5.1 PQ Security for Developers

Post-Quantum Cryptography in the Data Gateway.

[Client + PQ Certificate]
        | TLS 1.3 (ML-KEM)
[Proxy :443]
        | Named Pipe
[Data Gateway API]
        |
[Database]

• No implicit trust
• Every certificate is validated
• Server decides on trustworthiness
• Only „issued by us“ certificates accepted

• Certificate Authentication
• Ephemeral Certificates
• TLS 1.3 Configuration
• NIST PQC Standards