With recent developments in post-quantum cryptography, it’s recommended to transition towards X25519MLKEM768 for enhanced security. This hybrid key exchange is now the default in Go’s crypto/tls library following proposal #69985.
Firefox 132+ and Chrome 131+ are setting X25519MLKEM768 as the default in Beta versions, and Cloudflare recommends adopting X25519MLKEM768 for improved security.
In #221, support for X25519Kyber768Draft00 was added. This request serves as a follow-up to ensure utls aligns with current best practices and maintains compatibility with major TLS clients and servers.
With recent developments in post-quantum cryptography, it’s recommended to transition towards
X25519MLKEM768for enhanced security. This hybrid key exchange is now the default in Go’scrypto/tlslibrary following proposal #69985.Firefox 132+ and Chrome 131+ are setting X25519MLKEM768 as the default in Beta versions, and Cloudflare recommends adopting X25519MLKEM768 for improved security.
In #221, support for
X25519Kyber768Draft00was added. This request serves as a follow-up to ensureutlsaligns with current best practices and maintains compatibility with major TLS clients and servers.