On Sun, Mar 30, 2025 at 11:57:09AM -0400, Jan Schaumann via mailop wrote:
> Viktor Dukhovni via mailop <[email protected]> wrote:
> > The observed TLS handshakes from the (very likely botnet) nodes offer
> > support for hybrid Post-Quantum key exchange (X25519MLKEM768) (which my
> > TLS stack then prefers, ensuring its use when supported).
> >
> > I would not have expected botnets to be quite so bleeding edge in their
> > TLS support, use of hybrid ML-KEM TLS key exchange is a "-00" IETF
> > working group draft, adopted by the LAMPS working group just two or so
> > weeks back.
>
> Early adopters of the OpenSSL 3.5.0-beta1 release that
> dropped a few days ago?
>
> That includes and prefers hybrid PQC, so the adoption
> might have been accidental by simply upgrading
> OpenSSL.
>
> But yes, interesting to see. Although it's often been
> the case that early adopters included porn, spam, and
> abuse...
While it'd be flattering to think they're proactively running my code, I
am inclined to think they're on some mainstream platform (Windows?), and
using the stock platform TLS library, which happens to already support
hybrid ML-KEM. Or perhaps they're writing their code in Go, Rust, or
some other dev platform which has had ML-KEM support somewhat longer
than the just released OpeNSSL 3.5 beta (with 3.5.0 due in a matter of
days now).
But botnets, and a couple of personal developer domains aside, in my
logs I see only Google's MTAs doing post-quantum key exchange. The rest
of the ecosystem doesn't seem to have moved there just yet.
--
Viktor.
_______________________________________________
mailop mailing list
[email protected]
https://list.mailop.org/listinfo/mailop
