Cloudflare Research: Post-Quantum Key Agreement
On essentially all domains served through Cloudflare, including this one, we have enabled hybrid post-quantum key agreement. Read our blog for the details.
You are using X25519 which is not post-quantum secure.
Deployed key agreements
Available with TLSv1.3 including HTTP/3 (QUIC)
Key agreement | TLS identifier | |
---|---|---|
X25519Kyber512Draft00 | 0xfe30 |
|
X25519Kyber768Draft00 | 0xfe31 |
Client support
- Our fork of Go.
- Our fork of BoringSSL.
- Our fork of QUIC-go. [new!]
- Goutam Tamvada's fork of Firefox. [new!]
- Open Quantum Safe with the right setting. [new!]
- Zig nightly. [new!]
Contact
You can reach us directly at ask-research@cloudflare.com with questions and feedback.