====== 5.2 TLS 1.3 con Algoritmi PQ ======

Configurazione della crittografia di trasporto.

===== Algoritmi Supportati =====

^ Funzione ^ Algoritmo ^ Standard NIST ^
| Key Exchange | ML-KEM-768((FIPS 203 (ML-KEM): https://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.203.pdf)) | FIPS 203 |
| Firma | ML-DSA-65((FIPS 204 (ML-DSA): https://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.204.pdf)) | FIPS 204 |
| Firma Backup | SLH-DSA((FIPS 205 (SLH-DSA): https://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.205.pdf)) | FIPS 205 |

===== TLS 1.3 =====

Transport Layer Security 1.3((IETF RFC 8446 (TLS 1.3): https://datatracker.ietf.org/doc/html/rfc8446)) e la versione attuale del protocollo di crittografia per comunicazioni di rete sicure.

===== Modalita Ibrida =====

Per il periodo di transizione: Classico + PQ combinati((IETF Hybrid Key Exchange: https://datatracker.ietf.org/doc/draft-ietf-tls-hybrid-design/)).

<code>
Key Exchange: X25519((Curve25519: https://cr.yp.to/ecdh.html)) + ML-KEM-768
Firma: ECDSA + ML-DSA-65
</code>

===== Configurazione .NET =====

<code csharp>
builder.WebHost.ConfigureKestrel(options =>
{
    options.ConfigureHttpsDefaults(https =>
    {
        https.SslProtocols = SslProtocols.Tls13;
        https.ClientCertificateMode = ClientCertificateMode.RequireCertificate;
    });
});
</code>

===== Cipher Suites =====

Cipher Suites TLS 1.3 raccomandate((IANA TLS Cipher Suites: https://www.iana.org/assignments/tls-parameters/tls-parameters.xhtml#tls-parameters-4)) con PQ:

<code>
TLS_AES_256_GCM_SHA384
TLS_CHACHA20_POLY1305_SHA256
</code>

===== Validazione =====

<code bash>
# Testare connessione TLS
openssl s_client -connect gateway.intern:443 -tls1_3
</code>

===== Libreria PQ-Crypto =====

Per l'implementazione programmatica di PQ Key Exchange vedere:

  * [[..:..:..:pqcrypt:api:wvds-system-security-cryptography:keyexchange:start|Namespace KeyExchange (ML-KEM)]]
  * [[..:..:..:pqcrypt:api:wvds-system-security-cryptography:keyderivation:keyderivationextensions|TLS 1.3 Key Derivation]]
  * [[..:..:..:pqcrypt:konzepte:algorithmen|Algoritmi (ML-KEM, ML-DSA)]]

===== Fonti =====

  * [[https://datatracker.ietf.org/doc/html/rfc8446|RFC 8446: TLS 1.3]]
  * [[https://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.203.pdf|FIPS 203 (ML-KEM)]]
  * [[https://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.204.pdf|FIPS 204 (ML-DSA)]]
  * [[https://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.205.pdf|FIPS 205 (SLH-DSA)]]
  * [[https://www.openssl.org/docs/man3.0/man1/openssl-s_client.html|Documentazione OpenSSL s_client]]