Krishean Draconis2d ago

apparently tomcat's strategy for enabling pqc is to use two different ssl keys, a normal one (only rsa is mentioned in the documentation page, but i guess ec would work as well?), and an enormous ml-dsa-65 one for a hybrid pqc configuration: https://tomcat.apache.org/tomcat-10.1-doc/ssl-howto.html#Post_Quantum_Cryptography

openssl 3.5 and higher can be used to generate mldsa65 keys and stuff them and the certificate into a pkcs12 pfx file for use with tomcat, but i'm not certain which cert authorities will sign a mldsa65 certificate, if any of them support it yet

#apache #tomcat #pqc #openssl

Apache Tomcat 10 (10.1.54) - SSL/TLS Configuration How-To

Show threadClemens2d ago

@krishean That idea is not specific to tomcat, that's probably going to be how almost everybody rolls this out unless some form of composite certificates with graceful enhancement built in gets finalized soon.

No public CAs support ML-DSA yet, mostly because the CA/Browser forum that makes the guidelines for operating CAs hasn't made them yet. Technically this is ready, though, you could generate your own ML-DSA CA today.

Show threadKrishean Draconis
@neverpanic yup, i was playing around with openssl and got it to make a ml-dsa-65 key and self signed certificate in a pkcs12 pfx for me that would work with tomcat. hopefully the guidelines get finalized soon and we can get real signed certs to work with
Apr 14 at 1:05amWeb
Show threadClemens1d ago
@krishean Google would like to see the use of Merkle tree certificates, because they're faster, though. I'm guessing that's at least part of the reason there hasn't been a lot of movement on this yet.