File tree 2 files changed +7
-0
lines changed
2 files changed +7
-0
lines changed Original file line number Diff line number Diff line change @@ -388,6 +388,7 @@ This section tweaks the cipher suites used by Firefox. The idea is to support on
388388* Enable ChaCha20 and Poly1305 (Firefox >= 47) [ [ 1] ( https://www.mozilla.org/en-US/firefox/47.0/releasenotes/ ) [ 2] ( https://tools.ietf.org/html/rfc7905 ) [ 3] ( https://bugzilla.mozilla.org/show_bug.cgi?id=917571 ) [ 4] ( https://bugzilla.mozilla.org/show_bug.cgi?id=1247860 ) [ 5] ( https://cr.yp.to/chacha.html ) ]
389389* Disable ciphers susceptible to the logjam attack [ [ 1] ( https://weakdh.org/ ) ]
390390* Disable ciphers with DSA (max 1024 bits)
391+ * Enable X25519Kyber768Draft00 (post-quantum key exchange) [ FF Nightly 2024-01-18+] [ [ 1] ( https://datatracker.ietf.org/doc/draft-tls-westerbaan-xyber768d00/ ) [ 2] ( https://twitter.com/bwesterb/status/1748017372764475519 ) [ 3] ( https://pq.cloudflareresearch.com/ ) ]
391392<!-- END SECTION -->
392393
393394-------------------------------------------------------------------------
Original file line number Diff line number Diff line change @@ -1240,3 +1240,9 @@ user_pref("security.ssl3.dhe_dss_camellia_256_sha", false);
12401240//user_pref("security.ssl3.rsa_aes_128_sha", false); // 0x2f
12411241//user_pref("security.ssl3.ecdhe_rsa_aes_256_sha", false); // 0xc014
12421242//user_pref("security.ssl3.ecdhe_ecdsa_aes_256_sha", false); // 0xc00a
1243+
1244+ // PREF: Enable X25519Kyber768Draft00 (post-quantum key exchange) [FF Nightly 2024-01-18+]
1245+ // https://datatracker.ietf.org/doc/draft-tls-westerbaan-xyber768d00/
1246+ // https://twitter.com/bwesterb/status/1748017372764475519
1247+ // https://pq.cloudflareresearch.com/
1248+ user_pref ( "security.tls.enable_kyber" , true ) ;
You can’t perform that action at this time.
0 commit comments