: enhancement
Priority: P2
Component: Catalina
Assignee: dev@tomcat.apache.org
Reporter: matthew.js.por...@gmail.com
Target Milestone: -------
I’d like to propose an enhancement to support configuring enabled TLS key
exchange named groups.
In particular, in the context of Post-Quantum Cryptography this would make it
possible to configure hybrid key exchange groups for TLS 1.3. This is described
in this JEP draft: https://openjdk.org/jeps/8358541
Bouncy Castle has already added support for Post-Quantum Hybrid Key Exchange in
their JSSE provider.
https://www.bouncycastle.org/resources/bouncy-castle-releases-java-1-81-and-c-net-2-6-1/
This can be seen in this sample repo
https://github.com/matthew-js-porter/bc-pqc-sample/
This is a prerequisite for this Spring Boot issue for configuring TLS named
groups in SslBundles
https://github.com/spring-projects/spring-boot/issues/46968
--
You are receiving this mail because:
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
For additional commands, e-mail: dev-h...@tomcat.apache.org
