-
Notifications
You must be signed in to change notification settings - Fork 10.4k
[SSL/TLS] Bring in PQC content to Dev Docs #18165
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Merged
RebeccaTamachiro
merged 25 commits into
production
from
rebecca/ssl-post-quantum-cryptography
Nov 22, 2024
Merged
Changes from 8 commits
Commits
Show all changes
25 commits
Select commit
Hold shift + click to select a range
97c2825
Add placeholders for new folder and pages and fill in frontmatter
RebeccaTamachiro 3990553
Add outline for index.mdx and fill in TLS background info
RebeccaTamachiro a6bfb7f
Apply suggestion: Reword intro to TLS building blocks
RebeccaTamachiro 9a2e327
Fix typo and reword index.mdx meta description
RebeccaTamachiro 691a805
Improve parallelism, refine text, and link out to TLS handshake LC
RebeccaTamachiro 55a8f2a
Fill in hybrid key agreement section
RebeccaTamachiro 7740221
Complete visitor-to-cloudflare intro paragraph
RebeccaTamachiro 7e0b9a1
Add mermaid digram for connections and reword #2
RebeccaTamachiro 8d5d0c8
Fix Internet capitalization
RebeccaTamachiro f815122
Rename file, fill in, and link to pqc-support
RebeccaTamachiro 501a6d5
Fix capitalization and fill in Intenal connections section
RebeccaTamachiro 769a0df
Fill in Cf to origin and review titles and headings
RebeccaTamachiro d8a58a8
Fix missing hyphen and touch up pqc-to-origin description
RebeccaTamachiro 8b65760
Add split ClientHello and HRR workaround to pqc-to-origin
RebeccaTamachiro 05fe350
Add setup instructions to pqc-to-origin
RebeccaTamachiro 2fc8ef7
Apply suggestion from code review
RebeccaTamachiro 0e02cc4
Apply suggestions from code review
RebeccaTamachiro f029142
Replace store by harvest, adjust RFC link cf Style Guide, and split l…
RebeccaTamachiro 66bd9f8
Add reference to PQ signatures and link out to blog
RebeccaTamachiro e11cab4
Fix origin server section to use fork and bssl for both cases
RebeccaTamachiro ed2f4c0
Add link to Cloudflare Radar
RebeccaTamachiro ce59ab9
Text review and move link to Radar higher up in the page
RebeccaTamachiro cf3fd60
Simplify origin server instructions to use BoringSSL instead of fork
RebeccaTamachiro 7f6dfea
Overall text review and remove previous origin instructions
RebeccaTamachiro 49f5b90
Apply suggestion from code review
RebeccaTamachiro File filter
Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
There are no files selected for viewing
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,70 @@ | ||
| --- | ||
| pcx_content_type: concept | ||
| title: Post-quantum cryptography (PQC) | ||
| sidebar: | ||
| order: 9 | ||
| label: About PQC | ||
| group: | ||
| label: Post-quantum | ||
| head: [] | ||
| description: Get an overview of how Cloudflare is implementing post-quantum cryptography to protect you against store now, decrypt later. | ||
| --- | ||
|
|
||
| For years, Cloudflare has been researching and [writing about post quantum](https://blog.cloudflare.com/tag/post-quantum/). | ||
|
|
||
| To protect you against the risk of [store now, decrypt later](https://en.wikipedia.org/wiki/Harvest_now,_decrypt_later), and considering all the [connections](#three-connections-in-the-life-of-a-request) that take place when your website or application is on Cloudflare, we have deployed and are actively expanding the use of post-quantum hybrid key agreement. | ||
|
|
||
| :::caution[TLS 1.3] | ||
| Post-quantum key agreements are only supported in protocols based on TLS 1.3 (including HTTP/3) and are disabled for websites in [FIPS mode](/cloudflare-one/policies/gateway/http-policies/tls-decryption/#fips-compliance). | ||
| ::: | ||
|
|
||
| ## Three building blocks of TLS | ||
|
|
||
| Before TLS can protect your communications, three cryptographic algorithms have to be agreed on during the [TLS handshake](https://www.cloudflare.com/learning/ssl/what-happens-in-a-tls-handshake/): | ||
|
|
||
| - **Symmetric ciphers:** Algorithms used to encrypt and decrypt data, ensuring confidentiality and integrity (such as `CHACHA20-POLY1305`). | ||
| - **Key agreement:** A cryptographic protocol that allows client and server to safely agree on a shared key (such as `ECDH`). | ||
| - **Signature algorithms:** Cryptographic algorithms used to generate the digital signatures in TLS certificates (such as `RSA` and `ECDSA`). | ||
|
|
||
| As explained in our [blog post](https://blog.cloudflare.com/pq-2024/#two-migrations), the first, most urgent migration has to do with key agreement. | ||
RebeccaTamachiro marked this conversation as resolved.
Outdated
Show resolved
Hide resolved
|
||
|
|
||
| ### Hybrid key agreement | ||
|
|
||
| With TLS 1.3, [X25519](https://en.wikipedia.org/wiki/Curve25519) - an Elliptic Curve Diffie-Hellman (ECDH) protocol - is the current standard used in key agreement. However, its security can be easily broken by quantum computers using [Shor's algorithm](https://en.wikipedia.org/wiki/Shor%27s_algorithm). | ||
RebeccaTamachiro marked this conversation as resolved.
Outdated
Show resolved
Hide resolved
|
||
|
|
||
| In response to this, Cloudflare is an early adopter of ML-KEM, the post-quantum key agreement selected by the US National Institute of Standards and Technology (NIST). For a detailed timeline and more background information refer to [The state of the post-quantum internet](https://blog.cloudflare.com/pq-2024/). | ||
RebeccaTamachiro marked this conversation as resolved.
Outdated
Show resolved
Hide resolved
|
||
|
|
||
| Cloudflare has deployed the following hybrid key agreements: | ||
|
|
||
| - [X25519MLKEM768](https://datatracker.ietf.org/doc/draft-kwiatkowski-tls-ecdhe-mlkem/) (Recommended) | ||
| - TLS identifier: `0x11ec` | ||
| - [X25519Kyber768Draft00](https://datatracker.ietf.org/doc/draft-tls-westerbaan-xyber768d00/) (Obsolete) | ||
| - TLS identifier: `0x6399` | ||
|
|
||
| A hybrid key agreement lays the groundwork as more and more [clients](#visitor-to-cloudflare) adopt post-quantum cryptograph, while also maintaining the current security provided by X25519. It is a safer path in case of an unexpected breakthrough that renders all variants of ML-KEM insecure. | ||
|
|
||
| ## Three connections in the life of a request | ||
|
|
||
| ```mermaid | ||
| flowchart LR | ||
| accTitle: Three connections - from visitor to Cloudflare to origin server | ||
| accDescr: Diagram showing connections for an uncached request. | ||
| A[Visitor] | ||
| subgraph Cloudflare | ||
| X[(Cloudflare <br />service A)] | ||
| B[(Cloudflare <br />service B)] | ||
| end | ||
| C[(Origin server)] | ||
|
|
||
| A --1--> X | ||
| X --2--> B | ||
| B --3--> C | ||
| ``` | ||
|
|
||
| ### 1. Visitor to Cloudflare | ||
|
|
||
| As of [october 2023](https://blog.cloudflare.com/post-quantum-for-all/), all websites and APIs served through Cloudflare over TLS 1.3 support post-quantum hybrid key agreement. However, the connection is only post-quantum secured if the client also supports post-quantum cryptography. | ||
|
|
||
| ### 2. Internal connections | ||
|
|
||
| ### 3. Cloudflare to your origin | ||
9 changes: 9 additions & 0 deletions
9
src/content/docs/ssl/post-quantum-cryptography/pqc-to-origin.mdx
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,9 @@ | ||
| --- | ||
| pcx_content_type: how-to | ||
| title: Enable PQC to your origin | ||
| sidebar: | ||
| order: 2 | ||
| label: PQC to your origin | ||
| head: [] | ||
| description: Learn how to enable post-quantum cryptography in connections from Cloudflare to your origin servers. | ||
| --- |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,8 @@ | ||
| --- | ||
| pcx_content_type: reference | ||
| title: PQC support | ||
| sidebar: | ||
| order: 3 | ||
| head: [] | ||
| description: Consider information about post-quantum cryptography at Cloudflare - deployed key agreements, software support, protected products, and more. | ||
| --- |
Oops, something went wrong.
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Uh oh!
There was an error while loading. Please reload this page.