Cryptology ePrint Archive: Report 2019/1277

Towards Quantum-Safe VPNs and Internet

Maran van Heesch and Niels van Adrichem and Thomas Attema and Thijs Veugen

Abstract: Estimating that in 10 years time quantum computers capable of breaking public-key cryptography currently considered safe could exist, this threat is already eminent for information that require secrecy for more than 10 years. Considering the time required to standardize, implement and update existing networks signifies the urgency of adopting quantum-safe cryptography.

In this work, we investigate the trade-off between network and CPU overhead and the security levels defined by NIST. To do so, we integrate adapted OpenSSL libraries into OpenVPN, and perform experiments on a large variety of quantum-safe algorithms for respectively TLS versions 1.2 and 1.3 using OpenVPN and HTTPS independently. We describe the difficulties we encounter with the integration and we report the experimental performance results, comparing setting up the quantum-safe connection with setting up the connection without additional post-quantum cryptography.

Category / Keywords: applications / TLS OpenVPN OpenSSL VPN Quantum-safe Internet liboqs open-quantum-safe

Date: received 4 Nov 2019

Contact author: niels vanadrichem at tno nl

Available format(s): PDF | BibTeX Citation

Version: 20191105:082441 (All versions of this report)

Short URL: ia.cr/2019/1277